CVE-2026-7656

The CVE affects Zephyr’s IPv6 Neighbor Discovery in subsys/net/ip/ipv6_nbr.c (handle_ra_input/handle_ns_input/handle_na_input). A faulty boolean combining ND validity checks with ICMPv6 code allowed any ND message with code 0 to bypass Hop Limit==255 and multicast/RS/RA validation, enabling forge...