Vulnerabilities > CVE-2021-43612 - Out-of-bounds Write vulnerability in multiple products

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
network
low complexity
lldpd-project
fedoraproject
CWE-787

Summary

In lldpd before 1.0.13, when decoding SONMP packets in the sonmp_decode function, it's possible to trigger an out-of-bounds heap read via short SONMP packets.

Vulnerable Configurations

Part Description Count
Application
Lldpd_Project
63
OS
Fedoraproject
3

Common Weakness Enumeration (CWE)