CVE-2026-48691

FastNetMon Community Edition through 1.2.9 contains an integer overflow in the BGP ASPATH attribute encoder. In src/bgpprotocol.hpp, the IPv4UnicastAnnounce::getattributes function computes attributelength as 'sizeofbgpaspathsegmentelementt + this-aspathasns.size sizeofuint32t' and stores it in a...

PT-2026-43310

FastNetMon Community Edition through 1.2.9 contains an integer overflow in the BGP AS PATH attribute encoder. In src/bgp protocol.hpp, the IPv4UnicastAnnounce::get attributes function computes attribute length as 'sizeofbgp as path segment element t + this-as path asns.size sizeofuint32 t' and...

SUSE CVE-2009-1572

The BGP daemon bgpd in Quagga 0.99.11 and earlier allows remote attackers to cause a denial of service crash via an AS path containing ASN elements whose string representation is longer than expected, which triggers an assert error...

SUSE CVE-2010-2949

bgpd in Quagga before 0.99.17 does not properly parse AS paths, which allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via an unknown AS type in an AS path attribute in a BGP UPDATE message...

CVE-2018-17539

The BGP daemon bgpd in all IP Infusion ZebOS versions to 7.10.6 and all OcNOS versions to 1.3.3.145 allow remote attackers to cause a denial of service attack via an autonomous system AS path containing 8 or more autonomous system number ASN elements...

F5 Networks BIG-IP : BIG-IP ARM BGP vulnerability (K17264695)

The version of F5 Networks BIG-IP installed on the remote host is prior to 11.5.9 / 11.6.3.3 / 12.1.3.7 / 13.1.1.2 / 14.0.0.3 / 14.1.0. It is, therefore, affected by a vulnerability as referenced in the K17264695 advisory. - The BGP daemon bgpd in all IP Infusion ZebOS versions to 7.10.6 and all...