QwikSec

Security Database

CVE

CWE

Training

CVE-2020-27827

Published: Mar 18, 2021

Modified: Dec 3, 2025

PUBLISHED

Description

A flaw was found in multiple versions of OpenvSwitch. Specially crafted LLDP packets can cause memory to be lost when allocating data to handle specific optional TLVs, potentially causing a denial of service. The highest threat from this vulnerability is to system availability.

Vendor	Product	Versions
n/a	lldp/openvswitch	affected `lldpd 1.0.8, openvswitch 2.14.1, openvswitch 2.13.2, openvswitch 2.12.2, openvswitch 2.11.5, openvswitch 2.10.6, openvswitch 2.9.8, openvswitch 2.8.10, openvswitch 2.7.12, openvswitch 2.6.9`

Weaknesses (CWE)

References

https://bugzilla.redhat.com/show_bug.cgi?id=1921438

https://mail.openvswitch.org/pipermail/ovs-dev/2021-January/379471.html

https://cert-portal.siemens.com/productcert/pdf/ssa-941426.pdf

https://us-cert.cisa.gov/ics/advisories/icsa-21-194-07

FEDORA-2023-88991d2713

vendor-advisory

FEDORA-2023-c0c184a019

vendor-advisory

FEDORA-2023-3e4feeadec

vendor-advisory

vendor-advisory

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.