VYPR

Frr

by Frrouting

Source repositories

CVEs (44)

  • CVE-2023-41358HigAug 29, 2023
    risk 0.00cvss 7.5epss 0.01

    An issue was discovered in FRRouting FRR through 9.0. bgpd/bgp_packet.c processes NLRIs if the attribute length is zero.

  • CVE-2022-37032CriSep 19, 2022
    risk 0.00cvss 9.1epss 0.02

    An out-of-bounds read in the BGP daemon of FRRouting FRR before 8.4 may lead to a segmentation fault and denial of service. This occurs in bgp_capability_msg_parse in bgpd/bgp_packet.c.

  • CVE-2020-12831MedMay 13, 2020
    risk 0.00cvss 5.3epss 0.01

    An issue was discovered in FRRouting FRR (aka Free Range Routing) through 7.3.1. When using the split-config feature, the init script creates an empty config file with world-readable default permissions, leading to a possible information leak via tools/frr.in and…

  • CVE-2019-5892MedJan 10, 2019
    risk 0.00cvss 6.5epss 0.03

    bgpd in FRRouting FRR (aka Free Range Routing) 2.x and 3.x before 3.0.4, 4.x before 4.0.1, 5.x before 5.0.2, and 6.x before 6.0.2 (not affecting Cumulus Linux or VyOS), when ENABLE_BGP_VNC is used for Virtual Network Control, allows remote attackers to cause a denial of service…

Page 3 of 3