CVE-2012-4435

fwknop < 2.0.3 - Authenticated Denial of Service via Long IP Address

Title source: llm
STIX 2.1

Description

fwknop before 2.0.3 does not properly validate IP addresses, which allows remote authenticated users to cause a denial of service (server crash) via a long IP address.

Scores

EPSS 0.0233
EPSS Percentile 81.5%

Details

CWE
CWE-20
Status published
Products (3)
cipherdyne/fwknop 2.0
cipherdyne/fwknop 2.0.1
cipherdyne/fwknop < 2.0.2
Published Oct 22, 2012
Tracked Since Feb 18, 2026