Openvswitch don't match packets on nd_target field
CVE-2023-5366

7.1HIGH

Key Information:

Vendor: Red Hat
Status: Openvswitch; Fast Datapath For Rhel 7; Fast Datapath For Rhel 8; Fast Datapath For Rhel 9
Vendor: CVE Published:; 6 October 2023

Summary

A vulnerability exists in Open vSwitch that allows ICMPv6 Neighbor Advertisement packets between virtual machines to bypass established OpenFlow rules. This flaw enables a local attacker to craft specially modified packets with a spoofed target IP address, potentially redirecting ICMPv6 traffic to unintended destinations. This situation presents a significant risk, as it can be exploited to disrupt communication within virtual networks, affecting the integrity and availability of network services.

References

https://access.redhat.com/security/cve/CVE-2023-5366

vdb-entryx_refsource_REDHAT

https://bugzilla.redhat.com/show_bug.cgi?id=2006347

issue-trackingx_refsource_REDHAT

http://www.openwall.com/lists/oss-security/2024/02/08/4

CVSS V3.1

Score:

7.1

Severity:

HIGH

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Oct 6, 2023
Vulnerability Reserved
Oct 3, 2023

Credit

This issue was discovered by Alex Katz (Red Hat) and Slawomir Kaplonski (Red Hat).