Skip to main content
CVE-2016-2342 HIGH Act Now

The bgp_nlri_parse_vpnv4 function in bgp_mplsvpn.c in the VPNv4 NLRI parser in bgpd in Quagga before 1.0.20160309, when a certain VPNv4 configuration is used, relies on a Labeled-VPN SAFI routes-data. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. Epss exploitation probability 20.4% and no vendor patch available.

Denial Of Service RCE Buffer Overflow Quagga Debian Linux
NVD
CVSS 3.0
8.1
EPSS
20.4%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy