CVE-2026-7737 | osrg GoBGP up to 4.3.0 BMP Parser pkg/packet/bmp/bmp.go out-of-bounds

Inserito da Angelo Barbosa | Mag 3, 2026 | CVE

A vulnerability was found in osrg GoBGP up to 4.3.0. It has been classified as problematic. Affected by this issue is the function BMPPeerUpNotification.ParseBody/BMPStatisticsReport.ParseBody of the file pkg/packet/bmp/bmp.go of the component BMP Parser. The manipulation leads to out-of-bounds read.

This vulnerability is documented as CVE-2026-7737. The attack can be initiated remotely. There is not any exploit available.

Upgrading the affected component is recommended.

CVE-2026-7737 | osrg GoBGP up to 4.3.0 BMP Parser pkg/packet/bmp/bmp.go out-of-bounds

Post correlati

CVE-2024-4760 | Microchip SAME70/SAMS70/SAMV70/SAMV71 EEFC NVM Controller unknown vulnerability

CVE-2022-46486 | Scontain SCONE up to 5.7.x on Intel SGX __scone_dispatch information disclosure

CVE-2026-29100 | SuiteCRM up to 7.15.0 cross site scripting (GHSA-g7hf-3j93-rwm5)

CVE-2024-22103 | Mitsubishi Electric CPU Module Logging Configuration Tool out-of-bounds write (icsa-24-135-04)