CVE-2023-29552

Name of the Vulnerable Software and Affected Versions Service Location Protocol (SLP) (affected versions not specified)

Description The Service Location Protocol (SLP) allows an unauthenticated, remote attacker to register arbitrary services. This could allow the attacker to use spoofed UDP traffic to conduct a denial-of-service attack with a significant amplification factor. The vulnerability is being actively exploited to launch massive DoS amplification attacks. Approximately 54,000 vulnerable devices in 2,000 organizations have been identified.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability. As a temporary workaround, consider disabling the Service Location Protocol (SLP) on systems operating in untrusted networks to minimize the risk of exploitation. Restrict access to SLP services to prevent unauthorized registration of services. Avoid using SLP for critical services until the issue is resolved. Mitigations are required by November 29, 2023.