CVE-2023-47234

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Nov 3, 2023
Updated: Apr 28, 2024

Summary

CVE-2023-47234 is a vulnerability affecting FRRouting (FRR) versions up to 9.0.1. A maliciously crafted BGP UPDATE message containing an MP_UNREACH_NLRI attribute and insufficient mandatory path attributes can cause FRR to crash. This issue may lead to denial-of-service and potential disruptions to network services. Attackers can exploit this vulnerability by sending specially crafted messages to targeted BGP peers. It is recommended that users update their FRR installations to a patched version as soon as possible to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share