kube-router: GoBGP gRPC Admin Port Exposed on Node Primary IP Without Authentication, Allowing Cluster-Wide BGP Route Injection

Summary When the kube-router routing controller starts --run-router, it binds the GoBGP gRPC management server to the node's primary IP e.g., 192.168.1.10:50051 in addition to 127.0.0.1:50051. The default admin port is 50051 and the server is enabled by default with no TLS and no authentication...

GHSA-V5MH-H5HX-7V92 kube-router: GoBGP gRPC Admin Port Exposed on Node Primary IP Without Authentication, Allowing Cluster-Wide BGP Route Injection

Summary When the kube-router routing controller starts --run-router, it binds the GoBGP gRPC management server to the node's primary IP e.g., 192.168.1.10:50051 in addition to 127.0.0.1:50051. The default admin port is 50051 and the server is enabled by default with no TLS and no authentication...

PT-2026-38637

Name of the Vulnerable Software and Affected Versions Next.js affected versions not specified Description An authorization bypass exists in applications that use middleware to protect dynamic routes. Attackers can use specially crafted query parameters to alter the dynamic route value perceived b...

SUSE CVE-2026-29777

Traefik is an HTTP reverse proxy and load balancer. Prior to 3.6.10, A tenant with write access to an HTTPRoute resource can inject backtick-delimited rule tokens into Traefik's router rule language via unsanitized header or query parameter match values. In shared gateway deployments, this can...

POC-APISIX-RCE

Apache APISIX - Remote Code Execution Admin API script inject...

EUVD-2014-3418

Malware in sbrugna...

CVE-2025-9244 Linksys RE6250/RE6300/RE6350/RE6500/RE7000/RE9000 addStaticRoute os command injection

A security vulnerability has been detected in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. This vulnerability affects the function addStaticRoute of the file /goform/addStaticRoute. Such manipulation of the argument...

CVE-2014-3405

Cisco IOS XE enables the IPv6 Routing Protocol for Low-Power and Lossy Networks aka RPL on both the Autonomic Control Plane ACP and external Autonomic Networking Infrastructure ANI interfaces, which allows remote attackers to conduct route-injection attacks via crafted RPL advertisements on an AN...

Design/Logic Flaw

Cisco IOS XE enables the IPv6 Routing Protocol for Low-Power and Lossy Networks aka RPL on both the Autonomic Control Plane ACP and external Autonomic Networking Infrastructure ANI interfaces, which allows remote attackers to conduct route-injection attacks via crafted RPL advertisements on an AN...

CVE-2014-3405

Summary: Cisco IOS XE’s Autonomic Networking Infrastructure (ANI) and Autonomic Control Plane (ACP) run the IPv6 RPL protocol. The vulnerability allows an unauthenticated, adjacent attacker to inject routes via crafted RPL advertisements on the ANI interface, potentially impacting routing in the ...

CVE-2014-3405

Cisco IOS XE enables the IPv6 Routing Protocol for Low-Power and Lossy Networks aka RPL on both the Autonomic Control Plane ACP and external Autonomic Networking Infrastructure ANI interfaces, which allows remote attackers to conduct route-injection attacks via crafted RPL advertisements on an AN...

Quagga Routing Software Suite 0.9x - RIPd RIPv1 RESPONSE Packet Route Injection

No description provided by source. source: http://www.securityfocus.com/bid/17808/info Quagga is susceptible to remote information-disclosure and route-injection vulnerabilities. The application fails to properly ensure that required authentication and protocol configuration options are enforced...

Quagga Routing Software Suite 0.9x - RIPd RIPv1 Request Routing Table Disclosure

No description provided by source. source: http://www.securityfocus.com/bid/17808/info Quagga is susceptible to remote information-disclosure and route-injection vulnerabilities. The application fails to properly ensure that required authentication and protocol configuration options are enforced...

Route-Injection Attacks Redirect Internet Traffic

Attackers are accessing routers running on the border gateway protocol BGP and injecting additional hops that redirect large blocks of Internet traffic to locations where it can be monitored and even manipulated before being sent to its intended destination. Internet intelligence company Renesys...

Fedora Core 4 : quagga-0.98.6-1.fc4 (2006-843)

Wed Jul 19 2006 Jay Fenlason 0.98.6-1.fc4 - Upgrade to 0.98.6 to close bz191081 CVE-2006-2223 Quagga RIPd information disclosure bz191085 CVE-2006-2224 Quagga RIPd route injection - Also backport other changes to this spec file Note that Tenable Network Security has extracted the preceding...

CentOS 3 / 4 : quagga (CESA-2006:0525)

Updated quagga packages that fix several security vulnerabilities are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Quagga manages the TCP/IP based routing protocol. It takes a multi-server and multi-thread approach to resolve...

RHEL 3 / 4 : quagga (RHSA-2006:0525)

Updated quagga packages that fix several security vulnerabilities are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Quagga manages the TCP/IP based routing protocol. It takes a multi-server and multi-thread approach to resolve...

RHEL 2.1 : zebra (RHSA-2006:0533)

Updated zebra packages that fix several security vulnerabilities are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. GNU Zebra is a free software that manages TCP/IP based routing protocol. An information disclosure flaw was foun...

zebra security update

CentOS Errata and Security Advisory CESA-2006:0533-01 Updated zebra packages that fix several security vulnerabilities are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. GNU Zebra is a free software that manages TCP/IP based...

quagga security update

CentOS Errata and Security Advisory CESA-2006:0525 Updated quagga packages that fix several security vulnerabilities are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Quagga manages the TCP/IP based routing protocol. It takes a...