CVE-2024-56072
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2024-56072
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-56072.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2024-56072
- Downstream
- Published
- 2024-12-15T03:15:16Z
- Modified
- 2025-10-22T05:41:34.938697Z
- Severity
-
- 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
An issue was discovered in FastNetMon Community Edition through 1.2.7. The sFlow v5 plugin allows remote attackers to cause a denial of service (application crash) via a crafted packet that specifies many sFlow samples.
- References
Affected packages
Git / github.com/pavel-odintsov/fastnetmon
Affected ranges
- Type
- GIT
- Repo
- https://github.com/pavel-odintsov/fastnetmon
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixedFixed
Affected versions
1.*
1.1.1
v1.*
v1.0.0
v1.1.0
v1.1.1
v1.1.2
v1.1.3
v1.1.4
v1.1.5
v1.1.6
v1.1.7
v1.1.8
v1.1.9
v1.2.0
v1.2.1
v1.2.2
v1.2.3
v1.2.4
v1.2.5
v1.2.6
v1.2.7
Database specific
vanir_signatures
[
{
"source": "https://github.com/pavel-odintsov/fastnetmon/commit/5164a29603fff9dd445b7660a35090989f005000",
"target": {
"function": "parse_sflow_v5_packet",
"file": "src/sflow_plugin/sflow_collector.cpp"
},
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2024-56072-22ab8b2e",
"signature_type": "Function",
"digest": {
"length": 2026.0,
"function_hash": "92040754092628088137376204904776516884"
}
},
{
"source": "https://github.com/pavel-odintsov/fastnetmon/commit/65c40ee92dd5bcad1ab52cbafa1afd62cf669e48",
"target": {
"function": "process_sflow_counter_sample",
"file": "src/sflow_plugin/sflow_collector.cpp"
},
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2024-56072-2a9c04ba",
"signature_type": "Function",
"digest": {
"length": 1856.0,
"function_hash": "206291148226814910440942394885482965452"
}
},
{
"source": "https://github.com/pavel-odintsov/fastnetmon/commit/65c40ee92dd5bcad1ab52cbafa1afd62cf669e48",
"target": {
"file": "src/libsflow/libsflow.hpp"
},
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2024-56072-2db511d2",
"signature_type": "Line",
"digest": {
"threshold": 0.9,
"line_hashes": [
"107847917955988856805365271494921839793",
"37586059746029417388465612376906913624",
"320698719031521584532578652003171162037"
]
}
},
{
"source": "https://github.com/pavel-odintsov/fastnetmon/commit/5164a29603fff9dd445b7660a35090989f005000",
"target": {
"file": "src/libsflow/libsflow.hpp"
},
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2024-56072-42b2ed17",
"signature_type": "Line",
"digest": {
"threshold": 0.9,
"line_hashes": [
"319101499062127304267788999493356221706",
"306294952687957480174959036984179319172",
"55083860268450550537350289088260489058"
]
}
},
{
"source": "https://github.com/pavel-odintsov/fastnetmon/commit/65c40ee92dd5bcad1ab52cbafa1afd62cf669e48",
"target": {
"file": "src/sflow_plugin/sflow_collector.cpp"
},
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2024-56072-4f0144f2",
"signature_type": "Line",
"digest": {
"threshold": 0.9,
"line_hashes": [
"314275110864036557225009895340176220026",
"304165875933483254974394390172878896395",
"60209444435411272634320700694163298819",
"196662954513180248573670560308623591801",
"317319235851297075802338308923386332756",
"289453632288517335707087741152211581891"
]
}
},
{
"source": "https://github.com/pavel-odintsov/fastnetmon/commit/65c40ee92dd5bcad1ab52cbafa1afd62cf669e48",
"target": {
"function": "process_sflow_flow_sample",
"file": "src/sflow_plugin/sflow_collector.cpp"
},
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2024-56072-6ce67f30",
"signature_type": "Function",
"digest": {
"length": 4206.0,
"function_hash": "310180816928883341256109840844695242933"
}
}
]