CVE-2021-3911

MEDIUM

cloudflare/octorpki < 1.3.0 - Denial of Service via ROA IP Address Bit Overflow

Title source: llm

If the ROA that a repository returns contains too many bits for the IP address then OctoRPKI will crash.

Core 2

Core References

Third Party Advisory x_refsource_misc

Third Party Advisory vendor-advisory x_refsource_debian

CVSS v3 4.2

EPSS 0.0088

EPSS Percentile 54.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:N/I:N/A:H

CWE

CWE-252 CWE-20

Status published

Products (3)

cloudflare/cfrpki 0 - 1.4.0Go

cloudflare/octorpki < 1.3.0

debian/debian_linux 11.0

Published Nov 11, 2021

Tracked Since Feb 18, 2026