vulnerability
CentOS Linux: CVE-2018-10932: Low: lldpad security and bug fix update (CESA-2019:3673)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 3 | (AV:A/AC:L/Au:N/C:N/I:P/A:N) | Aug 21, 2018 | Nov 6, 2019 | May 25, 2023 |
Severity
3
CVSS
(AV:A/AC:L/Au:N/C:N/I:P/A:N)
Published
Aug 21, 2018
Added
Nov 6, 2019
Modified
May 25, 2023
Description
lldptool version 1.0.1 and older can print a raw, unsanitized attacker controlled buffer when mngAddr information is displayed. This may allow an attacker to inject shell control characters into the buffer and impact the behavior of the terminal.
Solutions
centos-upgrade-lldpadcentos-upgrade-lldpad-debuginfocentos-upgrade-lldpad-debugsource
References
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.