Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
3.3
CVSSv2

CVE-2017-9263

Published: 29/05/2017 Updated: 05/01/2018
CVSS v2 Base Score: 3.3 | Impact Score: 2.9 | Exploitability Score: 6.5
CVSS v3 Base Score: 6.5 | Impact Score: 3.6 | Exploitability Score: 2.8
VMScore: 294
Vector: AV:A/AC:L/Au:N/C:N/I:N/A:P
Subscribe to Openvswitch

Vulnerability Summary

In Open vSwitch (OvS) 2.7.0, while parsing an OpenFlow role status message, there is a call to the abort() function for undefined role status reasons in the function `ofp_print_role_status_message` in `lib/ofp-print.c` that may be leveraged toward a remote DoS attack by a malicious switch.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

openvswitch openvswitch 2.7.0

Vendor Advisories

Red Hat: Moderate: openvswitch security update
Synopsis Moderate: openvswitch security update Type/Severity Security Advisory: Moderate Topic An update for openvswitch is now available for Red Hat OpenStack Platform 110 (Ocata)Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System ...
Ubuntu Security Notice: openvswitch vulnerabilities
Several security issues were fixed in Open vSwitch ...
Debian CVElist Bug Report Logs: openvswtich: CVE-2017-9214
Debian Bug report logs - #863228 openvswtich: CVE-2017-9214 Package: openvswitch; Maintainer for openvswitch is Debian OpenStack <team+openstack@trackerdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Wed, 24 May 2017 05:51:01 UTC Severity: important Tags: patch, security, upstream Found in ...
Debian CVElist Bug Report Logs: openvswitch: CVE-2017-9264
Debian Bug report logs - #863661 openvswitch: CVE-2017-9264 Package: src:openvswitch; Maintainer for src:openvswitch is Debian OpenStack <team+openstack@trackerdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Mon, 29 May 2017 20:15:54 UTC Severity: normal Tags: patch, security, upstream Foun ...
Debian CVElist Bug Report Logs: CVE-2017-14970
Debian Bug report logs - #877543 CVE-2017-14970 Package: src:openvswitch; Maintainer for src:openvswitch is Debian OpenStack <team+openstack@trackerdebianorg>; Reported by: Moritz Muehlenhoff <jmm@debianorg> Date: Mon, 2 Oct 2017 17:21:01 UTC Severity: important Tags: security, upstream Found in version openvswi ...
Debian CVElist Bug Report Logs: openvswitch: CVE-2017-9263
Debian Bug report logs - #863655 openvswitch: CVE-2017-9263 Package: src:openvswitch; Maintainer for src:openvswitch is Debian OpenStack <team+openstack@trackerdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Mon, 29 May 2017 19:48:01 UTC Severity: normal Tags: patch, security, upstream Foun ...

References

CWE-20https://mail.openvswitch.org/pipermail/ovs-dev/2017-May/332966.htmlhttps://access.redhat.com/errata/RHSA-2017:2727https://access.redhat.com/errata/RHSA-2017:2698https://access.redhat.com/errata/RHSA-2017:2692https://access.redhat.com/errata/RHSA-2017:2665https://access.redhat.com/errata/RHSA-2017:2648https://access.redhat.com/errata/RHSA-2017:2553https://access.redhat.com/errata/RHSA-2017:2418https://access.redhat.com/errata/RHSA-2017:2727https://usn.ubuntu.com/3450-1/https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4946CVE-2024-30309CVE-2024-4761CVE-2024-30051type confusionmemory leakCVE-2024-30293reflected XSSCVE-2024-3126
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook