In FRRouting (FRR) through 9.1, an attacker using a malformed Prefix SID attribute in a BGP UPDATE packet can cause the bgpd daemon to crash.
References
Configurations
No configuration.
History
21 Nov 2024, 09:14
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://github.com/FRRouting/frr/pull/15628 - | |
| References | () https://github.com/FRRouting/frr/pull/15628/commits/ba6a8f1a31e1a88df2de69ea46068e8bd9b97138 - | |
| References | () https://lists.debian.org/debian-lts-announce/2024/04/msg00019.html - |
03 Jul 2024, 01:55
| Type | Values Removed | Values Added |
|---|---|---|
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.5 |
| CWE | CWE-1287 |
28 Apr 2024, 07:15
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
07 Apr 2024, 21:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2024-04-07 21:15
Updated : 2024-11-21 09:14
NVD link : CVE-2024-31948
Mitre link : CVE-2024-31948
CVE.ORG link : CVE-2024-31948
JSON object : View
Products Affected
No product.
CWE
CWE-1287
Improper Validation of Specified Type of Input