Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
frrouting frrouting vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2017-15865
bgpd in FRRouting (FRR) prior to 2.0.2 and 3.x prior to 3.0.2, as used in Cumulus Linux prior to 3.4.3 and other products, allows remote malicious users to obtain sensitive information via a malformed BGP UPDATE packet from a connected peer, which triggers transmission of up to a...
Frrouting Frrouting 3.0
Frrouting Frrouting
Frrouting Frrouting 3.0.1
356
VMScore
CVE-2019-5892
bgpd in FRRouting FRR (aka Free Range Routing) 2.x and 3.x prior to 3.0.4, 4.x prior to 4.0.1, 5.x prior to 5.0.2, and 6.x prior to 6.0.2 (not affecting Cumulus Linux or VyOS), when ENABLE_BGP_VNC is used for Virtual Network Control, allows remote malicious users to cause a denia...
Frrouting Frrouting
Frrouting Frrouting 4.0
605
VMScore
CVE-2022-26125
Buffer overflow vulnerabilities exist in FRRouting up to and including 8.1.0 due to wrong checks on the input packet length in isisd/isis_tlvs.c.
Frrouting Frrouting
605
VMScore
CVE-2022-26127
A buffer overflow vulnerability exists in FRRouting up to and including 8.1.0 due to missing a check on the input packet length in the babel_packet_examin function in babeld/message.c.
Frrouting Frrouting
NA
CVE-2023-3748
A flaw was found in FRRouting when parsing certain babeld unicast hello messages that are intended to be ignored. This issue may allow an malicious user to send specially crafted hello messages with the unicast flag set, the interval field set to 0, or any TLV that contains a sub...
Frrouting Frrouting
NA
CVE-2023-46752
An issue exists in FRRouting FRR up to and including 9.0.1. It mishandles malformed MP_REACH_NLRI data, leading to a crash.
Frrouting Frrouting
NA
CVE-2023-46753
An issue exists in FRRouting FRR up to and including 9.0.1. A crash can occur for a crafted BGP UPDATE message without mandatory attributes, e.g., one with only an unknown transit attribute.
Frrouting Frrouting
NA
CVE-2023-47234
An issue exists in FRRouting FRR up to and including 9.0.1. A crash can occur when processing a crafted BGP UPDATE message with a MP_UNREACH_NLRI attribute and additional NLRI data (that lacks mandatory path attributes).
Frrouting Frrouting
NA
CVE-2023-47235
An issue exists in FRRouting FRR up to and including 9.0.1. A crash can occur when a malformed BGP UPDATE message with an EOR is processed, because the presence of EOR does not lead to a treat-as-withdraw outcome.
Frrouting Frrouting
605
VMScore
CVE-2022-26128
A buffer overflow vulnerability exists in FRRouting up to and including 8.1.0 due to a wrong check on the input packet length in the babel_packet_examin function in babeld/message.c.
Frrouting Frrouting
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
CVE-2023-52162
CVE-2024-23670
CVE-2024-5404
man-in-the-middle
CVE-2024-5214
CVE-2024-4358
CVE-2024-20696
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »