Vulnerabilities > Lldpd Project

DATE CVE VULNERABILITY TITLE RISK
2023-09-05 CVE-2023-41910 Out-of-bounds Read vulnerability in Lldpd Project Lldpd
An issue was discovered in lldpd before 1.0.17.
network
low complexity
lldpd-project CWE-125
critical
9.8
2023-04-15 CVE-2021-43612 Out-of-bounds Write vulnerability in multiple products
In lldpd before 1.0.13, when decoding SONMP packets in the sonmp_decode function, it's possible to trigger an out-of-bounds heap read via short SONMP packets.
network
low complexity
lldpd-project fedoraproject CWE-787
7.5
2021-03-18 CVE-2020-27827 A flaw was found in multiple versions of OpenvSwitch. 7.5
2020-01-28 CVE-2015-8012 Reachable Assertion vulnerability in Lldpd Project Lldpd
lldpd before 0.8.0 allows remote attackers to cause a denial of service (assertion failure and daemon crash) via a malformed packet.
network
low complexity
lldpd-project CWE-617
7.5
2020-01-28 CVE-2015-8011 Classic Buffer Overflow vulnerability in multiple products
Buffer overflow in the lldp_decode function in daemon/protocols/lldp.c in lldpd before 0.8.0 allows remote attackers to cause a denial of service (daemon crash) and possibly execute arbitrary code via vectors involving large management addresses and TLV boundaries.
network
low complexity
lldpd-project debian fedoraproject CWE-120
critical
9.8