VDB
CVE-2024-7595
CVE-2024-7595
PUBLISHED
Es bestehen mehrere Schwachstellen in verschiedenen Tunneling Protokollen. Betroffen sind GRE, IPIP, 4in6 und 6in4. Die Protokolle validieren oder authentifizieren die Quelle eingehender Netzwerkpakete nicht richtig. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Spoofing-Angriff durchzuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und andere nicht spezifizierte Angriffe durchzuführen.
EPSS 1.15% · 78.8th percentile
Risk Scores
EPSS Score
1.15%
78.8th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| specification | Specification Tunneling Protocol 4in6 | |
| specification | Specification Tunneling Protocol 6in4 | |
| specification | Specification Tunneling Protocol GRE | |
| specification | Specification Tunneling Protocol IPIP |
Exploit Intelligence
- Scanner and attack suite for hosts that forward unauthenticated packets via IPIP and GRE protocols. (CVE-2020-10136 CVE-2024-7595) (github-poc-repo)
- Scanner and attack suite for hosts that forward unauthenticated packets via IPIP and GRE protocols. (CVE-2020-10136 CVE-2024-7595) (github-poc-repo)
- Scanner and attack suite for hosts that forward unauthenticated packets via IPIP and GRE protocols. (CVE-2020-10136 CVE-2024-7595) (github-poc-repo)
- Scanner and attack suite for hosts that forward unauthenticated packets via IPIP and GRE protocols. (CVE-2020-10136 CVE-2024-7595) (github-poc-repo)
- Scanner and attack suite for hosts that forward unauthenticated packets via IPIP and GRE protocols. (CVE-2020-10136 CVE-2024-7595) (github-poc-repo)
- Scanner and attack suite for hosts that forward unauthenticated packets via IPIP and GRE protocols. (CVE-2020-10136 CVE-2024-7595) (github-poc-repo)
- Scanner and attack suite for hosts that forward unauthenticated packets via IPIP and GRE protocols. (CVE-2020-10136 CVE-2024-7595) (github-poc-repo)
- Scanner and attack suite for hosts that forward unauthenticated packets via IPIP and GRE protocols. (CVE-2020-10136 CVE-2024-7595) (github-poc-repo)
- Scanner and attack suite for hosts that forward unauthenticated packets via IPIP and GRE protocols. (CVE-2020-10136 CVE-2024-7595) (github-poc-repo)
- Scanner and attack suite for hosts that forward unauthenticated packets via IPIP and GRE protocols. (CVE-2020-10136 CVE-2024-7595) (github-poc)
…and 8 more exploits
Timeline
- Jan 19, 2025 CVE Published
- Feb 6, 2025 EPSS Score
- Feb 18, 2025 Coalition ESS Score
- Mar 8, 2025 EPSS Score
- Mar 17, 2025 EPSS Score
- Mar 22, 2025 EPSS Score
- Mar 23, 2025 EPSS Score
- Mar 28, 2025 EPSS Score
- Mar 30, 2025 EPSS Score
- Apr 6, 2025 EPSS Score
- Apr 21, 2025 EPSS Score
- Apr 23, 2025 EPSS Score