{"id":"CVE-2023-3153","details":"A flaw was found in Open Virtual Network where the service monitor MAC does not properly rate limit. This issue could allow an attacker to cause a denial of service, including on deployments with CoPP enabled and properly configured.","modified":"2026-04-09T09:36:23.062338Z","published":"2023-10-04T12:15:10.503Z","related":["SUSE-SU-2023:3710-1","SUSE-SU-2026:0280-1","SUSE-SU-2026:0290-1","openSUSE-SU-2024:13206-1"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/security/cve/CVE-2023-3153"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2213279"},{"type":"REPORT","url":"https://github.com/ovn-org/ovn/issues/198"},{"type":"FIX","url":"https://github.com/ovn-org/ovn/commit/9a3f7ed905e525ebdcb14541e775211cbb0203bd"},{"type":"FIX","url":"https://mail.openvswitch.org/pipermail/ovs-announce/2023-August/000327.html"},{"type":"FIX","url":"https://mail.openvswitch.org/pipermail/ovs-dev/2023-August/407553.html"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/ovn-org/ovn","events":[{"introduced":"0"},{"fixed":"e973969e779f8bff3e450745284c67cb648d2dd5"},{"introduced":"cb34bf2b9529f96c3d6dc3e9afa818101db6f0ec"},{"fixed":"f60f6f9aaa7ec38885137ee1f6299a10da003385"},{"introduced":"cd81684820b47ab07667637f726e1fd2a81e06a7"},{"fixed":"c851fe0931b627c0ceb96272520a10927f10c535"},{"introduced":"daa3d8b9d8225f1fdccc0297dce38ca8428f813b"},{"fixed":"ba5710edbfc8b11eb83500eb7da0beb39b955273"},{"introduced":"05d20a51032d65b6eed0c499cbb56ddbde5c754d"},{"fixed":"a20f880efdba9dcf19c1df77b31a3b8b9dffa345"},{"fixed":"9a3f7ed905e525ebdcb14541e775211cbb0203bd"}],"database_specific":{"versions":[{"introduced":"0"},{"fixed":"22.03.3"},{"introduced":"22.03.4"},{"fixed":"22.09.2"},{"introduced":"22.09.3"},{"fixed":"22.12.1"},{"introduced":"22.12.2"},{"fixed":"23.03.1"},{"introduced":"23.03.2"},{"fixed":"23.06.1"}]}}],"versions":["v22.03.0","v22.03.1","v22.03.2","v22.09.0","v22.09.1","v22.12.0","v23.03.0","v23.06.0"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-3153.json","unresolved_ranges":[{"events":[{"introduced":"0"},{"last_affected":"4.0"}]}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}]}