CVE-2025-61101

EUVD-2025-36355
FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the show_vty_ext_link_rmt_itf_addr function at ospf_ext.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted OSPF packet.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CISA-ADPADP
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 23%
Affected Products (NVD)
VendorProductVersion
frroutingfrrouting
4.0 ≤
𝑥
≤ 10.4.1
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
frr
bookworm
vulnerable
bookworm (security)
vulnerable
bullseye
vulnerable
bullseye (security)
vulnerable
forky
10.5.1-3
fixed
sid
10.5.1-3
fixed
trixie
vulnerable
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
frr
focal
needed
jammy
Fixed 8.1-1ubuntu1.14
released
noble
Fixed 8.4.4-1.1ubuntu6.5
released
plucky
ignored
questing
Fixed 10.4.1-3ubuntu1.1
released
quagga
bionic
needed
focal
needed
jammy
dne
noble
dne
plucky
dne
questing
dne
xenial
needed
Common Weakness Enumeration
References
https://github.com/FRRouting/frr/issues/19471
https://github.com/FRRouting/frr/pull/19480
https://github.com/FRRouting/frr/pull/19480/commits/fdd957408605d4a1766225630aafc7e6b7c3daf3
https://github.com/s1awwhy/BugList/blob/main/CVE-2025-61101.md