CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-31949

In FRRouting (FRR) through 9.1, an infinite loop can occur when receiving a MP/GR capability as a dynamic capability because malformed data results in a pointer not advancing.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 27.8%

CVSS Severity

CVSS v3 Score 6.5

References

https://github.com/FRRouting/frr/pull/15640
https://github.com/FRRouting/frr/pull/15640/commits/30a332dad86fafd2b0b6c61d23de59ed969a219b
https://lists.debian.org/debian-lts-announce/2024/04/msg00019.html
https://github.com/FRRouting/frr/pull/15640
https://github.com/FRRouting/frr/pull/15640/commits/30a332dad86fafd2b0b6c61d23de59ed969a219b
https://lists.debian.org/debian-lts-announce/2024/04/msg00019.html

Products affected by CVE-2024-31949

Frrouting » Frrouting » Version: Any

cpe:2.3:a:frrouting:frrouting:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-31949

Products

Pricing

Contact Us