Vulnerability Description
In https://github.com/google/nftables IP addresses were encoded in the wrong byte order, resulting in an nftables configuration which does not work as intended (might block or not block the desired addresses). This issue affects: https://pkg.go.dev/github.com/google/[email protected] The bug was fixed in the next released version: https://pkg.go.dev/github.com/google/[email protected]
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Nftables | 0.1.0 |
Related Weaknesses (CWE)
References
- https://bugs.launchpad.net/ubuntu/+source/crowdsec-firewall-bouncer/+bug/2069596Issue Tracking
- https://github.com/crowdsecurity/cs-firewall-bouncer/issues/368ExploitIssue Tracking
- https://github.com/google/nftables/issues/225ExploitIssue Tracking
- https://bugs.launchpad.net/ubuntu/+source/crowdsec-firewall-bouncer/+bug/2069596Issue Tracking
- https://github.com/crowdsecurity/cs-firewall-bouncer/issues/368ExploitIssue Tracking
- https://github.com/google/nftables/issues/225ExploitIssue Tracking
FAQ
What is CVE-2024-6284?
CVE-2024-6284 is a vulnerability with a CVSS score of 7.3 (HIGH). In https://github.com/google/nftables IP addresses were encoded in the wrong byte order, resulting in an nftables configuration which does not work as intended (might block or not block the desired ...
How severe is CVE-2024-6284?
CVE-2024-6284 has been rated HIGH with a CVSS base score of 7.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-6284?
Check the references section above for vendor advisories and patch information. Affected products include: Google Nftables.