A vulnerability was found in libndp. This flaw allows a local malicious user to cause a buffer overflow in NetworkManager, triggered by sending a malformed IPv6 router advertisement packet. This issue occurred as libndp was not correctly validating the route length information.
Fixes

Solution

No solution given by the vendor.


Workaround

Currently there is no mitigation available for this vulnerability. Please make sure to update as the fixes become available.

History

Tue, 15 Jul 2025 13:45:00 +0000

Type Values Removed Values Added
Metrics epss

{'score': 0.00827}

epss

{'score': 0.00795}


Mon, 14 Jul 2025 13:30:00 +0000

Type Values Removed Values Added
CPEs cpe:/o:redhat:enterprise_linux:10 cpe:/o:redhat:enterprise_linux:10.0
References

Wed, 28 May 2025 23:30:00 +0000

Type Values Removed Values Added
CPEs cpe:/o:redhat:enterprise_linux:10

Sun, 24 Nov 2024 18:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published:

Updated: 2025-08-27T13:10:55.069Z

Reserved: 2024-05-31T13:34:41.061Z

Link: CVE-2024-5564

cve-icon Vulnrichment

Updated: 2024-08-01T21:18:06.467Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-05-31T19:15:08.883

Modified: 2025-07-14T14:15:25.303

Link: CVE-2024-5564

cve-icon Redhat

Severity : Important

Publid Date: 2024-05-31T00:00:00Z

Links: CVE-2024-5564 - Bugzilla

cve-icon OpenCVE Enrichment

No data.