CVE-2023-45886 Information

Description

The BGP daemon (bgpd) in IP Infusion ZebOS through 7.10.6 allow remote attackers to cause a denial of service by sending crafted BGP update messages containing a malformed attribute.

Reference

https://blog.benjojo.co.uk/post/bgp-path-attributes-grave-error-handling https://www.kb.cert.org/vuls/id/347067 https://www.ipinfusion.com/doc_prod_cat/zebos/ https://my.f5.com/manage/s/article/K000137315