Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-3107

A set of carefully crafted ipv6 packets can trigger an integer overflow in the calculation of a fragment reassembled packet's payload length field. This allows an attacker to trigger a kernel panic, resulting in a denial of service.

Published

2023-08-01T23:15:30.580

Last Modified

2025-07-09T14:15:26.207

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.5 (HIGH)

Weaknesses

Type: Secondary
CWE-190
Type: Primary
CWE-190

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	freebsd	freebsd	12.4	Yes
Operating System	freebsd	freebsd	12.4	Yes
Operating System	freebsd	freebsd	12.4	Yes
Operating System	freebsd	freebsd	12.4	Yes
Operating System	freebsd	freebsd	12.4	Yes
Operating System	freebsd	freebsd	12.4	Yes
Operating System	freebsd	freebsd	13.1	Yes
Operating System	freebsd	freebsd	13.1	Yes
Operating System	freebsd	freebsd	13.1	Yes
Operating System	freebsd	freebsd	13.1	Yes
Operating System	freebsd	freebsd	13.1	Yes
Operating System	freebsd	freebsd	13.1	Yes
Operating System	freebsd	freebsd	13.1	Yes
Operating System	freebsd	freebsd	13.1	Yes
Operating System	freebsd	freebsd	13.1	Yes
Operating System	freebsd	freebsd	13.1	Yes
Operating System	freebsd	freebsd	13.1	Yes
Operating System	freebsd	freebsd	13.1	Yes
Operating System	freebsd	freebsd	13.2	Yes
Operating System	freebsd	freebsd	13.2	Yes
Application	netapp	clustered_data_ontap	9.0	Yes

References

https://security.FreeBSD.org/advisories/FreeBSD-SA-23:06.ipv6.asc Mitigation, Vendor Advisory ([email protected])
https://security.netapp.com/advisory/ntap-20230804-0001/ Third Party Advisory ([email protected])
https://security.FreeBSD.org/advisories/FreeBSD-SA-23:06.ipv6.asc Mitigation, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://security.netapp.com/advisory/ntap-20230804-0001/ Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)