cbcvebase.
CVE-2024-6284
published 2024-07-03

CVE-2024-6284: In https://github.com/google/nftables IP addresses were encoded in the wrong byte order, resulting in an nftables configuration which does not work as intended…

PriorityP339high7.3CVSS 3.1
AVNACLPRNUINSUCLILAL
EPSS
0.29%
20.3th percentile
In https://github.com/google/nftables IP addresses were encoded in the wrong byte order, resulting in an nftables configuration which does not work as intended (might block or not block the desired addresses). This issue affects: https://pkg.go.dev/github.com/google/[email protected] The bug was fixed in the next released version: https://pkg.go.dev/github.com/google/[email protected]

Affected

4 ranges
VendorProductVersion rangeFixed in
debiangolang-github-google-nftables< golang-github-google-nftables 0.1.0-4~deb12u1 (bookworm)golang-github-google-nftables 0.1.0-4~deb12u1 (bookworm)
github.comgoogle_nftables>= 0.1.0 < 0.2.00.2.0
googlehttps_github.com_google_nftables
googlenftables

CVSS provenance

nvdv3.17.3HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
nvdv4.06.3MEDIUMCVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:L/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
osv6.3MEDIUM
vendor_debian6.3MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.