Lucene search
K

20 matches found

OSV
OSV
added 2026/06/26 8:52 a.m.4 views

SUSE-SU-2026:2644-1 Security update for frr

This update for frr fixes the following issues - CVE-2026-28532: Denial of Service due to integer overflow in OSPF TLV parser functions bsc1263859. - CVE-2026-37457: An off-by-one out-of-bounds write vulnerability in the bgpflowspecopdecode function bgpd/bgpflowspecutil.c of FRRouting FRR...

7.5CVSS5.8AI score0.00389EPSS
Exploits0References7
OSV
OSV
added 2026/06/18 2:2 p.m.3 views

SUSE-SU-2026:2454-1 Security update for frr

This update for frr fixes the following issues Update to frr 8.5.7: - CVE-2026-5107: Fixed an improper access controls in EVPN Type-2 Route Handler bsc1261013. - CVE-2026-28532: Harden TE/SR TLV iteration against malformed lengths bsc1263859. - CVE-2026-37457: Fix off-by-one error in FlowSpec...

7.5CVSS5.9AI score0.00389EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 2026/05/28 1:2 p.m.14 views

CVE-2026-48688

A flaw was found in FastNetMon Community Edition. Multiple out-of-bounds read vulnerabilities exist within the BGP MPREACHNLRI IPv6 attribute decoder. A remote attacker could exploit these flaws by sending specially crafted BGP messages, which could lead to information disclosure or a denial of...

7.5CVSS5.7AI score0.00283EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/05/27 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2026-48688

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - FastNetMon Community Edition through 1.2.9 contains multiple out-of-bounds reads in the BGP MPREACHNLRI IPv6 attribute decoder. The function decodempreachipv6 i...

7.5CVSS6.2AI score0.00283EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2026/05/26 4:16 p.m.15 views

CVE-2026-48688

FastNetMon Community Edition through 1.2.9 contains multiple out-of-bounds reads in the BGP MPREACHNLRI IPv6 attribute decoder. The function decodempreachipv6 in src/bgpprotocol.cpp contains a TODO comment at line 156 explicitly acknowledging 'we should add sanity checks to avoid reads after...

7.5CVSS5.9AI score0.00283EPSS
Exploits0References6
EUVD
EUVD
added 2026/05/26 12:0 a.m.12 views

EUVD-2026-31844

FastNetMon Community Edition through 1.2.9 contains multiple out-of-bounds reads in the BGP MPREACHNLRI IPv6 attribute decoder. The function decodempreachipv6 in src/bgpprotocol.cpp contains a TODO comment at line 156 explicitly acknowledging 'we should add sanity checks to avoid reads after...

7.5CVSS5.9AI score0.00283EPSS
Exploits0References3
OSV
OSV
added 2026/05/08 11:17 a.m.12 views

CLSA-2026-1778238289 frr: Fix of 4 CVEs

CVE-2022-43681: fix bgpd crash on malformed BGP OPEN messages with insufficient data - CVE-2022-40318: fix out-of-bounds read in bgpopenoptionparse with extended option params - CVE-2023-31489: fix out-of-bounds read in BGP Long-lived Graceful-Restart capability parsing - CVE-2023-46752: fix bgpd...

6.5CVSS5.8AI score0.02107EPSS
Exploits1References1
OSV
OSV
added 2026/05/04 4:16 p.m.6 views

DEBIAN-CVE-2026-37458

Missing input validation in the MPREACHNLRI component of FRRouting FRR stable/10.0 to stable/10.6 allows authenticated attackers to cause a Denial of Service DoS via supplying a crafted UPDATE message...

6.5CVSS5.8AI score0.00249EPSS
Exploits0References1
NVD
NVD
added 2026/05/04 4:16 p.m.14 views

CVE-2026-37458

Missing input validation in the MPREACHNLRI component of FRRouting FRR stable/10.0 to stable/10.6 allows authenticated attackers to cause a Denial of Service DoS via supplying a crafted UPDATE message...

6.5CVSS0.00249EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/05/04 4:16 p.m.12 views

CVE-2026-37458

Missing input validation in the MPREACHNLRI component of FRRouting FRR stable/10.0 to stable/10.6 allows authenticated attackers to cause a Denial of Service DoS via supplying a crafted UPDATE message...

6.5CVSS5.8AI score0.00249EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/04 12:0 a.m.32 views

CVE-2026-37458

Missing input validation in the MPREACHNLRI component of FRRouting FRR stable/10.0 to stable/10.6 allows authenticated attackers to cause a Denial of Service DoS via supplying a crafted UPDATE message...

0.00249EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/05/04 12:0 a.m.10 views

FRRouting 输入验证错误漏洞

FRouting is an open-source network routing software suite developed for Unix-like platforms. Versions of FRRouting from stable/10.0 to stable/10.6 contain a vulnerability related to input validation. This vulnerability stems from the lack of input validation in the MPREACHNLRI component, which ma...

6.5CVSS5.8AI score0.00249EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/04 12:0 a.m.10 views

CVE-2026-37458

Missing input validation in the MPREACHNLRI component of FRRouting FRR stable/10.0 to stable/10.6 allows authenticated attackers to cause a Denial of Service DoS via supplying a crafted UPDATE message...

5.8AI score0.00249EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2024/05/22 10:6 a.m.6 views

frr: mishandled malformed data leading to a crash

A data mishandling vulnerability was found in FRRouting. A malformed MPREACHNLRI data can lead to a crash, resulting in a denial of service...

5.9CVSS5.7AI score0.00849EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/10/27 12:56 a.m.3 views

SUSE CVE-2023-46752

An issue was discovered in FRRouting FRR through 9.0.1. It mishandles malformed MPREACHNLRI data, leading to a crash...

5.9CVSS7AI score0.00849EPSS
Exploits0References6
OSV
OSV
added 2023/10/26 5:15 a.m.2 views

DEBIAN-CVE-2023-46752

An issue was discovered in FRRouting FRR through 9.0.1. It mishandles malformed MPREACHNLRI data, leading to a crash...

5.9CVSS7AI score0.00849EPSS
Exploits0References1
OSV
OSV
added 2023/10/26 5:15 a.m.11 views

AZL-31700 CVE-2023-46752 affecting package frr for versions less than 8.5.3-3

An issue was discovered in FRRouting FRR through 9.0.1. It mishandles malformed MPREACHNLRI data, leading to a crash...

5.9CVSS7.2AI score0.00849EPSS
Exploits0References1
OSV
OSV
added 2023/10/26 5:15 a.m.5 views

AZL-34692 CVE-2023-46752 affecting package frr for versions less than 9.1-2

An issue was discovered in FRRouting FRR through 9.0.1. It mishandles malformed MPREACHNLRI data, leading to a crash...

5.9CVSS7.2AI score0.00849EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/10/26 12:0 a.m.2 views

FRRouting FRR Security Vulnerabilities

FRRouting FRR is a suite of software that implements and manages various IPV4 and IPV6 routing protocols. A security vulnerability exists in FRRouting FRR 9.0.1 and prior versions that stems from incorrectly processing incorrectly formatted MPREACHNLRI data, which can cause a crash...

5.9CVSS6.8AI score0.00849EPSS
Exploits0References4
OSV
OSV
added 2019/10/03 4:15 p.m.2 views

DEBIAN-CVE-2018-16230

The BGP parser in tcpdump before 4.9.3 has a buffer over-read in print-bgp.c:bgpattrprint MPREACHNLRI...

7.5CVSS9.7AI score0.03891EPSS
Exploits0References1
Rows per page
Query Builder