CVE-2024-31948

In FRRouting (FRR) through 9.1, an attacker using a malformed Prefix SID attribute in a BGP UPDATE packet can cause the bgpd daemon to crash.
Configurations

No configuration.

History

03 Jul 2024, 01:55

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 6.5
CWE CWE-1287

28 Apr 2024, 07:15

Type Values Removed Values Added
References
  • () https://lists.debian.org/debian-lts-announce/2024/04/msg00019.html -

08 Apr 2024, 18:48

Type Values Removed Values Added
Summary
  • (es) En FRRouting (FRR) hasta 9.1, un atacante que utiliza un atributo SID de prefijo con formato incorrecto en un paquete de BGP UPDATE puede provocar que el daemon bgpd falle.

07 Apr 2024, 21:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-04-07 21:15

Updated : 2024-07-03 01:55


NVD link : CVE-2024-31948

Mitre link : CVE-2024-31948

CVE.ORG link : CVE-2024-31948


JSON object : View

Products Affected

No product.

CWE
CWE-1287

Improper Validation of Specified Type of Input