Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2023-41910

Опубликовано: 05 сент. 2023
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS3: 9.8

Описание

An issue was discovered in lldpd before 1.0.17. By crafting a CDP PDU packet with specific CDP_TLV_ADDRESSES TLVs, a malicious actor can remotely force the lldpd daemon to perform an out-of-bounds read on heap memory. This occurs in cdp_decode in daemon/protocols/cdp.c.

РелизСтатусПримечание
bionic

ignored

end of standard support
devel

not-affected

1.0.17-1
esm-apps/bionic

needs-triage

esm-apps/focal

needs-triage

esm-apps/jammy

needs-triage

esm-apps/noble

not-affected

1.0.17-1
esm-apps/xenial

needs-triage

focal

ignored

end of standard support, was needs-triage
jammy

needs-triage

lunar

ignored

end of life, was needs-triage

Показывать по

Ссылки на источники

EPSS

Процентиль: 34%
0.00134
Низкий

9.8 Critical

CVSS3

Связанные уязвимости

redhat логотип

CVE-2023-41910

CVSS3: 7.5
redhat
почти 2 года назад

An issue was discovered in lldpd before 1.0.17. By crafting a CDP PDU packet with specific CDP_TLV_ADDRESSES TLVs, a malicious actor can remotely force the lldpd daemon to perform an out-of-bounds read on heap memory. This occurs in cdp_decode in daemon/protocols/cdp.c.

nvd логотип

CVE-2023-41910

CVSS3: 9.8
nvd
почти 2 года назад

An issue was discovered in lldpd before 1.0.17. By crafting a CDP PDU packet with specific CDP_TLV_ADDRESSES TLVs, a malicious actor can remotely force the lldpd daemon to perform an out-of-bounds read on heap memory. This occurs in cdp_decode in daemon/protocols/cdp.c.

msrc логотип

CVE-2023-41910

CVSS3: 9.8
msrc
почти 2 года назад

Описание отсутствует

debian логотип

CVE-2023-41910

CVSS3: 9.8
debian
почти 2 года назад

An issue was discovered in lldpd before 1.0.17. By crafting a CDP PDU ...

redos логотип

ROS-20240611-11

CVSS3: 9.8
redos
около 1 года назад

Уязвимость lldpd

EPSS

Процентиль: 34%
0.00134
Низкий

9.8 Critical

CVSS3