7.1
CVE-2013-4348
- EPSS 4.27%
- Published 04.11.2013 15:55:05
- Last modified 11.04.2025 00:51:21
- Source secalert@redhat.com
- Teams watchlist Login
- Open Login
The skb_flow_dissect function in net/core/flow_dissector.c in the Linux kernel through 3.12 allows remote attackers to cause a denial of service (infinite loop) via a small value in the IHL field of a packet with IPIP encapsulation.
Data is provided by the National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version >= 3.2 < 3.2.54
Linux ≫ Linux Kernel Version >= 3.3 < 3.4.70
Linux ≫ Linux Kernel Version >= 3.5 < 3.10.20
Linux ≫ Linux Kernel Version >= 3.11 < 3.11.9
Linux ≫ Linux Kernel Version >= 3.12 < 3.12.1
Canonical ≫ Ubuntu Linux Version12.04 SwEdition-
Canonical ≫ Ubuntu Linux Version13.10
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 4.27% | 0.884 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 7.1 | 8.6 | 6.9 |
AV:N/AC:M/Au:N/C:N/I:N/A:C
|