CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-41376

Nokia Service Router Operating System (SR OS) 22.10 and SR Linux, when error-handling update-fault-tolerance is not enabled, mishandle BGP path attributes.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 22.2%

CVSS Severity

CVSS v3 Score 7.5

References

https://blog.benjojo.co.uk/post/bgp-path-attributes-grave-error-handling
https://news.ycombinator.com/item?id=37305800
https://www.nokia.com/networks/technologies/service-router-operating-system/
https://blog.benjojo.co.uk/post/bgp-path-attributes-grave-error-handling
https://news.ycombinator.com/item?id=37305800
https://www.nokia.com/networks/technologies/service-router-operating-system/

Products affected by CVE-2023-41376

Nokia » Service Router Linux » Version: N/A

cpe:2.3:o:nokia:service_router_linux:-
Nokia » Service Router Operating System » Version: 22.10

cpe:2.3:o:nokia:service_router_operating_system:22.10

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-41376

Products

Pricing

Contact Us