Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2024:4241
HistoryJul 02, 2024 - 1:55 p.m.

(RHSA-2024:4241) Moderate: iperf3 security update

2024-07-0213:55:29
access.redhat.com
11
iperf3
security update
denial of service
marvin attack
bandwidth measurement
tcp tuning
udp characteristics

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

AI Score

7

Confidence

Low

JSON

Iperf is a tool which can measure maximum TCP bandwidth and tune various parameters and UDP characteristics. Iperf reports bandwidth, delay jitter, and data-gram loss.

Security Fix(es):

  • iperf3: possible denial of service (CVE-2023-7250)

  • iperf3: vulnerable to marvin attack if the authentication option is used (CVE-2024-26306)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

OSVersionArchitecturePackageVersionFilename
RedHat8x86_64iperf3< 3.5-10.el8_10iperf3-3.5-10.el8_10.x86_64.rpm
RedHat8i686iperf3-debugsource< 3.5-10.el8_10iperf3-debugsource-3.5-10.el8_10.i686.rpm
RedHat8i686iperf3-debuginfo< 3.5-10.el8_10iperf3-debuginfo-3.5-10.el8_10.i686.rpm
RedHat8aarch64iperf3-debugsource< 3.5-10.el8_10iperf3-debugsource-3.5-10.el8_10.aarch64.rpm
RedHat8ppc64leiperf3-debugsource< 3.5-10.el8_10iperf3-debugsource-3.5-10.el8_10.ppc64le.rpm
RedHat8s390xiperf3-debugsource< 3.5-10.el8_10iperf3-debugsource-3.5-10.el8_10.s390x.rpm
RedHat8aarch64iperf3-debuginfo< 3.5-10.el8_10iperf3-debuginfo-3.5-10.el8_10.aarch64.rpm
RedHat8s390xiperf3-debuginfo< 3.5-10.el8_10iperf3-debuginfo-3.5-10.el8_10.s390x.rpm
RedHat8ppc64leiperf3< 3.5-10.el8_10iperf3-3.5-10.el8_10.ppc64le.rpm
RedHat8x86_64iperf3-debuginfo< 3.5-10.el8_10iperf3-debuginfo-3.5-10.el8_10.x86_64.rpm
Rows per page:
1-10 of 151

Related

nessus 10
almalinux 1
oraclelinux 1
osv 3
redos 2
ubuntucve 2
nvd 2
redhatcve 2
cvelist 2
cve 2
mageia 1
debiancve 2
cbl_mariner 3
openvas 1
vulnrichment 2
veracode 1
amazon 1
photon 2
nessus
nessus
RHEL 8 : iperf3 (RHSA-2024:4241)
2024-07-02 00:00:00
Oracle Linux 8 : iperf3 (ELSA-2024-4241)
2024-07-03 00:00:00
AlmaLinux 8 : iperf3 (ALSA-2024:4241)
2024-07-03 00:00:00
almalinux
almalinux
Moderate: iperf3 security update
2024-07-02 00:00:00
oraclelinux
oraclelinux
iperf3 security update
2024-07-03 00:00:00
osv
osv
Moderate: iperf3 security update
2024-07-02 00:00:00
CVE-2024-26306
2024-05-14 15:08:51
Security update for iperf
2024-06-11 10:12:23
redos
redos
ROS-20240611-06
2024-06-11 00:00:00
ROS-20240422-07
2024-04-22 00:00:00
ubuntucve
ubuntucve
CVE-2024-26306
2024-05-14 00:00:00
CVE-2023-7250
2024-03-18 00:00:00
nvd
nvd
CVE-2024-26306
2024-05-14 15:08:51
CVE-2023-7250
2024-03-18 13:15:06
redhatcve
redhatcve
CVE-2024-26306
2024-05-15 04:28:09
CVE-2023-7250
2024-03-15 15:40:33
cvelist
cvelist
CVE-2024-26306
2024-05-13 00:00:00
CVE-2023-7250 Iperf3: possible denial of service
2024-03-18 12:21:24
cve
cve
CVE-2024-26306
2024-05-14 15:08:51
CVE-2023-7250
2024-03-18 13:15:06
mageia
mageia
Updated iperf packages fix security vulnerability
2024-06-17 20:44:07
debiancve
debiancve
CVE-2024-26306
2024-05-14 15:08:51
CVE-2023-7250
2024-03-18 13:15:06
cbl_mariner
cbl_mariner
CVE-2024-26306 affecting package iperf3 for versions less than 3.17-1
2024-06-12 22:23:00
CVE-2024-26306 affecting package iperf3 for versions less than 3.17.1-1
2024-08-14 20:43:58
CVE-2023-7250 affecting package iperf3 for versions less than 3.17-1
2024-06-12 22:23:00
openvas
openvas
Mageia: Security Advisory (MGASA-2024-0226)
2024-06-18 00:00:00
vulnrichment
vulnrichment
CVE-2024-26306
2024-05-13 00:00:00
CVE-2023-7250 Iperf3: possible denial of service
2024-03-18 12:21:24
veracode
veracode
Denial Of Service (DoS)
2024-03-18 17:22:45
amazon
amazon
Medium: iperf3
2024-06-19 19:15:00
photon
photon
Moderate Photon OS Security Update - PHSA-2024-5.0-0272
2024-05-15 00:00:00
Important Photon OS Security Update - PHSA-2024-4.0-0591
2024-04-11 00:00:00

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

AI Score

7

Confidence

Low

JSON
Related for RHSA-2024:4241
nessus10almalinux1oraclelinux1osv3redos2ubuntucve2nvd2redhatcve2cvelist2cve2mageia1debiancve2cbl_mariner3openvas1vulnrichment2veracode1amazon1photon2