VYPR

FORT Validator

by NICMx

CVEs (2)

  • CVE-2024-56375Dec 22, 2024
    risk 0.00cvss epss 0.00

    An integer underflow was discovered in Fort 1.6.3 and 1.6.4 before 1.6.5. A malicious RPKI repository that descends from a (trusted) Trust Anchor can serve (via rsync or RRDP) a Manifest RPKI object containing an empty fileList. Fort dereferences (and, shortly afterwards, writes…

  • CVE-2021-43114Nov 9, 2021
    risk 0.00cvss epss 0.01

    FORT Validator versions prior to 1.5.2 will crash if an RPKI CA publishes an X.509 EE certificate. This will lead to RTR clients such as BGP routers to lose access to the RPKI VRP data set, effectively disabling Route Origin Validation.