CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

26 matches found

Vulnrichment•added 2026/05/26 12:0 a.m.•5 views

CVE-2026-48685

FastNetMon Community Edition through 1.2.9 has out-of-bounds memory access because it incorrectly parses BGP path attributes with the extended length flag set. In src/bgpprotocol.hpp, the parserawbgpattribute function correctly identifies when extendedlengthbit is set and sets lengthoflengthfield...

5.8AI score0.00043EPSS

Exploits0References3

RedhatCVE•added 2026/01/16 8:18 p.m.•4 views

CVE-2025-60011

An Improper Check for Unusual or Exceptional Conditions vulnerability in the routing protocol daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, network-based attacker to cause an availability impact for downstream devices. When an affected device receives a...

6.9CVSS6.8AI score0.0002EPSS

Exploits0References1

OSV•added 2026/01/15 9:16 p.m.•1 views

CVE-2025-60011

5.8CVSS5.8AI score

Exploits0References2

Cvelist•added 2026/01/15 8:16 p.m.•21 views

CVE-2025-60011 Junos OS and Junos OS Evolved: Optional transitive BGP attribute is modified before propagation to peers causing sessions to flap

6.9CVSS0.0002EPSS

Exploits0References2

Veracode•added 2024/08/26 8:37 a.m.•9 views

Incorrect Input Validation

libfrr.so is vulnerable to Incorrect Input Validation. The vulnerability is caused due to an issue in function bgpattrencap within bgpd/bgpattr.c which does not check the actual remaining stream length before taking the TLV value...

9.8CVSS6.6AI score0.00119EPSS

Exploits0References3Affected Software2

SUSE CVE•added 2024/08/20 2:15 a.m.•2 views

SUSE CVE-2024-44070

An issue was discovered in FRRouting FRR through 10.1. bgpattrencap in bgpd/bgpattr.c does not check the actual remaining stream length before taking the TLV value...

7.5CVSS7AI score0.00119EPSS

Exploits0References9

OSV•added 2024/08/19 2:15 a.m.•2 views

DEBIAN-CVE-2024-44070

An issue was discovered in FRRouting FRR through 10.1. bgpattrencap in bgpd/bgpattr.c does not check the actual remaining stream length before taking the TLV value...

7.5CVSS8.2AI score0.00119EPSS

Exploits0References1

OSV•added 2024/08/19 2:15 a.m.•4 views

AZL-47868 CVE-2024-44070 affecting package frr for versions less than 9.1.1-2

An issue was discovered in FRRouting FRR through 10.1. bgpattrencap in bgpd/bgpattr.c does not check the actual remaining stream length before taking the TLV value...

7.5CVSS7.4AI score0.00119EPSS

Exploits0References1

OSV•added 2024/08/19 2:15 a.m.•2 views

UBUNTU-CVE-2024-44070

An issue was discovered in FRRouting FRR through 10.1. bgpattrencap in bgpd/bgpattr.c does not check the actual remaining stream length before taking the TLV value...

9.8CVSS7.2AI score0.00119EPSS

Exploits0References7

Positive Technologies•added 2024/08/18 12:0 a.m.•3 views

PT-2024-6046 · Frrouting +5 · Frrouting +5

Name of the Vulnerable Software and Affected Versions: FRRouting versions through 10.1 Description: An issue was discovered in the bgp attr encap function in the bgpd/bgp attr.c file, which does not check the actual remaining stream length before taking the TLV value. This can allow a remote...

9.8CVSS6.8AI score0.09304EPSS

Exploits10References170

OSV•added 2023/09/27 5:34 p.m.•6 views

SUSE-SU-2023:3839-1 Security update for quagga

This update for quagga fixes the following issues: - CVE-2023-38802: Fixed bad length handling in BGP attribute handling bsc1213284. - CVE-2023-41358: Fixed possible crash when processing NLRIs if the attribute length is zero bsc1214735...

7.5CVSS7.6AI score0.00944EPSS

Exploits1References5

OSV•added 2023/09/27 5:26 p.m.•7 views

SUSE-SU-2023:3836-1 Security update for quagga

7.5CVSS7.6AI score0.00944EPSS

Exploits1References5

OSV•added 2023/09/26 4:5 p.m.•6 views

SUSE-SU-2023:3793-1 Security update for quagga

7.5CVSS7.6AI score0.00944EPSS

Exploits1References5

OSV•added 2023/09/25 1:11 p.m.•8 views

SUSE-SU-2023:3762-1 Security update for frr

This update for frr fixes the following issues: - CVE-2023-38802: Fixed bad length handling when processing BGP attributes. bsc1213284 - CVE-2023-41358: Fixed a possible crash when processing NLRIs with an attribute length of zero. bsc1214735 - CVE-2023-41909: Fixed NULL pointer dereference due t...

7.5CVSS7.5AI score0.00944EPSS

Exploits1References7

Microsoft CVE•added 2023/09/05 7:0 a.m.•4 views

An issue was discovered in FRRouting FRR through 9.0. There is an out-of-bounds read in bgp_attr_aigp_valid in bgpd/bgp_attr.c because there is no check for the availability of two bytes during AIGP validation.

...

9.1CVSS7.6AI score0.00187EPSS

Exploits0

SUSE CVE•added 2023/08/30 2:14 a.m.•2 views

SUSE CVE-2023-41359

An issue was discovered in FRRouting FRR through 9.0. There is an out-of-bounds read in bgpattraigpvalid in bgpd/bgpattr.c because there is no check for the availability of two bytes during AIGP validation...

5.9CVSS7AI score0.00187EPSS

Exploits0References3

ATTACKERKB•added 2023/08/29 4:15 a.m.•5 views

CVE-2023-41359

9.1CVSS6.9AI score0.00187EPSS

Exploits0References8

CVE•added 2023/08/29 12:0 a.m.•70 views

CVE-2023-41359

CVE-2023-41359 is a FRRouting FRR issue (through 9.0) with an out-of-bounds read in bgp_attr_aigp_valid due to missing check for two bytes during AIGP validation in bgpd/bgp_attr.c. Connected advisories (Miracle Linux AXSA-2024-7889:04, TencentOS/TENABLE plugins, Oracle Linux RHSA, etc.) enumerat...

9.1CVSS8.9AI score0.00187EPSS

Exploits0References4Affected Software1

OSV•added 2023/05/09 4:15 p.m.•2 views

DEBIAN-CVE-2023-31490

An issue found in Frrouting bgpd v.8.4.2 allows a remote attacker to cause a denial of service via the bgpattrpsidsub function...

7.5CVSS7.5AI score0.05648EPSS

Exploits1References1

ATTACKERKB•added 2023/05/09 4:15 p.m.•3 views

CVE-2023-31490

An issue found in Frrouting bgpd v.8.4.2 allows a remote attacker to cause a denial of service via the bgpattrpsidsub function...

7.5CVSS7.2AI score0.05648EPSS

Exploits1References10