cvedb.io
CVE-2024-7596
MEDIUM · CVSS 6.5
EPSS exploitation probability: 0%
Published 2025-02-05T18:15:29.470 · Last modified 2026-06-17T08:20:31.277

Summary

Proposed Generic UDP Encapsulation (GUE) (IETF Draft) do not validate or verify the source of a network packet allowing an attacker to spoof and route arbitrary traffic via an exposed network interface that can lead to spoofing, access control bypass, and other unexpected network behaviors. This can be considered similar to CVE-2020-10136.

Affected products

ietf — generic_udp_encapsulation

Does this affect you?

Add your gear to cvedb and we'll alert you only when ietf ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.