Linuxfoundation: >> Software For Open Networking In The Cloud Security Vulnerabilities
Software for Open Networking in the Cloud (SONiC) Elevation of Privilege Vulnerability
CVSS Score
7.8
EPSS Score
0.008
Published
2024-03-12
There is a vulnerability in DHCPv6 packet parsing code that could be explored by remote attacker to craft a packet that could cause buffer overflow in a memcpy call, leading to out-of-bounds memory write that would cause dhcp6relay to crash. Dhcp6relay is a critical process and could cause dhcp relay docker to shutdown.
Discovered by Eugene Lim of GovTech Singapore.
CVSS Score
8.1
EPSS Score
0.005
Published
2022-11-14