CVE-2024-6284
published 2024-07-03CVE-2024-6284: In https://github.com/google/nftables IP addresses were encoded in the wrong byte order, resulting in an nftables configuration which does not work as intended…
PriorityP339high7.3CVSS 3.1
AVNACLPRNUINSUCLILAL
EPSS
0.29%
20.3th percentile
In https://github.com/google/nftables IP addresses were encoded in the wrong byte order, resulting in an nftables configuration which does not work as intended (might block or not block the desired addresses).
This issue affects: https://pkg.go.dev/github.com/google/[email protected]
The bug was fixed in the next released version: https://pkg.go.dev/github.com/google/[email protected]
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | golang-github-google-nftables | < golang-github-google-nftables 0.1.0-4~deb12u1 (bookworm) | golang-github-google-nftables 0.1.0-4~deb12u1 (bookworm) |
| github.com | google_nftables | >= 0.1.0 < 0.2.0 | 0.2.0 |
| https_github.com_google_nftables | — | — | |
| nftables | — | — |
CVSS provenance
nvdv3.17.3HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
nvdv4.06.3MEDIUMCVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:L/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
osv6.3MEDIUM
vendor_debian6.3MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
IP addresses were encoded in the wrong byte order in github.com/google/nftables
osv·2024-07-09
CVE-2024-6284 IP addresses were encoded in the wrong byte order in github.com/google/nftables
IP addresses were encoded in the wrong byte order in github.com/google/nftables
IP addresses were encoded in the wrong byte order, resulting in an nftables configuration which did not work as intended (might block or not block the desired addresses).
OSV
github.com/google/nftable IP addresses were encoded in the wrong byte order
osv·2024-07-04
CVE-2024-6284 [MEDIUM] github.com/google/nftable IP addresses were encoded in the wrong byte order
github.com/google/nftable IP addresses were encoded in the wrong byte order
In https://github.com/google/nftables IP addresses were encoded in the wrong byte order, resulting in an nftables configuration which does not work as intended (might block or not block the desired addresses).
This issue affects: https://pkg.go.dev/github.com/google/[email protected]
The bug was fixed in the next released version: https://pkg.go.dev/github.com/google/[email protected]
GHSA
github.com/google/nftable IP addresses were encoded in the wrong byte order
ghsa·2024-07-04
CVE-2024-6284 [MEDIUM] CWE-1286 github.com/google/nftable IP addresses were encoded in the wrong byte order
github.com/google/nftable IP addresses were encoded in the wrong byte order
In https://github.com/google/nftables IP addresses were encoded in the wrong byte order, resulting in an nftables configuration which does not work as intended (might block or not block the desired addresses).
This issue affects: https://pkg.go.dev/github.com/google/[email protected]
The bug was fixed in the next released version: https://pkg.go.dev/github.com/google/[email protected]
OSV
CVE-2024-6284: In https://github
osv·2024-07-03·CVSS 6.3
CVE-2024-6284 [MEDIUM] CVE-2024-6284: In https://github
In https://github.com/google/nftables IP addresses were encoded in the wrong byte order, resulting in an nftables configuration which does not work as intended (might block or not block the desired addresses). This issue affects: https://pkg.go.dev/github.com/google/[email protected] The bug was fixed in the next released version: https://pkg.go.dev/github.com/google/[email protected]
Debian
CVE-2024-6284: golang-github-google-nftables - In https://github.com/google/nftables IP addresses were encoded in the wrong b...
vendor_debian·2024·CVSS 6.3
CVE-2024-6284 [MEDIUM] CVE-2024-6284: golang-github-google-nftables - In https://github.com/google/nftables IP addresses were encoded in the wrong b...
In https://github.com/google/nftables IP addresses were encoded in the wrong byte order, resulting in an nftables configuration which does not work as intended (might block or not block the desired addresses). This issue affects: https://pkg.go.dev/github.com/google/[email protected] The bug was fixed in the next released version: https://pkg.go.dev/github.com/google/[email protected]
Scope: local
bookworm: resolved (fixed in 0.1.0-4~deb12u1)
forky: resolved (fixed in 0.1.0-4)
sid: resolved (fixed in 0.1.0-4)
trixie: resolved (fixed in 0.1.0-4)
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://bugs.launchpad.net/ubuntu/+source/crowdsec-firewall-bouncer/+bug/2069596https://github.com/crowdsecurity/cs-firewall-bouncer/issues/368https://github.com/google/nftables/issues/225https://bugs.launchpad.net/ubuntu/+source/crowdsec-firewall-bouncer/+bug/2069596https://github.com/crowdsecurity/cs-firewall-bouncer/issues/368https://github.com/google/nftables/issues/225
2024-07-03
Published