gobgp — Vulnerabilities & Security Advisories 15

All 15 CVE vulnerabilities found in gobgp, with AI-generated Chinese analysis, references, and POCs.

Vendor: GoBGP

CVE ID	Title	CVSS	Severity	Published
CVE-2026-41643	GoBGP: Remote Denial of Service (Panic) in UpdatePathAttrs4ByteAs via Malformed BGP UPDATE CWE-129	7.5	High	2026-05-07
CVE-2026-42285	GoBGP: Panic in AdjRib.Update via malformed BGP Update message (Nil Pointer Dereference) CWE-476	7.5	High	2026-05-07
CVE-2026-41642	GoBGP: Remote Denial of Service (Panic) via Malformed Well-known Path Attribute CWE-476	7.5	High	2026-05-07
CVE-2026-7737	osrg GoBGP BMP Parser bmp.go BMPStatisticsReport.ParseBody out-of-bounds CWE-125	5.3	Medium	2026-05-04
CVE-2026-7736	osrg GoBGP mrt.go parseRibEntry integer underflow CWE-191	7.3	High	2026-05-04
CVE-2026-7735	osrg GoBGP AIGP Attribute bgp.go PathAttributeAigp.DecodeFromBytes buffer overflow CWE-120	7.3	High	2026-05-04
CVE-2026-7734	osrg GoBGP SRv6 L3 Service prefix_sid.go SRv6L3ServiceAttribute.DecodeFromBytes denial of service CWE-404	5.3	Medium	2026-05-04
CVE-2026-5124	osrg GoBGP BGP Header bgp.go BGPHeader.DecodeFromBytes access control CWE-284	3.7	Low	2026-03-30
CVE-2026-5123	osrg GoBGP bgp.go DecodeFromBytes off-by-one CWE-193	3.7	Low	2026-03-30
CVE-2026-5122	osrg GoBGP BGP OPEN Message bgp.go DecodeFromBytes access control CWE-284	3.7	Low	2026-03-30
CVE-2025-7464	osrg GoBGP rtr.go SplitRTR out-of-bounds CWE-125	3.7	Low	2025-07-12
CVE-2025-43971	GoBGP 安全漏洞 CWE-193	8.6	High	2025-04-21
CVE-2025-43970	GoBGP 安全漏洞 CWE-1284	4.3	Medium	2025-04-21
CVE-2025-43973	GoBGP 安全漏洞 CWE-193	6.8	Medium	2025-04-21
CVE-2025-43972	GoBGP 安全漏洞 CWE-1284	6.8	Medium	2025-04-21

All 15 known CVE vulnerabilities affecting gobgp with full Chinese analysis, references, and POCs where available.