vulnerability
Ubuntu: (CVE-2024-6284): golang-github-google-nftables vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 8 | (AV:N/AC:L/Au:N/C:P/I:P/A:P) | Jul 3, 2024 | Jun 26, 2025 | Mar 27, 2026 |
Severity
8
CVSS
(AV:N/AC:L/Au:N/C:P/I:P/A:P)
Published
Jul 3, 2024
Added
Jun 26, 2025
Modified
Mar 27, 2026
Description
In https://github.com/google/nftables IP addresses were encoded in the wrong byte order, resulting in an nftables configuration which does not work as intended (might block or not block the desired addresses).
This issue affects: https://pkg.go.dev/github.com/google/[email protected]
The bug was fixed in the next released version: https://pkg.go.dev/github.com/google/[email protected]
Solution
no-fix-ubuntu-package
References
- CVE-2024-6284
- https://attackerkb.com/topics/CVE-2024-6284
- CWE-1286
- CWE-1389
- EUVD-EUVD-2024-2405
- https://bugs.launchpad.net/ubuntu/+source/crowdsec-firewall-bouncer/+bug/2069596
- https://euvd.enisa.europa.eu/vulnerability/EUVD-2024-2405
- https://github.com/crowdsecurity/cs-firewall-bouncer/issues/368
- https://github.com/google/nftables/commit/d746ecb0e494e7200180c3886fde9664d9100729
- https://github.com/google/nftables/issues/225
- https://www.cve.org/CVERecord?id=CVE-2024-6284
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.