CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-12831

An issue was discovered in FRRouting FRR (aka Free Range Routing) through 7.3.1. When using the split-config feature, the init script creates an empty config file with world-readable default permissions, leading to a possible information leak via tools/frr.in and tools/frrcommon.sh.in. NOTE: some parties consider this user error, not a vulnerability, because the permissions are under the control of the user before any sensitive information is present in the file

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 49.2%

CVSS Severity

CVSS v3 Score 5.3

CVSS v2 Score 4.3

References

Products affected by CVE-2020-12831

Linuxfoundation » Free Range Routing » Version: 2.0

cpe:2.3:a:linuxfoundation:free_range_routing:2.0
Linuxfoundation » Free Range Routing » Version: 2.0.1

cpe:2.3:a:linuxfoundation:free_range_routing:2.0.1
Linuxfoundation » Free Range Routing » Version: 2.0.2

cpe:2.3:a:linuxfoundation:free_range_routing:2.0.2
Linuxfoundation » Free Range Routing » Version: 3.0

cpe:2.3:a:linuxfoundation:free_range_routing:3.0
Linuxfoundation » Free Range Routing » Version: 3.0.1

cpe:2.3:a:linuxfoundation:free_range_routing:3.0.1
Linuxfoundation » Free Range Routing » Version: 3.0.2

cpe:2.3:a:linuxfoundation:free_range_routing:3.0.2
Linuxfoundation » Free Range Routing » Version: 3.0.3

cpe:2.3:a:linuxfoundation:free_range_routing:3.0.3
Linuxfoundation » Free Range Routing » Version: 3.0.4

cpe:2.3:a:linuxfoundation:free_range_routing:3.0.4
Linuxfoundation » Free Range Routing » Version: 3.1

cpe:2.3:a:linuxfoundation:free_range_routing:3.1
Linuxfoundation » Free Range Routing » Version: 4.0

cpe:2.3:a:linuxfoundation:free_range_routing:4.0
Linuxfoundation » Free Range Routing » Version: 4.0.1

cpe:2.3:a:linuxfoundation:free_range_routing:4.0.1
Linuxfoundation » Free Range Routing » Version: 5.0

cpe:2.3:a:linuxfoundation:free_range_routing:5.0
Linuxfoundation » Free Range Routing » Version: 5.0.1

cpe:2.3:a:linuxfoundation:free_range_routing:5.0.1
Linuxfoundation » Free Range Routing » Version: 5.0.2

cpe:2.3:a:linuxfoundation:free_range_routing:5.0.2
Linuxfoundation » Free Range Routing » Version: 5.1

cpe:2.3:a:linuxfoundation:free_range_routing:5.1
Linuxfoundation » Free Range Routing » Version: 6.0

cpe:2.3:a:linuxfoundation:free_range_routing:6.0
Linuxfoundation » Free Range Routing » Version: 6.0.1

cpe:2.3:a:linuxfoundation:free_range_routing:6.0.1
Linuxfoundation » Free Range Routing » Version: 6.0.2

cpe:2.3:a:linuxfoundation:free_range_routing:6.0.2
Linuxfoundation » Free Range Routing » Version: 6.0.2-1

cpe:2.3:a:linuxfoundation:free_range_routing:6.0.2-1
Linuxfoundation » Free Range Routing » Version: 6.0.2-2

cpe:2.3:a:linuxfoundation:free_range_routing:6.0.2-2
Linuxfoundation » Free Range Routing » Version: 6.0.3

cpe:2.3:a:linuxfoundation:free_range_routing:6.0.3
Linuxfoundation » Free Range Routing » Version: 6.0.3-1

cpe:2.3:a:linuxfoundation:free_range_routing:6.0.3-1
Linuxfoundation » Free Range Routing » Version: 6.1

cpe:2.3:a:linuxfoundation:free_range_routing:6.1
Linuxfoundation » Free Range Routing » Version: 7.0

cpe:2.3:a:linuxfoundation:free_range_routing:7.0
Linuxfoundation » Free Range Routing » Version: 7.0.1

cpe:2.3:a:linuxfoundation:free_range_routing:7.0.1
Linuxfoundation » Free Range Routing » Version: 7.1

cpe:2.3:a:linuxfoundation:free_range_routing:7.1
Linuxfoundation » Free Range Routing » Version: 7.2

cpe:2.3:a:linuxfoundation:free_range_routing:7.2
Linuxfoundation » Free Range Routing » Version: 7.2.1

cpe:2.3:a:linuxfoundation:free_range_routing:7.2.1
Linuxfoundation » Free Range Routing » Version: 7.3

cpe:2.3:a:linuxfoundation:free_range_routing:7.3
Linuxfoundation » Free Range Routing » Version: 7.3.1

cpe:2.3:a:linuxfoundation:free_range_routing:7.3.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-12831

Products

Pricing

Contact Us