CVE-2013-0281
Description
Pacemaker 1.1.10, when remote Cluster Information Base (CIB) configuration or resource management is enabled, does not limit the duration of connections to the blocking sockets, which allows remote attackers to cause a denial of service (connection blocking).
Risk Information
Base Score
8.6
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N/E:P/RL:O/RC:C
EPSS Score
Exploitation Probability
0.669
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| (RHSA-2013:1635) Low: pacemaker security, bug fix, and enhancement update pacemaker-remote-1.1.10-14.el6.i686.rpm | Linux |
| (RHSA-2013:1635) Low: pacemaker security, bug fix, and enhancement update pacemaker-remote-1.1.10-14.el6.x86_64.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234