CVE-2025-43972

6.8MEDIUM

An issue was discovered in GoBGP before 3.35.0. An attacker can cause a crash in the pkg/packet/bgp/bgp.go flowspec parser by sending fewer than 20 bytes in a certain context.

Published: 4/21/2025Updated: 5/8/2025
View on NVDView on MITRE

Description

An issue was discovered in GoBGP before 3.35.0. An attacker can cause a crash in the pkg/packet/bgp/bgp.go flowspec parser by sending fewer than 20 bytes in a certain context.

AI AnalysisPowered by AI

Affected Products

osrggobgp

References