CVE-2024-3661

7.6HIGH

DHCP can add routes to a client’s routing table via the classless static route option (121). VPN-based security solutions that rely on routes to redirect traffic can be forced to leak traffic over the

公開日: 5/6/2024更新日: 1/15/2025
NVDで表示MITREで表示

説明

DHCP can add routes to a client’s routing table via the classless static route option (121). VPN-based security solutions that rely on routes to redirect traffic can be forced to leak traffic over the physical interface. An attacker on the same local network can read, disrupt, or possibly modify network traffic that was expected to be protected by the VPN.

AI分析AIによる分析

影響を受ける製品

fortinetforticlient
fortinetforticlient
fortinetforticlient
fortinetforticlient
7.4.0
fortinetforticlient
7.4.0
fortinetforticlient
7.4.0
ciscoanyconnect_vpn_client
-
ciscosecure_client
-
paloaltonetworksglobalprotect
paloaltonetworksglobalprotect
paloaltonetworksglobalprotect
paloaltonetworksglobalprotect
citrixsecure_access_client
appleiphone_os
-
applemacos
-
citrixsecure_access_client
linuxlinux_kernel
-
f5big-ip_access_policy_manager
f5big-ip_access_policy_manager
f5big-ip_access_policy_manager
f5big-ip_access_policy_manager
watchguardipsec_mobile_vpn_client
watchguardipsec_mobile_vpn_client
watchguardmobile_vpn_with_ssl
watchguardmobile_vpn_with_ssl
zscalerclient_connector
zscalerclient_connector
zscalerclient_connector
zscalerclient_connector
-

参照