CVE-2024-48943Fort-validator vulnerability

4 documents3 sources
Severity
7.5HIGHOSV
No vector
EPSS
No EPSS data
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Nicmx Fort-validator
Timeline
PublishedOct 8

Description

Title: FORT Validator vulnerabilities Summary: Several security issues were fixed in FORT Validator. Niklas Vogel and Haya Schulmann discovered that FORT Validator did not perform proper input validation when parsing certain RPKI repository data. A remote attacker could possibly use this issue to cause FORT Validator to crash, resulting in a denial of service. (CVE-2024-45234, CVE-2024-45235, CVE-2024-45236, CVE-2024-45238, CVE-2024-45239) Niklas Vogel and Haya Schulmann discovered that FORT

Affected Packages1 packages

Ubuntunicmx/fort-validator< 1.5.3-1ubuntu0.1+2

🔴Vulnerability Details

2
OSV
fort-validator vulnerabilities2025-10-08
OSV
CVE-2024-48943: A malicious RPKI rsync repository can prevent Fort from finishing its validation run by drip-feeding its content2025-01-10

📋Vendor Advisories

2
Ubuntu
FORT Validator vulnerabilities2025-10-08
Debian
CVE-2024-48943: fort-validator2024
CVE-2024-48943 — Nicmx Fort-validator vulnerability | cvebase