VDB
CVE-2022-36440
CVE-2022-36440
PUBLISHED
Reported by mitre · Published April 3, 2023
A reachable assertion was found in Frrouting frr-bgpd 8.3.0 in the peek_for_as4_capability function. Attackers can maliciously construct BGP open packets and send them to BGP peers running frr-bgpd, resulting in DoS.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| n/a | n/a | * |
Timeline
- Apr 3, 2023 CVE Published
- Apr 4, 2023 EPSS Score
- May 12, 2023 EPSS Score
- Jun 19, 2023 EPSS Score
- Jul 27, 2023 EPSS Score
- Sep 3, 2023 EPSS Score
- Oct 11, 2023 EPSS Score
- Nov 18, 2023 EPSS Score
- Dec 26, 2023 EPSS Score
- Mar 10, 2024 EPSS Score
- Apr 17, 2024 EPSS Score
- May 25, 2024 EPSS Score
References
- FEDORA-2023-14ec79ae02 vendor-advisory
- FEDORA-2023-2cb0f34efe vendor-advisory
- FEDORA-2023-77d00facd0 vendor-advisory
- DSA-5495 vendor-advisory
- [debian-lts-announce] 20230919 [SECURITY] [DLA 3573-1] frr security update mailing-list