CVE-2023-5366

Published: Oct 6, 2023

Modified: Feb 13, 2025

PUBLISHED

CVSS v3.1

7.1

HIGH

Description

A flaw was found in Open vSwitch that allows ICMPv6 Neighbor Advertisement packets between virtual machines to bypass OpenFlow rules. This issue may allow a local attacker to create specially crafted packets with a modified or spoofed target IP address field that can redirect ICMPv6 traffic to arbitrary IP addresses.

Vendor	Product	Versions
n/a	openvswitch	All versions
Red Hat	Fast Datapath for RHEL 7	All versions
Red Hat	Fast Datapath for RHEL 7	All versions
Red Hat	Fast Datapath for RHEL 7	All versions
Red Hat	Fast Datapath for RHEL 7	All versions
Red Hat	Fast Datapath for RHEL 7	All versions
Red Hat	Fast Datapath for RHEL 7	All versions
Red Hat	Fast Datapath for RHEL 8	All versions
Red Hat	Fast Datapath for RHEL 8	All versions
Red Hat	Fast Datapath for RHEL 8	All versions
Red Hat	Fast Datapath for RHEL 8	All versions
Red Hat	Fast Datapath for RHEL 8	All versions
Red Hat	Fast Datapath for RHEL 8	All versions
Red Hat	Fast Datapath for RHEL 8	All versions
Red Hat	Fast Datapath for RHEL 9	All versions
Red Hat	Fast Datapath for RHEL 9	All versions
Red Hat	Fast Datapath for RHEL 9	All versions
Red Hat	Red Hat Enterprise Linux 7	All versions
Red Hat	Red Hat OpenShift Container Platform 3.11	All versions
Red Hat	Red Hat OpenShift Container Platform 4	All versions
Red Hat	Red Hat OpenShift Container Platform 4	All versions
Red Hat	Red Hat OpenShift Container Platform 4	All versions
Red Hat	Red Hat OpenShift Container Platform 4	All versions
Red Hat	Red Hat OpenShift Container Platform 4	All versions
Red Hat	Red Hat OpenStack Platform 16.1	All versions
Red Hat	Red Hat OpenStack Platform 16.2	All versions
Red Hat	Red Hat Virtualization 4	All versions
Red Hat	Red Hat Virtualization 4	All versions
Fedora	Fedora	All versions