Home > Vulnerability Database > CVE-2018-6922

Mend.io Vulnerability Database

CVE-2018-6922

Date: August 9, 2018

One of the data structures that holds TCP segments in all versions of FreeBSD prior to 11.2-RELEASE-p1, 11.1-RELEASE-p12, and 10.4-RELEASE-p10 uses an inefficient algorithm to reassemble the data. This causes the CPU time spent on segment processing to grow linearly with the number of segments in the reassembly queue. An attacker who has the ability to send TCP traffic to a victim system can degrade the victim system's network performance and/or consume excessive CPU by exploiting the inefficiency of TCP reassembly handling, with relatively small bandwidth cost.

Severity Score

5.3

Related Resources (7)

Url: https://www.freebsd.org/security/advisories/FreeBSD-SA-18:08.tcp.asc

Url: https://security.netapp.com/advisory/ntap-20180815-0002/

Url: http://www.securityfocus.com/bid/105058

Url: https://nvd.nist.gov/vuln/detail/CVE-2018-6922

Url: https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html

Url: http://www.securitytracker.com/id/1041425

Url: https://www.mend.io/vulnerability-database/CVE-2018-6922

Severity Score

5.3

Weakness Type (CWE)

Uncontrolled Resource Consumption ('Resource Exhaustion')

CWE-400

CVSS v3.1

Base Score:	5.3
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	NONE
Integrity (I):	NONE
Availability (A):	LOW

CVSS v2

Base Score:	5.0
Access Vector (AV):	NETWORK
Access Complexity (AC):	LOW
Authentication (AU):	NONE
Confidentiality (C):	NONE
Integrity (I):	NONE
Availability (A):	PARTIAL
Additional information:

Mend.io Vulnerability Database

We found results for “”

CVE-2018-6922

Date: August 9, 2018

Severity Score

Related Resources (7)

Severity Score

Weakness Type (CWE)

CVSS v3.1

CVSS v2

Do you need more information?