CVE-2023-4136

Related Files

Ubuntu Security Notice USN-6436-1

Posted Oct 18, 2023

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 6436-1 - It was discovered that the FRR did not properly check the attribute length in NRLI. A remote attacker could possibly use this issue to cause a denial of service. It was discovered that the FRR did not properly manage memory when reading initial bytes of ORF header. A remote attacker could possibly use this issue to cause a denial of service. It was discovered that FRR did not properly validate the attributes in the BGP FlowSpec functionality. A remote attacker could possibly use this issue to cause a denial of service.

tags | advisory, remote, denial of service

systems | linux, ubuntu

advisories | CVE-2023-41358, CVE-2023-41360, CVE-2023-41909

SHA-256 | c54a218c23f3c4877ce2417fa1371aa63e38b89f4e9376e5a83bc1c582484309

Download | Favorite | View

Ubuntu Security Notice USN-6432-1

Posted Oct 17, 2023

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 6432-1 - It was discovered that the Quagga BGP daemon did not properly check the attribute length in NRLI. A remote attacker could possibly use this issue to cause a denial of service. It was discovered that the Quagga BGP daemon did not properly manage memory when reading initial bytes of ORF header. A remote attacker could possibly use this issue to cause a denial of service.

tags | advisory, remote, denial of service

systems | linux, ubuntu

advisories | CVE-2023-41358, CVE-2023-41360

SHA-256 | 83ab0aa9332b74bfb15adf2f2e832ac211abc89c5493ef410be7aed9a5efe908

Download | Favorite | View

CrafterCMS 4.0.2 Cross Site Scripting

Posted Aug 23, 2023

Authored by EgiX | Site karmainsecurity.com

CrafterCMS versions 4.0.2 and below suffer from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss

advisories | CVE-2023-4136

SHA-256 | 4048cc73ca79593508defbbf3c0df5f379960818368d8961aa031904ca5e521e

Download | Favorite | View