Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
frrouting frrouting vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2017-15865
bgpd in FRRouting (FRR) prior to 2.0.2 and 3.x prior to 3.0.2, as used in Cumulus Linux prior to 3.4.3 and other products, allows remote malicious users to obtain sensitive information via a malformed BGP UPDATE packet from a connected peer, which triggers transmission of up to a...
Frrouting Frrouting 3.0
Frrouting Frrouting
Frrouting Frrouting 3.0.1
356
VMScore
CVE-2019-5892
bgpd in FRRouting FRR (aka Free Range Routing) 2.x and 3.x prior to 3.0.4, 4.x prior to 4.0.1, 5.x prior to 5.0.2, and 6.x prior to 6.0.2 (not affecting Cumulus Linux or VyOS), when ENABLE_BGP_VNC is used for Virtual Network Control, allows remote malicious users to cause a denia...
Frrouting Frrouting
Frrouting Frrouting 4.0
605
VMScore
CVE-2022-26125
Buffer overflow vulnerabilities exist in FRRouting up to and including 8.1.0 due to wrong checks on the input packet length in isisd/isis_tlvs.c.
Frrouting Frrouting
605
VMScore
CVE-2022-26127
A buffer overflow vulnerability exists in FRRouting up to and including 8.1.0 due to missing a check on the input packet length in the babel_packet_examin function in babeld/message.c.
Frrouting Frrouting
NA
CVE-2023-38406
bgpd/bgp_flowspec.c in FRRouting (FRR) prior to 8.4.3 mishandles an nlri length of zero, aka a "flowspec overflow."
Frrouting Frrouting
NA
CVE-2023-38407
bgpd/bgp_label.c in FRRouting (FRR) prior to 8.5 attempts to read beyond the end of the stream during labeled unicast parsing.
Frrouting Frrouting
NA
CVE-2023-3748
A flaw was found in FRRouting when parsing certain babeld unicast hello messages that are intended to be ignored. This issue may allow an malicious user to send specially crafted hello messages with the unicast flag set, the interval field set to 0, or any TLV that contains a sub...
Frrouting Frrouting
605
VMScore
CVE-2022-26128
A buffer overflow vulnerability exists in FRRouting up to and including 8.1.0 due to a wrong check on the input packet length in the babel_packet_examin function in babeld/message.c.
Frrouting Frrouting
605
VMScore
CVE-2022-26129
Buffer overflow vulnerabilities exist in FRRouting up to and including 8.1.0 due to wrong checks on the subtlv length in the functions, parse_hello_subtlv, parse_ihu_subtlv, and parse_update_subtlv in babeld/message.c.
Frrouting Frrouting
NA
CVE-2023-46752
An issue exists in FRRouting FRR up to and including 9.0.1. It mishandles malformed MP_REACH_NLRI data, leading to a crash.
Frrouting Frrouting
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-20065
open redirect
CVE-2024-1086
path traversal
CVE-2024-29825
XXE
CVE-2024-29822
CVE-2024-20696
CVE-2024-3564
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »