CVE-2023-46752

Опубликовано: 26 окт. 2023

Источник: redhat

CVSS3: 5.9

EPSS Низкий

Описание

An issue was discovered in FRRouting FRR through 9.0.1. It mishandles malformed MP_REACH_NLRI data, leading to a crash.

A data mishandling vulnerability was found in FRRouting. A malformed MP_REACH_NLRI data can lead to a crash, resulting in a denial of service.

Меры по смягчению последствий

Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-400

https://bugzilla.redhat.com/show_bug.cgi?id=2246379frr: mishandled malformed data leading to a crash

EPSS

Процентиль: 28%

0.00097

Низкий

5.9 Medium

CVSS3

Связанные уязвимости

CVE-2023-46752

CVSS3: 5.9

ubuntu

почти 2 года назад

An issue was discovered in FRRouting FRR through 9.0.1. It mishandles malformed MP_REACH_NLRI data, leading to a crash.

CVE-2023-46752

CVSS3: 5.9

nvd

почти 2 года назад

An issue was discovered in FRRouting FRR through 9.0.1. It mishandles malformed MP_REACH_NLRI data, leading to a crash.

CVE-2023-46752

CVSS3: 5.9

msrc

почти 2 года назад

Описание отсутствует

CVE-2023-46752

CVSS3: 5.9

debian

почти 2 года назад

An issue was discovered in FRRouting FRR through 9.0.1. It mishandles ...

GHSA-v7w5-g2hv-9797

CVSS3: 7.5

github

почти 2 года назад

An issue was discovered in FRRouting FRR through 9.0.1. It mishandles malformed MP_REACH_NLRI data, leading to a crash.

EPSS

Процентиль: 28%

0.00097

Низкий

5.9 Medium

CVSS3