Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in bgpd in FRRouting (FRR) 8.3. In bgp_notify_send_with_data() and bgp_process_packet() in bgp_packet.c, there is a possible use-after-free due to a race condition. This could lead to Remote Code Execution or Information Disclosure by sending crafted BGP packets. User interaction is not needed for exploitation.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
FRRouting FRR 竞争条件问题漏洞
Vulnerability Description
FRRouting FRR是一套对各种IPV4和IPV6路由协议进行实现和管理的软件。 FRRouting FRR 8.3版本存在安全漏洞,该漏洞源于其bgpd组件bgp_packet.c中的bgp_notify_send_with_data()和bgp_process_packet()中存在竞态条件,可能存在释放后重用。攻击者通过发送精心制作的BGP报文,这可能导致远程代码执行或信息泄露。攻击者利用该漏洞时不需要交互。
CVSS Information
N/A
Vulnerability Type
N/A