CVE-2017-15865

HIGH

FRRouting < 2.0.2 and 3.x < 3.0.2 - Information Disclosure via Malformed BGP UPDATE Packet

Title source: llm
STIX 2.1

Description

bgpd in FRRouting (FRR) before 2.0.2 and 3.x before 3.0.2, as used in Cumulus Linux before 3.4.3 and other products, allows remote attackers to obtain sensitive information via a malformed BGP UPDATE packet from a connected peer, which triggers transmission of up to a few thousand unintended bytes because of a mishandled attribute length, aka RN-690 (CM-18492).

References (5)

Core 5
Core References
Issue Tracking, Vendor Advisory x_refsource_confirm
https://frrouting.org/community/security.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/101794
Issue Tracking, Third Party Advisory x_refsource_confirm
https://support.cumulusnetworks.com/hc/en-us/articles/115014754307#rn690

Scores

CVSS v3 7.5
EPSS 0.0249
EPSS Percentile 82.7%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

CWE
CWE-200
Status published
Products (3)
frrouting/frrouting 3.0 (5 CPE variants)
frrouting/frrouting 3.0.1
frrouting/frrouting < 2.0.2
Published Nov 08, 2017
Tracked Since Feb 18, 2026