CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

243 matches found

USN-8348-1 gobgp vulnerabilities

It was discovered that GoBGP incorrectly handled certain specially crafted BGP UPDATE messages. A remote attacker could possibly use this issue to cause GoBGP to crash, resulting in a denial of service. CVE-2026-37461 Yanlei Wang discovered that GoBGP incorrectly handled certain malformed BGP...

7.5CVSS5.8AI score0.00124EPSS

Exploits0References7

ATTACKERKB•added yesterday•2 views

CVE-2026-37462

An integer underflow in the BGPUpdate.DecodeFromBytes function /bgp/bgp.go of gobgp v4.3.0 allows attackers to cause a Denial of Service DoS via supplying a crafted BGP UPDATE message...

7.3CVSS5.8AI score

Exploits0References3

Vulnrichment•added yesterday•1 views

CVE-2026-37462

An integer underflow in the BGPUpdate.DecodeFromBytes function /bgp/bgp.go of gobgp v4.3.0 allows attackers to cause a Denial of Service DoS via supplying a crafted BGP UPDATE message...

5.8AI score

Exploits0References2

CVE•added yesterday•3 views

CVE-2026-37462

CVE-2026-37462 affects gobgp v4.3.0. A vulnerability in BGPUpdate.DecodeFromBytes (/bgp/bgp.go) allows an attacker to trigger a Denial of Service by sending a crafted BGP UPDATE message. The issue is described consistently across multiple sources (NVD/EUVD/CVE listings and vulnerability trackers)...

7.5CVSS5.8AI score

Exploits0References2

EUVD•added yesterday•2 views

EUVD-2026-34101

An integer underflow in the BGPUpdate.DecodeFromBytes function /bgp/bgp.go of gobgp v4.3.0 allows attackers to cause a Denial of Service DoS via supplying a crafted BGP UPDATE message...

7.3CVSS5.8AI score

Exploits0References2

RedhatCVE•added 2026/05/22 9:50 p.m.•6 views

CVE-2026-7736

A flaw was found in osrg GoBGP. A remote attacker can exploit this vulnerability by executing a manipulation that leads to an integer underflow in the parseRibEntry function. This integer underflow can result in low impacts to the system's confidentiality, integrity, and availability. Mitigation ...

7.5CVSS7.1AI score0.00023EPSS

Exploits0References9

SUSE CVE•added 2026/05/20 2:32 a.m.•4 views

SUSE CVE-2026-7734

A vulnerability has been found in osrg GoBGP up to 4.3.0. This impacts the function SRv6L3ServiceAttribute.DecodeFromBytes of the file pkg/packet/bgp/prefixsid.go of the component SRv6 L3 Service. Such manipulation of the argument data leads to denial of service. The attack may be performed from...

7.5CVSS5.5AI score0.00124EPSS

Exploits0References3

RedhatCVE•added 2026/05/19 11:1 a.m.•5 views

CVE-2026-7734

A flaw was found in osrg GoBGP. A remote attacker can exploit a vulnerability in the SRv6 L3 Service component by manipulating the data argument within the SRv6L3ServiceAttribute.DecodeFromBytes function. This manipulation leads to a denial of service DoS, making the affected system or service...

7.5CVSS5.6AI score0.00124EPSS

Exploits0References2

SUSE CVE•added 2026/05/08 2:22 a.m.•4 views

SUSE CVE-2026-41642

GoBGP is an open source Border Gateway Protocol BGP implementation in the Go Programming Language. In version 4.3.0, a remote Denial of Service DoS vulnerability exists in GoBGP due to a nil pointer dereference. When a malformed BGP UPDATE message contains an unrecognized Path Attribute marked as...

7.5CVSS5.8AI score0.00055EPSS

Exploits0References3

SUSE CVE•added 2026/05/08 2:22 a.m.•4 views

SUSE CVE-2026-41643

GoBGP is an open source Border Gateway Protocol BGP implementation in the Go Programming Language. Prior to version 4.3.0, a remote Denial of Service DoS vulnerability exists in GoBGP where a malformed BGP UPDATE message can trigger a runtime error: index out of range panic. This occurs during th...

7.5CVSS5.7AI score0.00047EPSS

Exploits0References3

Tenable Nessus•added 2026/05/08 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2026-41642

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GoBGP is an open source Border Gateway Protocol BGP implementation in the Go Programming Language. In version 4.3.0, a remote Denial of Service DoS vulnerabilit...

7.5CVSS5.8AI score0.00055EPSS

Exploits0References2

Tenable Nessus•added 2026/05/08 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2026-42285

7.5CVSS5.8AI score0.00177EPSS

Exploits1References2

NVD•added 2026/05/07 12:16 p.m.•9 views

CVE-2026-42285

GoBGP is an open source Border Gateway Protocol BGP implementation in the Go Programming Language. In version 4.4.0, an unauthenticated remote BGP peer can trigger a fatal panic in GoBGP by sending a specially crafted BGP UPDATE message. When the server receives a message with inconsistent...

7.5CVSS0.00177EPSS

Exploits1References2

OSV•added 2026/05/07 12:16 p.m.•3 views

DEBIAN-CVE-2026-41643

7.5CVSS5.8AI score0.00047EPSS

Exploits0References1

OSV•added 2026/05/07 12:16 p.m.•1 views

DEBIAN-CVE-2026-41642

7.5CVSS5.8AI score0.00055EPSS

Exploits0References1

NVD•added 2026/05/07 12:16 p.m.•6 views

CVE-2026-41642