How severe is CVE-2023-41376?

CVE-2023-41376 has a CVSS v3 score of 7.5 (HIGH).

CVE-2023-41376

Name: service_router_operating_system
Author: nokia

7.5HIGH

Nokia Service Router Operating System (SR OS) 22.10 and SR Linux, when error-handling update-fault-tolerance is not enabled, mishandle BGP path attributes.

Published: 8/29/2023Updated: 11/21/2024

Description

Nokia Service Router Operating System (SR OS) 22.10 and SR Linux, when error-handling update-fault-tolerance is not enabled, mishandle BGP path attributes.

AI AnalysisPowered by AI

Affected Products

nokiaservice_router_linux

nokiaservice_router_operating_system

22.10

References

https://blog.benjojo.co.uk/post/bgp-path-attributes-grave-error-handling
ExploitThird Party Advisory
https://news.ycombinator.com/item?id=37305800
Issue Tracking
https://www.nokia.com/networks/technologies/service-router-operating-system/
Product
https://blog.benjojo.co.uk/post/bgp-path-attributes-grave-error-handling
ExploitThird Party Advisory
https://news.ycombinator.com/item?id=37305800
Issue Tracking
https://www.nokia.com/networks/technologies/service-router-operating-system/
Product