High severity7.5NVD Advisory· Published Apr 3, 2023· Updated Jun 17, 2026
CVE-2022-36440
CVE-2022-36440
Description
A reachable assertion was found in Frrouting frr-bgpd 8.3.0 in the peek_for_as4_capability function. Attackers can maliciously construct BGP open packets and send them to BGP peers running frr-bgpd, resulting in DoS.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4- Frrouting/frr-bgpddescription
- osv-coords2 versions
< 8.3.1-11.el9_3.alma.1+ 1 more
- (no CPE)range: < 8.3.1-11.el9_3.alma.1
- (no CPE)range: < 8.3.1-11.el9_3.alma.1
Patches
Vulnerability mechanics
References
6- github.com/spwpun/pocs/blob/main/frr-bgpd.mdnvdExploitThird Party Advisory
- lists.debian.org/debian-lts-announce/2023/09/msg00020.htmlnvdMailing ListThird Party Advisory
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3HU4PKLUVB5CTMOVQ2GV33TNUNMJCBGD/nvdMailing ListThird Party Advisory
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BBXEXL2ZQBWCBLNUP6P67FHECXQWSK3L/nvdMailing ListThird Party Advisory
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GM66PNHGCXZU66LQCTP2FSJLFF6CVMSI/nvdMailing ListThird Party Advisory
- www.debian.org/security/2023/dsa-5495nvdThird Party Advisory
News mentions
0No linked articles in our index yet.