MidnightBSD

Advisories for d3tn

CVE-2024-10455

Reachable Assertion in BPv7 parser in µD3TN v0.14.0 allows attacker to disrupt service via malformed Extension Block

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
d3tn ud3tn 0.14.0
CVE-2024-12107

Double-Free Vulnerability in uD3TN BPv7 Caused by Malformed Endpoint Identifier allows remote attacker to reliably cause DoS

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
d3tn ud3tn 0.14.2
d3tn ud3tn 0.14.1
d3tn ud3tn 0.13.0
CVE-2025-8183

NULL Pointer Dereference in µD3TN via non-singleton destination Endpoint Identifier allows remote attacker to reliably cause DoS

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
d3tn ud3tn 0.14.3