CVE-2025-23019

Name of the Vulnerable Software and Affected Versions IPv6-in-IPv4 tunneling (RFC 4213) versions not specified

Description The issue is related to the IPv6-in-IPv4 tunneling protocol, which allows an attacker to spoof and route traffic via an exposed network interface. This can be exploited by a remote attacker to conduct attacks, such as spoofing a trusted object, by sending a specially crafted packet with two IP headers. The vulnerability is associated with insufficient source channel verification in packet tunneling protocols.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.