Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

osrg — Vulnerabilities & Security Advisories 11

Browse all 11 CVE security advisories affecting osrg. AI-powered Chinese analysis, POCs, and references for each vulnerability.

OSRG develops open-source networking and virtualization software, primarily focused on virtual switch and network function virtualization solutions. Historically, their products have been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from improper input validation and access control flaws. While no major public security incidents have been widely documented, the 11 CVEs on record highlight persistent security concerns in their codebase, particularly around memory corruption and boundary condition issues. Their software's critical infrastructure role makes these vulnerabilities potentially impactful, though the company has generally addressed reported issues through timely patches and security updates.

Found 11 results / 11Clear Filters
Top products by osrg: GoBGP
CVE IDTitleCVSSSeverityPublished
CVE-2026-41643 GoBGP: Remote Denial of Service (Panic) in UpdatePathAttrs4ByteAs via Malformed BGP UPDATE — gobgpCWE-129 7.5 High2026-05-07
CVE-2026-42285 GoBGP: Panic in AdjRib.Update via malformed BGP Update message (Nil Pointer Dereference) — gobgpCWE-476 7.5 High2026-05-07
CVE-2026-41642 GoBGP: Remote Denial of Service (Panic) via Malformed Well-known Path Attribute — gobgpCWE-476 7.5 High2026-05-07
CVE-2026-7737 osrg GoBGP BMP Parser bmp.go BMPStatisticsReport.ParseBody out-of-bounds — GoBGPCWE-125 5.3 Medium2026-05-04
CVE-2026-7736 osrg GoBGP mrt.go parseRibEntry integer underflow — GoBGPCWE-191 7.3 High2026-05-04
CVE-2026-7735 osrg GoBGP AIGP Attribute bgp.go PathAttributeAigp.DecodeFromBytes buffer overflow — GoBGPCWE-120 7.3 High2026-05-04
CVE-2026-7734 osrg GoBGP SRv6 L3 Service prefix_sid.go SRv6L3ServiceAttribute.DecodeFromBytes denial of service — GoBGPCWE-404 5.3 Medium2026-05-04
CVE-2026-5124 osrg GoBGP BGP Header bgp.go BGPHeader.DecodeFromBytes access control — GoBGPCWE-284 3.7 Low2026-03-30
CVE-2026-5123 osrg GoBGP bgp.go DecodeFromBytes off-by-one — GoBGPCWE-193 3.7 Low2026-03-30
CVE-2026-5122 osrg GoBGP BGP OPEN Message bgp.go DecodeFromBytes access control — GoBGPCWE-284 3.7 Low2026-03-30
CVE-2025-7464 osrg GoBGP rtr.go SplitRTR out-of-bounds — GoBGPCWE-125 3.7 Low2025-07-12

This page lists every published CVE security advisory associated with osrg. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.