Strix
26.1K

CVE-2010-2363

UnknownEPSS 1.90%

Last modified

CVE-2010-2363 is a vulnerability of currently unknown severity. The IPv6 Unicast Reverse Path Forwarding (RPF) implementation on the SEIL/X1, SEIL/X2, and SEIL/B1 routers with firmware 1.00 through 2.73, when strict mode is used, does not properly drop packets, which might allow remote attackers to bypass intended access restrictions via a spoofed IP address.. EPSS estimates a 1.90% chance of exploitation in the next 30 days.

Description

The IPv6 Unicast Reverse Path Forwarding (RPF) implementation on the SEIL/X1, SEIL/X2, and SEIL/B1 routers with firmware 1.00 through 2.73, when strict mode is used, does not properly drop packets, which might allow remote attackers to bypass intended access restrictions via a spoofed IP address.

Metrics

EPSS Probability
1.90%

77.0th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
IijSeil\/X1 Firmware1.10
IijSeil\/X1 Firmware1.11
IijSeil\/X1 Firmware1.20
IijSeil\/X1 Firmware1.21
IijSeil\/X1 Firmware1.22
IijSeil\/X1 Firmware1.30
IijSeil\/X1 Firmware1.31
IijSeil\/X1 Firmware1.32
IijSeil\/X1 Firmware1.40
IijSeil\/X1 Firmware1.41
IijSeil\/X1 Firmware1.43
IijSeil\/X1 Firmware1.44
IijSeil\/X1 Firmware2.10
IijSeil\/X1 Firmware2.20
IijSeil\/X1 Firmware2.30
IijSeil\/X1 Firmware2.40
IijSeil\/X1 Firmware2.41
IijSeil\/X1 Firmware2.42
IijSeil\/X1 Firmware2.50
IijSeil\/X1 Firmware2.51
IijSeil\/X1 Firmware2.52
IijSeil\/X1 Firmware2.60
IijSeil\/X1 Firmware2.61
IijSeil\/X1 Firmware2.62
IijSeil\/X1 Firmware2.63
IijSeil\/X1 Firmware2.70
IijSeil\/X1 Firmware2.72
IijSeil\/X1 Firmware2.73
IijSeil\/X2 Firmware1.00
IijSeil\/X2 Firmware1.10
IijSeil\/X2 Firmware1.11
IijSeil\/X2 Firmware1.20
IijSeil\/X2 Firmware1.21
IijSeil\/X2 Firmware1.22
IijSeil\/X2 Firmware1.30
IijSeil\/X2 Firmware1.31
IijSeil\/X2 Firmware1.32
IijSeil\/X2 Firmware1.40
IijSeil\/X2 Firmware1.41
IijSeil\/X2 Firmware1.43
IijSeil\/X2 Firmware1.44
IijSeil\/X2 Firmware2.10
IijSeil\/X2 Firmware2.20
IijSeil\/X2 Firmware2.30
IijSeil\/X2 Firmware2.40
IijSeil\/X2 Firmware2.41
IijSeil\/X2 Firmware2.42
IijSeil\/X2 Firmware2.50
IijSeil\/X2 Firmware2.51
IijSeil\/X2 Firmware2.52

Showing 50 of 73 affected configurations. See NVD for the full list.

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2010-2363?
The IPv6 Unicast Reverse Path Forwarding (RPF) implementation on the SEIL/X1, SEIL/X2, and SEIL/B1 routers with firmware 1.00 through 2.73, when strict mode is used, does not properly drop packets, which might allow remote attackers to bypass intended access restrictions via a spoofed IP address.
How severe is CVE-2010-2363?
Severity scoring for CVE-2010-2363 is pending analysis. The EPSS model estimates a 1.90% probability of exploitation in the next 30 days.
How do I fix CVE-2010-2363?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2010-2363?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST