Lucene search
K

252 matches found

NVD
NVD
added 2026/05/04 7:16 a.m.19 views

CVE-2026-7737

A vulnerability was identified in osrg GoBGP up to 4.3.0. Affected by this issue is the function BMPPeerUpNotification.ParseBody/BMPStatisticsReport.ParseBody of the file pkg/packet/bmp/bmp.go of the component BMP Parser. The manipulation leads to out-of-bounds read. The attack can be initiated...

7.5CVSS0.00631EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2026/05/04 7:16 a.m.8 views

CVE-2026-7736

A vulnerability was determined in osrg GoBGP up to 4.3.0. Affected by this vulnerability is the function parseRibEntry of the file pkg/packet/mrt/mrt.go. Executing a manipulation can lead to integer underflow. It is possible to launch the attack remotely. Upgrading to version 4.4.0 addresses this...

7.5CVSS6.8AI score0.00454EPSS
Exploits0References1
OSV
OSV
added 2026/05/04 7:16 a.m.5 views

UBUNTU-CVE-2026-7736

A vulnerability was determined in osrg GoBGP up to 4.3.0. Affected by this vulnerability is the function parseRibEntry of the file pkg/packet/mrt/mrt.go. Executing a manipulation can lead to integer underflow. It is possible to launch the attack remotely. Upgrading to version 4.4.0 addresses this...

7.5CVSS6.8AI score0.00454EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/05/04 7:15 a.m.8 views

CVE-2026-7735

A flaw was found in osrg GoBGP. A remote attacker can exploit this vulnerability by manipulating the PathAttributeAigp.DecodeFromBytes function, leading to a buffer overflow. This could result in a denial of service, information disclosure, or potentially arbitrary code execution...

7.5CVSS6.4AI score0.00361EPSS
Exploits0References2
OSV
OSV
added 2026/05/04 6:32 a.m.4 views

GHSA-VM3G-8XWV-MXFP GoBGP has an Improper Resource Shutdown or Release

A vulnerability has been found in osrg GoBGP up to 4.3.0. This impacts the function SRv6L3ServiceAttribute.DecodeFromBytes of the file pkg/packet/bgp/prefixsid.go of the component SRv6 L3 Service. Such manipulation of the argument data leads to denial of service. The attack may be performed from...

6.9CVSS5.5AI score0.00464EPSS
Exploits0References7
Snyk
Snyk
added 2026/05/04 6:24 a.m.4 views

Improper Resource Shutdown or Release

Overview Affected versions of this package are vulnerable to Improper Resource Shutdown or Release via the DecodeFromBytes function in the SRv6 L3 Service component. An attacker can cause a service disruption by sending specially crafted data to this function remotely. Remediation Upgrade...

7.5CVSS5.8AI score0.00464EPSS
Exploits0References2
NVD
NVD
added 2026/05/04 6:16 a.m.39 views

CVE-2026-7734

A vulnerability has been found in osrg GoBGP up to 4.3.0. This impacts the function SRv6L3ServiceAttribute.DecodeFromBytes of the file pkg/packet/bgp/prefixsid.go of the component SRv6 L3 Service. Such manipulation of the argument data leads to denial of service. The attack may be performed from...

7.5CVSS0.00464EPSS
Exploits0References6
NVD
NVD
added 2026/05/04 6:16 a.m.34 views

CVE-2026-7735

A vulnerability was found in osrg GoBGP up to 4.3.0. Affected is the function PathAttributeAigp.DecodeFromBytes of the file pkg/packet/bgp/bgp.go of the component AIGP Attribute Parser. Performing a manipulation results in buffer overflow. It is possible to initiate the attack remotely. Upgrading...

7.5CVSS0.00361EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2026/05/04 6:16 a.m.9 views

CVE-2026-7734

A vulnerability has been found in osrg GoBGP up to 4.3.0. This impacts the function SRv6L3ServiceAttribute.DecodeFromBytes of the file pkg/packet/bgp/prefixsid.go of the component SRv6 L3 Service. Such manipulation of the argument data leads to denial of service. The attack may be performed from...

7.5CVSS5.7AI score0.00464EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/04 5:45 a.m.3 views

CVE-2026-7737

A vulnerability was identified in osrg GoBGP up to 4.3.0. Affected by this issue is the function BMPPeerUpNotification.ParseBody/BMPStatisticsReport.ParseBody of the file pkg/packet/bmp/bmp.go of the component BMP Parser. The manipulation leads to out-of-bounds read. The attack can be initiated...

6.9CVSS5.7AI score0.00631EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2026/05/04 5:45 a.m.41 views

CVE-2026-7737 osrg GoBGP BMP Parser bmp.go BMPStatisticsReport.ParseBody out-of-bounds

A vulnerability was identified in osrg GoBGP up to 4.3.0. Affected by this issue is the function BMPPeerUpNotification.ParseBody/BMPStatisticsReport.ParseBody of the file pkg/packet/bmp/bmp.go of the component BMP Parser. The manipulation leads to out-of-bounds read. The attack can be initiated...

6.9CVSS0.00631EPSS
Exploits0References6
CVE
CVE
added 2026/05/04 5:45 a.m.22 views

CVE-2026-7737

CVE-2026-7737 affects osrg GoBGP up to 4.3.0. The vulnerability lies in the BMP parser, specifically BMPPeerUpNotification.ParseBody and BMPStatisticsReport.ParseBody in pkg/packet/bmp/bmp.go, where input manipulation leads to an out-of-bounds read. The issue is exploitable remotely. A fix is pub...

7.5CVSS5.7AI score0.00631EPSS
Exploits0References6Affected Software1
Debian CVE
Debian CVE
added 2026/05/04 5:45 a.m.10 views

CVE-2026-7737

A vulnerability was identified in osrg GoBGP up to 4.3.0. Affected by this issue is the function BMPPeerUpNotification.ParseBody/BMPStatisticsReport.ParseBody of the file pkg/packet/bmp/bmp.go of the component BMP Parser. The manipulation leads to out-of-bounds read. The attack can be initiated...

7.5CVSS5.7AI score0.00631EPSS
Exploits0
CVE
CVE
added 2026/05/04 5:30 a.m.20 views

CVE-2026-7736

The vulnerability CVE-2026-7736 affects osrg GoBGP up to version 4.3.0, specifically the parseRibEntry function in pkg/packet/mrt/mrt.go. The technical issue is an integer underflow triggered by manipulation, with remote exploit potential. A fix is available in GoBGP 4.4.0 (commit 76d911046344a39...

7.5CVSS6.9AI score0.00454EPSS
Exploits0References6Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/04 5:30 a.m.7 views

CVE-2026-7736 osrg GoBGP mrt.go parseRibEntry integer underflow

A vulnerability was determined in osrg GoBGP up to 4.3.0. Affected by this vulnerability is the function parseRibEntry of the file pkg/packet/mrt/mrt.go. Executing a manipulation can lead to integer underflow. It is possible to launch the attack remotely. Upgrading to version 4.4.0 addresses this...

7.5CVSS6.9AI score0.00454EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2026/05/04 5:30 a.m.12 views

CVE-2026-7736

A vulnerability was determined in osrg GoBGP up to 4.3.0. Affected by this vulnerability is the function parseRibEntry of the file pkg/packet/mrt/mrt.go. Executing a manipulation can lead to integer underflow. It is possible to launch the attack remotely. Upgrading to version 4.4.0 addresses this...

7.5CVSS6.9AI score0.00454EPSS
Exploits0
Cvelist
Cvelist
added 2026/05/04 5:15 a.m.46 views

CVE-2026-7735 osrg GoBGP AIGP Attribute bgp.go PathAttributeAigp.DecodeFromBytes buffer overflow

A vulnerability was found in osrg GoBGP up to 4.3.0. Affected is the function PathAttributeAigp.DecodeFromBytes of the file pkg/packet/bgp/bgp.go of the component AIGP Attribute Parser. Performing a manipulation results in buffer overflow. It is possible to initiate the attack remotely. Upgrading...

7.5CVSS0.00361EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/05/04 5:15 a.m.6 views

CVE-2026-7735

A vulnerability was found in osrg GoBGP up to 4.3.0. Affected is the function PathAttributeAigp.DecodeFromBytes of the file pkg/packet/bgp/bgp.go of the component AIGP Attribute Parser. Performing a manipulation results in buffer overflow. It is possible to initiate the attack remotely. Upgrading...

7.5CVSS7.3AI score0.00361EPSS
Exploits0References7Affected Software1
Debian CVE
Debian CVE
added 2026/05/04 5:15 a.m.7 views

CVE-2026-7735

A vulnerability was found in osrg GoBGP up to 4.3.0. Affected is the function PathAttributeAigp.DecodeFromBytes of the file pkg/packet/bgp/bgp.go of the component AIGP Attribute Parser. Performing a manipulation results in buffer overflow. It is possible to initiate the attack remotely. Upgrading...

7.5CVSS7.2AI score0.00361EPSS
Exploits0
Cvelist
Cvelist
added 2026/05/04 5:0 a.m.60 views

CVE-2026-7734 osrg GoBGP SRv6 L3 Service prefix_sid.go SRv6L3ServiceAttribute.DecodeFromBytes denial of service

A vulnerability has been found in osrg GoBGP up to 4.3.0. This impacts the function SRv6L3ServiceAttribute.DecodeFromBytes of the file pkg/packet/bgp/prefixsid.go of the component SRv6 L3 Service. Such manipulation of the argument data leads to denial of service. The attack may be performed from...

6.9CVSS0.00464EPSS
Exploits0References6
Rows per page
Query Builder