Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2024-31948

Published: 07/04/2024 Updated: 28/04/2024

Vulnerability Summary

In FRRouting (FRR) up to and including 9.1, an attacker using a malformed Prefix SID attribute in a BGP UPDATE packet can cause the bgpd daemon to crash.

Vendor Advisories

Debian CVElist Bug Report Logs: frr: CVE-2024-31948
Debian Bug report logs - #1072126 frr: CVE-2024-31948 Package: src:frr; Maintainer for src:frr is David Lamparter <equinox-debian@diac24net>; Reported by: Moritz Mühlenhoff <jmm@inutilorg> Date: Tue, 28 May 2024 21:39:04 UTC Severity: grave Tags: security, upstream Reply or subscribe to this bug Toggle usel ...

References

https://github.com/FRRouting/frr/pull/15628https://github.com/FRRouting/frr/pull/15628/commits/ba6a8f1a31e1a88df2de69ea46068e8bd9b97138https://lists.debian.org/debian-lts-announce/2024/04/msg00019.htmlhttps://nvd.nist.govhttps://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1072126
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073CVE-2024-5496CVE-2024-5495XPath injectionbypassCVE-2024-30043CVE-2024-24919denial of serviceCVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook