Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2022-28199

Опубликовано: 30 авг. 2022
Источник: redhat
CVSS3: 6.5
EPSS Низкий

Описание

NVIDIA’s distribution of the Data Plane Development Kit (MLNX_DPDK) contains a vulnerability in the network stack, where error recovery is not handled properly, which can allow a remote attacker to cause denial of service and some impact to data integrity and confidentiality.

A vulnerability was found in the DPDK package. Affected versions of this package are vulnerable to denial of service (DoS) attacks, affecting system availability.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Fast Datapath for RHEL 7dpdkWill not fix
Fast Datapath for RHEL 7openvswitchWill not fix
Fast Datapath for RHEL 7openvswitch2.10Out of support scope
Fast Datapath for RHEL 7openvswitch2.11Out of support scope
Fast Datapath for RHEL 7openvswitch2.12Out of support scope
Fast Datapath for RHEL 8openvswitch2.12Out of support scope
Red Hat Enterprise Linux 7dpdkOut of support scope
Red Hat Enterprise Linux 8dpdkWill not fix
Red Hat OpenShift Container Platform 4openvswitch2.15Will not fix
Red Hat OpenShift Container Platform 4openvswitch2.16Will not fix

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-393
https://bugzilla.redhat.com/show_bug.cgi?id=2123549dpdk: error recovery in mlx5 driver not handled properly, allowing for denial of service

EPSS

Процентиль: 69%
0.0063
Низкий

6.5 Medium

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2022-28199

CVSS3: 6.5
ubuntu
почти 3 года назад

NVIDIA’s distribution of the Data Plane Development Kit (MLNX_DPDK) contains a vulnerability in the network stack, where error recovery is not handled properly, which can allow a remote attacker to cause denial of service and some impact to data integrity and confidentiality.

nvd логотип

CVE-2022-28199

CVSS3: 6.5
nvd
почти 3 года назад

NVIDIA’s distribution of the Data Plane Development Kit (MLNX_DPDK) contains a vulnerability in the network stack, where error recovery is not handled properly, which can allow a remote attacker to cause denial of service and some impact to data integrity and confidentiality.

debian логотип

CVE-2022-28199

CVSS3: 6.5
debian
почти 3 года назад

NVIDIA\u2019s distribution of the Data Plane Development Kit (MLNX_DPD ...

github логотип

GHSA-x5mv-h4g3-j3r2

CVSS3: 6.5
github
почти 3 года назад

NVIDIA’s distribution of the Data Plane Development Kit (MLNX_DPDK) contains a vulnerability in the network stack, where error recovery is not handled properly, which can allow a remote attacker to cause denial of service and some impact to data integrity and confidentiality.

fstec логотип

BDU:2022-05391

CVSS3: 6.5
fstec
почти 3 года назад

Уязвимость драйвера mlx5 набора библиотек и драйверов для быстрой обработки пакетов dpdk, позволяющая науршителю вызвать отказ в обслуживании

EPSS

Процентиль: 69%
0.0063
Низкий

6.5 Medium

CVSS3