CVE-2022-37032

Опубликовано: 20 сент. 2022

Источник: redhat

CVSS3: 7.1

EPSS Низкий

Описание

An out-of-bounds read in the BGP daemon of FRRouting FRR before 8.4 may lead to a segmentation fault and denial of service. This occurs in bgp_capability_msg_parse in bgpd/bgp_packet.c.

A vulnerability was found in FRRouting. This issue occurs in bgp_capability_msg_parse in bgpd/bgp_packet.c. An out-of-bounds read in the BGP daemon may lead to a segmentation fault and a denial of service.

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-125

https://bugzilla.redhat.com/show_bug.cgi?id=2128713frr: out-of-bounds read in the BGP daemon may lead to information disclosure or denial of service

EPSS

Процентиль: 62%

0.00445

Низкий

7.1 High

CVSS3

Связанные уязвимости

CVE-2022-37032

CVSS3: 9.1

ubuntu

почти 3 года назад

An out-of-bounds read in the BGP daemon of FRRouting FRR before 8.4 may lead to a segmentation fault and denial of service. This occurs in bgp_capability_msg_parse in bgpd/bgp_packet.c.

CVE-2022-37032

CVSS3: 9.1

nvd

почти 3 года назад

An out-of-bounds read in the BGP daemon of FRRouting FRR before 8.4 may lead to a segmentation fault and denial of service. This occurs in bgp_capability_msg_parse in bgpd/bgp_packet.c.

CVE-2022-37032

CVSS3: 9.1

debian

почти 3 года назад

An out-of-bounds read in the BGP daemon of FRRouting FRR before 8.4 ma ...

GHSA-mxrw-2vpr-fpwr

CVSS3: 9.1

github

почти 3 года назад

An out-of-bounds read in the BGP daemon of FRRouting FRR before 8.4 may lead to a segmentation fault and denial of service. This occurs in bgp_capability_msg_parse in bgpd/bgp_packet.c.

ELSA-2023-2801

oracle-oval

около 2 лет назад

ELSA-2023-2801: frr security and bug fix update (MODERATE)

EPSS

Процентиль: 62%

0.00445

Низкий

7.1 High

CVSS3