CVE-2026-7735 | osrg GoBGP up to 4.3.0 AIGP Attribute Parser pkg/packet/bgp/bgp.go PathAttributeAigp.DecodeFromBytes buffer overflow

Inserito da Angelo Barbosa | Mag 3, 2026 | CVE

A vulnerability has been found in osrg GoBGP up to 4.3.0 and classified as critical. Affected is the function PathAttributeAigp.DecodeFromBytes of the file pkg/packet/bgp/bgp.go of the component AIGP Attribute Parser. Performing a manipulation results in buffer overflow.

This vulnerability is cataloged as CVE-2026-7735. It is possible to initiate the attack remotely. There is no exploit available.

The affected component should be upgraded.

CVE-2026-7735 | osrg GoBGP up to 4.3.0 AIGP Attribute Parser pkg/packet/bgp/bgp.go PathAttributeAigp.DecodeFromBytes buffer overflow

Post correlati

CVE-2024-40764 | SonicWall SonicOS IPSec VPN heap-based overflow (SNWLID-2024-0012)

CVE-2025-23764 | Ujjaval Jani Copy Move Posts Plugin up to 1.6 on WordPress authorization

CVE-2024-24764 | October CMS up to 3.5.14 october Schema redirect (GHSA-v2vf-jv88-3fp5)

CVE-2025-12129 | CubeWP Plugin up to 1.1.27 on WordPress REST API Endpoint query-new information disclosure