Bypassing Layer 2 Network Filtering with Invalid LLC/SNAP Headers

Bypassing Layer 2 Network Filtering with Invalid LLC/SNAP Headers

CVE-2021-27861 · MEDIUM Severity

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N

Layer 2 network filtering capabilities such as IPv6 RA guard can be bypassed using LLC/SNAP headers with invalid length (and optionally VLAN0 headers)

Learn more about our Network Penetration Testing.