Security Advisory

CVE-2023-41910

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-09-05 00:00:00

Last updated 2024-09-30 17:18:00

Assigner mitre

State PUBLISHED

Description

An issue was discovered in lldpd before 1.0.17. By crafting a CDP PDU packet with specific CDP_TLV_ADDRESSES TLVs, a malicious actor can remotely force the lldpd daemon to perform an out-of-bounds read on heap memory. This occurs in cdp_decode in daemon/protocols/cdp.c.

← Browse all CVEs View on cve.org ↗