PT-2024-19073 · Unknown+3 · Open Virtual Network+3

Frode Nordahl

Published

2024-03-05

Updated

2026-02-24

CVE-2024-2182

CVSS v2.0

6.8

Medium

Vector

AV:N/AC:L/Au:S/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Open Virtual Network (OVN) (affected versions not specified)

Description A flaw was found in the Open Virtual Network (OVN) that can be exploited by an attacker to inject specially crafted BFD packets from inside unprivileged workloads, including virtual machines or containers. This can trigger a denial of service in OVN clusters where BFD is used between hypervisors for high availability.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

Origin Validation Error

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-346

Related Identifiers

BDU:2025-03942

CVE-2024-2182

RHSA-2024:1385

RHSA-2024:1386

RHSA-2024:1387

RHSA-2024:1388

RHSA-2024:1390

RHSA-2024:1391

RHSA-2024:1392

RHSA-2024:1393

RHSA-2024:1394

RHSA-2024:4035

SUSE-SU-2026:0280-1

SUSE-SU-2026:0290-1

SUSE-SU-2026:0619-1

SUSE-SU-2026:20049-1

SUSE-SU-2026:20061-1

USN-6691-1

Affected Products

Astra Linux

Linuxmint

Open Virtual Network

Ubuntu

PT-2024-19073 · Unknown+3 · Open Virtual Network+3

CVE-2024-2182

Weakness Enumeration

Related Identifiers

Affected Products

References · 59