Netfilter: >> Iptables >> 1.2.11 Security Vulnerabilities
extensions/libxt_tcp.c in iptables through 1.4.21 does not match TCP SYN+FIN packets in --syn rules, which might allow remote attackers to bypass intended firewall restrictions via crafted packets. NOTE: the CVE-2012-6638 fix makes this issue less relevant.
CVSS Score
7.5
EPSS Score
0.005
Published
2014-02-15