Lucene search
K

252 matches found

Debian CVE
Debian CVE
added 2026/05/04 5:0 a.m.9 views

CVE-2026-7734

A vulnerability has been found in osrg GoBGP up to 4.3.0. This impacts the function SRv6L3ServiceAttribute.DecodeFromBytes of the file pkg/packet/bgp/prefixsid.go of the component SRv6 L3 Service. Such manipulation of the argument data leads to denial of service. The attack may be performed from...

7.5CVSS5.6AI score0.00464EPSS
Exploits0
Cvelist
Cvelist
added 2026/05/04 5:0 a.m.60 views

CVE-2026-7734 osrg GoBGP SRv6 L3 Service prefix_sid.go SRv6L3ServiceAttribute.DecodeFromBytes denial of service

A vulnerability has been found in osrg GoBGP up to 4.3.0. This impacts the function SRv6L3ServiceAttribute.DecodeFromBytes of the file pkg/packet/bgp/prefixsid.go of the component SRv6 L3 Service. Such manipulation of the argument data leads to denial of service. The attack may be performed from...

6.9CVSS0.00464EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2026/05/04 5:0 a.m.4 views

CVE-2026-7734 osrg GoBGP SRv6 L3 Service prefix_sid.go SRv6L3ServiceAttribute.DecodeFromBytes denial of service

A vulnerability has been found in osrg GoBGP up to 4.3.0. This impacts the function SRv6L3ServiceAttribute.DecodeFromBytes of the file pkg/packet/bgp/prefixsid.go of the component SRv6 L3 Service. Such manipulation of the argument data leads to denial of service. The attack may be performed from...

6.9CVSS5.6AI score0.00464EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/05/04 12:0 a.m.8 views

PT-2026-36779

Name of the Vulnerable Software and Affected Versions osrg GoBGP versions prior to 4.4.0 Description A remote attack can be launched against the parseRibEntry function in the pkg/packet/mrt/mrt.go file, which may lead to an integer underflow. Integer underflow occurs when an arithmetic operation...

7.5CVSS7.1AI score0.00454EPSS
Exploits0References20
EUVD
EUVD
added 2026/05/04 12:0 a.m.4 views

EUVD-2026-26999

An out-of-bounds read in the ParseIP6Extended function /bgp/bgp.go of gobgp v4.3.0 allows attackers to cause a Denial of Service DoS via supplying a crafted BGP UPDATE message...

5.8AI score0.00335EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/05/04 12:0 a.m.8 views

GoBGP 数字错误漏洞

GoBGP is an open-source implementation of the Border Gateway Protocol BGP developed by osrg. Versions of GoBGP prior to 4.3.0 contained a numerical error vulnerability. This vulnerability stemmed from an integer underflow in the function parseRibEntry within the file pkg/packet/mrt/mrt.go, allowi...

7.5CVSS7.2AI score0.00454EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/04 12:0 a.m.8 views

GoBGP 缓冲区错误漏洞

GoBGP is an open-source implementation of the Border Gateway Protocol BGP developed by osrg. Versions of GoBGP prior to 4.3.0 contained a buffer error vulnerability. This vulnerability stems from an out-of-bounds read in the function BMPPeerUpNotification.ParseBody/BMPStatisticsReport.ParseBody...

7.5CVSS6.2AI score0.00631EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/04 12:0 a.m.9 views

PT-2026-36763

Name of the Vulnerable Software and Affected Versions osrg GoBGP versions prior to 4.4.0 Description A remote denial of service can occur in the SRv6 L3 Service component. The issue exists within the SRv6L3ServiceAttribute.DecodeFromBytes function located in the pkg/packet/bgp/prefix sid.go file,...

7.5CVSS6.3AI score0.00464EPSS
Exploits0References22
ATTACKERKB
ATTACKERKB
added 2026/05/04 12:0 a.m.7 views

CVE-2026-37461

An out-of-bounds read in the ParseIP6Extended function /bgp/bgp.go of gobgp v4.3.0 allows attackers to cause a Denial of Service DoS via supplying a crafted BGP UPDATE message...

5.8AI score0.00335EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2026/05/04 12:0 a.m.6 views

CVE-2026-37461

An out-of-bounds read in the ParseIP6Extended function /bgp/bgp.go of gobgp v4.3.0 allows attackers to cause a Denial of Service DoS via supplying a crafted BGP UPDATE message...

7.5CVSS5.8AI score0.00335EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/05/04 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-7736

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was determined in osrg GoBGP up to 4.3.0. Affected by this vulnerability is the function parseRibEntry of the file pkg/packet/mrt/mrt.go...

7.5CVSS6.8AI score0.00454EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/05/04 12:0 a.m.5 views

CVE-2026-37461

An out-of-bounds read in the ParseIP6Extended function /bgp/bgp.go of gobgp v4.3.0 allows attackers to cause a Denial of Service DoS via supplying a crafted BGP UPDATE message...

5.8AI score0.00335EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/05/04 12:0 a.m.8 views

PT-2026-36764

Name of the Vulnerable Software and Affected Versions osrg GoBGP versions prior to 4.4.0 Description A buffer overflow can be triggered remotely within the AIGP Attribute Parser component. The issue exists in the PathAttributeAigp.DecodeFromBytes function located in the pkg/packet/bgp/bgp.go file...

7.5CVSS7.2AI score0.00361EPSS
Exploits0References22
Positive Technologies
Positive Technologies
added 2026/05/04 12:0 a.m.8 views

PT-2026-36831

Name of the Vulnerable Software and Affected Versions gobgp version 4.3.0 Description An out-of-bounds read in the ParseIP6Extended function within the '/bgp/bgp.go' file allows attackers to cause a Denial of Service DoS by supplying a crafted BGP UPDATE message. Recommendations As a temporary...

7.5CVSS7.1AI score0.00335EPSS
Exploits0References19
Cvelist
Cvelist
added 2026/05/04 12:0 a.m.47 views

CVE-2026-37461

An out-of-bounds read in the ParseIP6Extended function /bgp/bgp.go of gobgp v4.3.0 allows attackers to cause a Denial of Service DoS via supplying a crafted BGP UPDATE message...

0.00335EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/05/04 12:0 a.m.8 views

GoBGP 缓冲区错误漏洞

GoBGP is an open-source implementation of the Border Gateway Protocol BGP developed by osrg. Versions of GoBGP prior to 4.3.0 contained a buffer error vulnerability. This vulnerability stems from a buffer overflow in the function PathAttributeAigp.DecodeFromBytes within the AIGP Attribute Parser...

7.5CVSS7.4AI score0.00361EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/04 12:0 a.m.8 views

GoBGP 安全漏洞

GoBGP is an open-source implementation of the Border Gateway Protocol BGP developed by osrg. Versions of GoBGP prior to 4.3.0 contained security vulnerabilities. These vulnerabilities stemmed from a function in the SRv6 L3 Service component called pkg/packet/bgp/prefixsid.go. The function...

7.5CVSS6.1AI score0.00464EPSS
Exploits0References1
CVE
CVE
added 2026/05/04 12:0 a.m.22 views

CVE-2026-37461

CVE-2026-37461 describes an out-of-bounds read in gobgp v4.3.0, in the ParseIP6Extended function (/bgp/bgp.go). The vulnerability can be exploited by a crafted BGP UPDATE message, leading to a Denial of Service. The provided documents identify the affected component and the root cause, but do not...

7.5CVSS5.8AI score0.00335EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2026/05/04 12:0 a.m.12 views

GoBGP 缓冲区错误漏洞

GoBGP is an open-source implementation of the Border Gateway Protocol BGP developed by osrg. Version 4.3.0 of GoBGP contains a buffer error vulnerability; this vulnerability stems from an out-of-bounds read in the ParseIP6Extended function, which could allow attackers to cause denial-of-service...

7.5CVSS6AI score0.00335EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/04 12:0 a.m.7 views

PT-2026-36780

Name of the Vulnerable Software and Affected Versions osrg GoBGP versions prior to 4.4.0 Description A remote out-of-bounds read can occur within the BMP Parser component. The issue exists in the BMPPeerUpNotification.ParseBody and BMPStatisticsReport.ParseBody functions located in the...

7.5CVSS6.4AI score0.00631EPSS
Exploits0References20
Rows per page
Query Builder