PT-2022-9876 · Ieee+1 · 802.2+3
Published
2022-09-27
·
Updated
2022-10-12
·
CVE-2021-27854
CVSS v3.1
4.7
Medium
| Vector | AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
No specific software or versions are mentioned.
Description
The issue allows Layer 2 network filtering capabilities, such as IPv6 RA guard, to be bypassed. This can be achieved by using specific combinations of VLAN 0 headers, LLC/SNAP headers, and converting frames from Ethernet to Wifi and its reverse.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Authentication Bypass by Spoofing
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
802.2
P802.1Q
Draft-Ietf-V6Ops-Ra-Guard
Ieee 802.2