Vulnerabilities > Frrouting
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-06 | CVE-2023-38406 | Improper Handling of Exceptional Conditions vulnerability in Frrouting bgpd/bgp_flowspec.c in FRRouting (FRR) before 8.4.3 mishandles an nlri length of zero, aka a "flowspec overflow." | 9.8 |
| 2023-11-06 | CVE-2023-38407 | Unspecified vulnerability in Frrouting bgpd/bgp_label.c in FRRouting (FRR) before 8.5 attempts to read beyond the end of the stream during labeled unicast parsing. | 7.5 |
| 2023-11-03 | CVE-2023-47234 | Unspecified vulnerability in Frrouting An issue was discovered in FRRouting FRR through 9.0.1. | 7.5 |
| 2023-11-03 | CVE-2023-47235 | Unspecified vulnerability in Frrouting An issue was discovered in FRRouting FRR through 9.0.1. | 7.5 |
| 2023-10-26 | CVE-2023-46752 | Unspecified vulnerability in Frrouting An issue was discovered in FRRouting FRR through 9.0.1. | 5.9 |
| 2023-10-26 | CVE-2023-46753 | Unspecified vulnerability in Frrouting An issue was discovered in FRRouting FRR through 9.0.1. | 5.9 |
| 2023-09-05 | CVE-2023-41909 | NULL Pointer Dereference vulnerability in multiple products An issue was discovered in FRRouting FRR through 9.0. | 7.5 |
| 2023-08-29 | CVE-2023-38802 | Improper Validation of Integrity Check Value vulnerability in multiple products FRRouting FRR 7.5.1 through 9.0 and Pica8 PICOS 4.3.3.2 allow a remote attacker to cause a denial of service via a crafted BGP update with a corrupted attribute 23 (Tunnel Encapsulation). | 7.5 |
| 2023-08-29 | CVE-2023-41358 | NULL Pointer Dereference vulnerability in multiple products An issue was discovered in FRRouting FRR through 9.0. | 7.5 |
| 2023-08-29 | CVE-2023-41359 | Out-of-bounds Read vulnerability in multiple products An issue was discovered in FRRouting FRR through 9.0. | 9.1 |