High severity7.3NVD Advisory· Published May 4, 2026· Updated May 6, 2026
CVE-2026-7735
CVE-2026-7735
Description
A vulnerability was found in osrg GoBGP up to 4.3.0. Affected is the function PathAttributeAigp.DecodeFromBytes of the file pkg/packet/bgp/bgp.go of the component AIGP Attribute Parser. Performing a manipulation results in buffer overflow. It is possible to initiate the attack remotely. Upgrading to version 4.4.0 is able to address this issue. The patch is named 51ad1ada06cb41ce47b7066799981816f50b7ced. The affected component should be upgraded.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
5- github.com/osrg/gobgp/commit/51ad1ada06cb41ce47b7066799981816f50b7cednvdPatch
- github.com/osrg/gobgp/releases/tag/v4.4.0nvdPatchProduct
- vuldb.com/submit/807600nvdThird Party AdvisoryVDB Entry
- vuldb.com/vuln/360910nvdThird Party AdvisoryVDB Entry
- vuldb.com/vuln/360910/ctinvdPermissions RequiredVDB Entry
News mentions
0No linked articles in our index yet.