CVE-2026-7734 | osrg GoBGP up to 4.3.0 SRv6 L3 Service prefix_sid.go SRv6L3ServiceAttribute.DecodeFromBytes data denial of service

Inserito da Angelo Barbosa | Mag 3, 2026 | CVE

A vulnerability, which was classified as problematic, was found in osrg GoBGP up to 4.3.0. This impacts the function SRv6L3ServiceAttribute.DecodeFromBytes of the file pkg/packet/bgp/prefix_sid.go of the component SRv6 L3 Service. Such manipulation of the argument data leads to denial of service.

This vulnerability is listed as CVE-2026-7734. The attack may be performed from remote. There is no available exploit.

You should upgrade the affected component.

CVE-2026-7734 | osrg GoBGP up to 4.3.0 SRv6 L3 Service prefix_sid.go SRv6L3ServiceAttribute.DecodeFromBytes data denial of service

Post correlati

CVE-2024-32113 | Apache OFBiz up to 18.12.12 path traversal

CVE-2024-50353 | IowaComputerGurus aspnetcore.utilities.cloudstorage up to 7.x access control

CVE-2024-5310 | JFinalCMS up to 20221020 /admin/content Title cross site scripting (I8VHM2)

CVE-2024-41882 | Hanwha Vision XRN-420S up to 5.01.62 URL Parameter memory corruption