CVE-2012-6083 : Freeciv before 2.3.3 allows remote attackers to cause a denial of service via a

Freeciv before 2.3.3 allows remote attackers to cause a denial of service via a crafted packet.

Published 2020-01-23 18:15:13

Updated 2020-01-27 14:00:22

Source Red Hat, Inc.

View at NVD, CVE.org

Vulnerability category: Denial of service

Products affected by CVE-2012-6083

Freeciv » Freeciv
Versions before (<) 2.3.3
cpe:2.3:a:freeciv:freeciv:*:*:*:*:*:*:*:*
Matching versions

EPSS FAQ

8.19%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 92 %

Percentile, the proportion of vulnerabilities that are scored at or less

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
7.8	HIGH	AV:N/AC:L/Au:N/C:N/I:N/A:C	10.0	6.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Complete
7.5	HIGH	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H	3.9	3.6	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High

CWE-400 Uncontrolled Resource Consumption

The product does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.

Assigned by: nvd@nist.gov (Primary)

https://freeciv.fandom.com/wiki/NEWS-2.3.3

NEWS-2.3.3 | Freeciv | Fandom
Vendor Advisory
http://www.openwall.com/lists/oss-security/2012/12/31/2

oss-security - Re: About CVE-2012-5645
Mailing List;Third Party Advisory

CVEs referencing this url

Jump to