NVD Vulnerability Detail

CVE-2023-29552

Summary	The Service Location Protocol (SLP, RFC 2608) allows an unauthenticated, remote attacker to register arbitrary services. This could allow the attacker to use spoofed UDP traffic to conduct a denial-of-service attack with a significant amplification factor.
Publication Date	April 26, 2023, 1:15 a.m.
Registration Date	April 26, 2023, 10 a.m.
Last Update	Nov. 21, 2024, 4:57 p.m.

CVSS3.1 : HIGH
スコア	7.5
Vector	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
攻撃元区分(AV)	ネットワーク
攻撃条件の複雑さ(AC)	低
攻撃に必要な特権レベル(PR)	不要
利用者の関与(UI)	不要
影響の想定範囲(S)	変更なし
機密性への影響(C)	なし
完全性への影響(I)	なし
可用性への影響(A)	高

Affected software configurations

Configuration1		or higher	or less	more than	less than
cpe:2.3:a:netapp:smi-s_provider:-:::::::*

Configuration2	or higher	or less	more than	less than
cpe:2.3:o:suse:linux_enterprise_server:11:-::::::
cpe:2.3:o:suse:linux_enterprise_server:12:-::::::
cpe:2.3:o:suse:linux_enterprise_server:15:::::sap::
cpe:2.3:o:suse:linux_enterprise_server:15:::::-::
cpe:2.3:a:suse:manager_server:-:::::::*
cpe:2.3:o:suse:linux_enterprise_server:12:-::::sap::*

Configuration3		or higher	or less	more than	less than
cpe:2.3:o:vmware:esxi::::::::					7.0

Configuration4		or higher	or less	more than	less than
cpe:2.3:a:service_location_protocol_project:service_location_protocol:-:::::::*

Related information, measures and tools

No	URL	タグ
1	https://blogs.vmware.com/security/2023/04/vmware-response-to-cve-2023-29552-reflective-denial-of-service-dos-amplification-vulnerability-in-slp.html	Third Party Advisory
2	https://curesec.com/blog/article/CVE-2023-29552-Service-Location-Protocol-Denial-of-Service-Amplification-Attack-212.html	Exploit Third Party Advisory
3	https://datatracker.ietf.org/doc/html/rfc2608	Technical Description
4	https://github.com/curesec/slpload	Product
5	https://security.netapp.com/advisory/ntap-20230426-0001/	Third Party Advisory
6	https://www.bitsight.com/blog/new-high-severity-vulnerability-cve-2023-29552-discovered-service-location-protocol-slp	Exploit Third Party Advisory
7	https://www.cisa.gov/news-events/alerts/2023/04/25/abuse-service-location-protocol-may-lead-dos-attacks	Third Party Advisory US Government Resource
8	https://www.suse.com/support/kb/doc/?id=000021051	Third Party Advisory
9	https://blogs.vmware.com/security/2023/04/vmware-response-to-cve-2023-29552-reflective-denial-of-service-dos-amplification-vulnerability-in-slp.html	Third Party Advisory
10	https://www.suse.com/support/kb/doc/?id=000021051	Third Party Advisory
11	https://www.cisa.gov/news-events/alerts/2023/04/25/abuse-service-location-protocol-may-lead-dos-attacks	Third Party Advisory US Government Resource
12	https://www.bitsight.com/blog/new-high-severity-vulnerability-cve-2023-29552-discovered-service-location-protocol-slp	Exploit Third Party Advisory
13	https://security.netapp.com/advisory/ntap-20230426-0001/	Third Party Advisory
14	https://github.com/curesec/slpload	Product
15	https://datatracker.ietf.org/doc/html/rfc2608	Technical Description
16	https://curesec.com/blog/article/CVE-2023-29552-Service-Location-Protocol-Denial-of-Service-Amplification-Attack-212.html	Exploit Third Party Advisory

Common Vulnerabilities List

JVN Vulnerability Information

Service Location Protocol 実装機器がサービス運用妨害 (DoS) 攻撃に悪用される可能性（CVE-2023-29552）

Title	Service Location Protocol 実装機器がサービス運用妨害 (DoS) 攻撃に悪用される可能性（CVE-2023-29552）
Summary	Service Location Protocol (SLP) を実装した機器が、大幅な増幅率によるサービス運用妨害 (DoS) 攻撃に悪用される可能性があることが報告されています（CVE-2023-29552）。
Possible impacts	当該機器に SLP リクエストを送信可能な第三者によって、サービス運用妨害 (DoS) 攻撃に悪用される可能性があります。
Solution	[ワークアラウンドを実施する] CISA は、SLP サーバ管理者に対し、サーバへのネットワークアクセスを無効にするか制限することを推奨しています。
Publication Date	April 27, 2023, midnight
Registration Date	April 28, 2023, 11:44 a.m.
Last Update	Sept. 5, 2023, 4:10 p.m.

Affected System

日本電気

ESMPRO/ServerAgentService

ESMPRO/ServerManager

（複数のベンダ）

（複数の製品）

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2023-29552	https://www.cve.org/CVERecord?id=CVE-2023-29552

ベンダー情報

No	Name	URL
JVN
1	コニカミノルタ株式会社からの情報	https://jvn.jp/vu/JVNVU92686627/995871/index.html
NEC製品セキュリティ情報
2	NV23-008	https://jpn.nec.com/security-info/secinfo/nv23-008.html
SUSE
3	Security Vulnerability: New SLP based traffic amplification attack (CVE-2023-29552)	https://www.suse.com/ja-jp/support/kb/doc/?id=000021051
VMware
4	VMware Response to CVE-2023-29552 - Reflective Denial-of-Service (DoS) Amplification Vulnerability in SLP	https://blogs.vmware.com/security/2023/04/vmware-response-to-cve-2023-29552-reflective-denial-of-service-dos-amplification-vulnerability-in-slp.html
コニカミノルタ
5	重要なお知らせ	https://www.konicaminolta.jp/business/support/important/index.html#anchor02

その他

No	Name	URL
ICS-CERT
1	Abuse of the Service Location Protocol May Lead to DoS Attacks	https://www.cisa.gov/news-events/alerts/2023/04/25/abuse-service-location-protocol-may-lead-dos-attacks
JVN
2	JVNVU#92686627	http://jvn.jp/vu/JVNVU92686627/index.html
関連文書
3	New high-severity vulnerability (CVE-2023-29552) discovered in the Service Location Protocol (SLP)	https://www.bitsight.com/blog/new-high-severity-vulnerability-cve-2023-29552-discovered-service-location-protocol-slp

Change Log

No	Changed Details	Date of change
3	[2023年09月5日] 影響を受けるシステム：ベンダ情報の追加に伴い内容を更新ベンダ情報：日本電気 (NV23-008) を追加	Sept. 5, 2023, 4:09 p.m.
1	[2023年04月28日] 掲載	April 28, 2023, 11:44 a.m.
2	[2023年05月12日] 影響を受けるシステム：ベンダ情報の追加に伴い内容を更新ベンダ情報：コニカミノルタ株式会社 (コニカミノルタ株式会社からの情報) を追加ベンダ情報：コニカミノルタ株式会社 (重要なお知らせ) を追加	May 12, 2023, 12:36 p.m.

Configuration2	or higher	or less	more than	less than
cpe:2.3:o:suse:linux_enterprise_server:11:-::::::
cpe:2.3:o:suse:linux_enterprise_server:12:-::::::
cpe:2.3:o:suse:linux_enterprise_server:15:::::sap::
cpe:2.3:o:suse:linux_enterprise_server:15:::::-::
cpe:2.3:a:suse:manager_server:-:::::::*
cpe:2.3:o:suse:linux_enterprise_server:12:-::::sap::*