CVE-2023-5366
published 2023-10-06CVE-2023-5366: A flaw was found in Open vSwitch that allows ICMPv6 Neighbor Advertisement packets between virtual machines to bypass OpenFlow rules. This issue may allow a…
medium5.5CVSS 3.1
AVLACLPRLUINSUCNIHAN
A flaw was found in Open vSwitch that allows ICMPv6 Neighbor Advertisement packets between virtual machines to bypass OpenFlow rules. This issue may allow a local attacker to create specially crafted packets with a modified or spoofed target IP address field that can redirect ICMPv6 traffic to arbitrary IP addresses.
Affected
13 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | openvswitch | < openvswitch 3.1.0-2+deb12u1 (bookworm) | openvswitch 3.1.0-2+deb12u1 (bookworm) |
| msrc | azl3_openvswitch_3.3.0-1_on_azure_linux_3.0 | — | — |
| msrc | cbl2_openvswitch_2.17.9-1_on_cbl_mariner_2.0 | — | — |
| openvswitch | openvswitch | < 2023-02-28 | 2023-02-28 |
| openvswitch | openvswitch | >= 0 < 2.15.0+ds1-2+deb11u5 | 2.15.0+ds1-2+deb11u5 |
| openvswitch | openvswitch | >= 0 < 3.1.0-2+deb12u1 | 3.1.0-2+deb12u1 |
| openvswitch | openvswitch | >= 0 < 3.1.2-1 | 3.1.2-1 |
| openvswitch | openvswitch | >= 0 < 3.1.2-1 | 3.1.2-1 |
| openvswitch | openvswitch | >= 0 < 2.13.8-0ubuntu1.4 | 2.13.8-0ubuntu1.4 |
| openvswitch | openvswitch | >= 0 < 2.17.9-0ubuntu0.22.04.1 | 2.17.9-0ubuntu0.22.04.1 |
| redhat | enterprise_linux | — | — |
| redhat | openshift_container_platform | — | — |
| redhat | virtualization | — | — |
CVSS provenance
nvdv3.15.5MEDIUMCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
osv7.5HIGH