Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-45886

The BGP daemon (bgpd) in IP Infusion ZebOS through 7.10.6 allow remote attackers to cause a denial of service by sending crafted BGP update messages containing a malformed attribute.

Published

2023-11-21T06:15:42.450

Last Modified

2024-11-21T08:27:33.743

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.5 (HIGH)

Weaknesses
  • Type: Primary
    NVD-CWE-noinfo
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application f5 big-ip_next 20.0.1 Yes
Application f5 big-ip_next_service_proxy_for_kubernetes ≤ 1.8.2 Yes
Application f5 big-ip_next_cloud-native_network_functions ≤ 1.1.1 Yes
Application f5 big-ip_local_traffic_manager ≤ 13.1.5 Yes
Application f5 big-ip_local_traffic_manager ≤ 14.1.5 Yes
Application f5 big-ip_local_traffic_manager ≤ 15.1.10 Yes
Application f5 big-ip_local_traffic_manager ≤ 16.1.4 Yes
Application f5 big-ip_local_traffic_manager ≤ 17.1.1 Yes
Application f5 big-ip_global_traffic_manager ≤ 13.1.5 Yes
Application f5 big-ip_global_traffic_manager ≤ 14.1.5 Yes
Application f5 big-ip_global_traffic_manager ≤ 15.1.10 Yes
Application f5 big-ip_global_traffic_manager ≤ 16.1.4 Yes
Application f5 big-ip_global_traffic_manager ≤ 17.1.1 Yes
Application ipinfusion zebos ≤ 7.10.6 Yes
References