Improper access control in Cumulus Linux - CVE-2023-25525
Published: September 11, 2023
Cumulus Linux
Detailed vulnerability description
The vulnerability allows a remote attacker to gain unauthorized access to otherwise restricted functionality.
The vulnerability exists due to improper forwarding where a VxLAN-encapsulated IPv6 packet received on the SVI interface with DMAC/DIPv6 set to the link-local address of the SVI interface. A remote attacker can bypass implemented security restrictions and gain unauthorized access to sensitive information on the system.