CVE-2012-2663

CVE Details

Visit the official vulnerability details page for CVE-2012-2663 to learn more.

Initial Publication

10/25/2024

Last Update

08/05/2025

Third Party Dependency

iptables

NIST CVE Summary

extensions/libxt_tcp.c in iptables through 1.4.21 does not match TCP SYN+FIN packets in --syn rules, which might allow remote attackers to bypass intended firewall restrictions via crafted packets. NOTE: the CVE-2012-6638 fix makes this issue less relevant.

CVE Severity

7.5

Our Official Summary

This is an iptables userspace issue. This CVE is superseded by CVE-2012-6638. There is no fix available for this issue in kernel stable releases and is being marked as ignored.

Status

Ongoing

Affected Products & Versions

Version	Palette Enterprise	Palette Enterprise Airgap	VerteX	VerteX Airgap
4.7.16	⚠️ Impacted	✅ No Impact	⚠️ Impacted	⚠️ Impacted
4.6.41	⚠️ Impacted	⚠️ Impacted	⚠️ Impacted	⚠️ Impacted
4.5.22	⚠️ Impacted	⚠️ Impacted	⚠️ Impacted	⚠️ Impacted
4.4.20	⚠️ Impacted	⚠️ Impacted	⚠️ Impacted	⚠️ Impacted

Revision History

No revisions available.

CVE Details​

Initial Publication​

Last Update​

Third Party Dependency​

NIST CVE Summary​

CVE Severity​

Our Official Summary​

Status​

Affected Products & Versions​

Revision History​