CVE-2023-29552 - Vulnerability Details

The Service Location Protocol (SLP, RFC 2608) allows an unauthenticated, remote attacker to register arbitrary services. This could allow the attacker to use spoofed UDP traffic to conduct a denial-of-service attack with a significant amplification factor.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is in the KEV database since Nov. 8, 2023.

Exploitation active

Automatable yes

Technical Impact partial

Vendors	Products
Netapp	Smi-s Provider
Service Location Protocol Project	Service Location Protocol
Suse	Linux Enterprise Server Manager Server
Vmware	Esxi

Configuration 1 [-]

cpe:2.3:a:netapp:smi-s_provider:-:*:*:*:*:*:*:*

Configuration 2 [-]

OR	cpe:2.3:a:suse:manager_server:-:::::::*
	cpe:2.3:o:suse:linux_enterprise_server:11:-::::::
	cpe:2.3:o:suse:linux_enterprise_server:12:-::::::
	cpe:2.3:o:suse:linux_enterprise_server:12:-::::sap::*
	cpe:2.3:o:suse:linux_enterprise_server:15:::::-::
	cpe:2.3:o:suse:linux_enterprise_server:15:::::sap::

Configuration 3 [-]

cpe:2.3:o:vmware:esxi:*:*:*:*:*:*:*:*

Configuration 4 [-]

cpe:2.3:a:service_location_protocol_project:service_location_protocol:-:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://blogs.vmware.com/security/2023/04/vmware-response-to-cve-2023-29552-reflective-denial-of-service-dos-amplification-vulnerability-in-slp.html
https://curesec.com/blog/article/CVE-2023-29552-Service-Location-Protocol-Denial-of-Service-Amplification-Attack-212.html
https://datatracker.ietf.org/doc/html/rfc2608
https://github.com/curesec/slpload
https://nvd.nist.gov/vuln/detail/CVE-2023-29552
https://security.netapp.com/advisory/ntap-20230426-0001/
https://www.bitsight.com/blog/new-high-severity-vulnerability-cve-2023-29552-discovered-service-location-protocol-slp
https://www.cisa.gov/known-exploited-vulnerabilities-catalog
https://www.cisa.gov/news-events/alerts/2023/04/25/abuse-service-location-protocol-may-lead-dos-attacks
https://www.cve.org/CVERecord?id=CVE-2023-29552
https://www.suse.com/support/kb/doc/?id=000021051

History

Tue, 28 Jan 2025 22:15:00 +0000

Type	Values Removed	Values Added
Metrics		kev `{'dateAdded': '2023-11-08'}` ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'active', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Wed, 14 Aug 2024 01:15:00 +0000

Type	Values Removed	Values Added
References		https://www.cisa.gov/known-exploited-vulnerabilities-catalog

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2023-04-25T00:00:00.000Z

Updated: 2025-02-13T16:49:22.987Z

Reserved: 2023-04-07T00:00:00.000Z

Link: CVE-2023-29552

Vulnrichment

Updated: 2024-08-02T14:14:38.816Z

NVD

Status : Modified

Published: 2023-04-25T16:15:09.537

Modified: 2025-01-28T22:15:14.983

Link: CVE-2023-29552

Redhat

Severity : Important

Publid Date: 2023-04-25T00:00:00Z

Links: CVE-2023-29552 - Bugzilla

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Exploitation active

Automatable yes

Technical Impact partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object