Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/10 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2025-43971

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in GoBGP before 3.35.0. pkg/packet/bgp/bgp.go allows attackers to cause a panic via a zero value for softwareVersionLen. CVE-2025-43971...

8.6CVSS4.7AI score0.00458EPSS
Exploits0References2
Veracode
Veracode
added 2025/04/28 4:58 a.m.8 views

Denial Of Service (DoS)

github.com/osrg/gobgp is vulnerable to Denial Of Service DoS The vulnerability is due to missing validation of the softwareVersionLen field, allowing an attacker to send a crafted BGP packet with a zero softwareVersionLen value to crash the GoBGP process and cause a denial of service...

8.6CVSS8.2AI score0.00458EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2025/04/21 3:30 a.m.8 views

GoBGP panics due to a zero value for softwareVersionLen

An issue was discovered in GoBGP before 3.35.0 introduced in v3.11.0. pkg/packet/bgp/bgp.go allows attackers to cause a panic via a zero value for softwareVersionLen...

8.6CVSS5.8AI score0.00458EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2025/04/21 1:15 a.m.19 views

CVE-2025-43971

An issue was discovered in GoBGP before 3.35.0. pkg/packet/bgp/bgp.go allows attackers to cause a panic via a zero value for softwareVersionLen...

8.6CVSS0.00458EPSS
Exploits0References2
OSV
OSV
added 2025/04/21 1:15 a.m.3 views

DEBIAN-CVE-2025-43971

An issue was discovered in GoBGP before 3.35.0. pkg/packet/bgp/bgp.go allows attackers to cause a panic via a zero value for softwareVersionLen...

7.5CVSS4.3AI score0.00458EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/21 12:0 a.m.28 views

CVE-2025-43971

An issue was discovered in GoBGP before 3.35.0. pkg/packet/bgp/bgp.go allows attackers to cause a panic via a zero value for softwareVersionLen...

8.6CVSS0.00458EPSS
Exploits0References2
CVE
CVE
added 2025/04/21 12:0 a.m.237 views

CVE-2025-43971

CVE-2025-43971 affects GoBGP prior to 3.35.0. The flaw in pkg/packet/bgp/bgp.go allows a panic to be triggered by a zero value for softwareVersionLen, as described in the vulnerability note. The issue is limited to the GoBGP code path involving BGP packet handling, and the impact is a denial of s...

8.6CVSS6.5AI score0.00458EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder