PT-2024-16295 · Μd3Tn · Μd3Tn
Published
2024-10-28
·
Updated
2024-10-29
·
CVE-2024-10455
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
µD3TN version 0.14.0
Description
The issue is related to a reachable assertion in the BPv7 parser, which can be triggered by an attacker using a malformed Extension Block, potentially disrupting the service.
Recommendations
For version 0.14.0, consider disabling the BPv7 parser until a patch is available to prevent disruption of service by malformed Extension Blocks.
Exploit
Fix
Assertion Failure
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Μd3Tn