← back
CVE-2020-7465

CVE-2020-7465

EPSS 2.8%CWE-787
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 2.8%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
06 Oct 2020Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
The L2TP implementation of MPD before 5.9 allows a remote attacker who can send specifically crafted L2TP control packet with AVP Q.931 Cause Code to execute arbitrary code or cause a denial of service (memory corruption).
Affected products
n/a · MPD: FreeBSD PPP daemon

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://sourceforge.net/p/mpd/bugs/70/https://sourceforge.net/p/mpd/svn/2377/