DPDK DoS via Permissive Vhost Header Validation
CVE-2022-2132 Published on August 31, 2022

A permissive list of allowed inputs flaw was found in DPDK. This issue allows a remote attacker to cause a denial of service triggered by sending a crafted Vhost header to DPDK.

NVD

Weakness Type

Incomplete Filtering of Special Elements

The software receives data from an upstream component, but does not completely filter special elements before sending it to a downstream component.

Products Associated with CVE-2022-2132

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2022-2132 are published in these products:

Dpdk Data Plane Development Kit

Fedora Project Fedora

Debian Linux

Red Hat Enterprise Linux (RHEL)

Red Hat Virtualization

Red Hat Enterprise Linux Fast Datapath

Red Hat Openshift Container Platform

Red Hat Openstack Platform

Exploit Probability

EPSS

0.78%

Percentile

73.33%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

DPDK DoS via Permissive Vhost Header ValidationCVE-2022-2132 Published on August 31, 2022

Weakness Type

Incomplete Filtering of Special Elements

Products Associated with CVE-2022-2132

Exploit Probability

DPDK DoS via Permissive Vhost Header Validation
CVE-2022-2132 Published on August 31, 2022