Vulnerabilities in GoBGP
4 resultsCVE-2025-43973MEDIUMAn issue was discovered in GoBGP before 3.35.0. pkg/packet/rtr/rtr.go does not verify that the input length corresponds to a situation in whEPSS 0.5%CVE-2025-43971HIGHAn issue was discovered in GoBGP before 3.35.0. pkg/packet/bgp/bgp.go allows attackers to cause a panic via a zero value for softwareVersionEPSS 0.5%CVE-2025-43972MEDIUMAn issue was discovered in GoBGP before 3.35.0. An attacker can cause a crash in the pkg/packet/bgp/bgp.go flowspec parser by sending fewer EPSS 0.5%CVE-2025-43970MEDIUMAn issue was discovered in GoBGP before 3.35.0. pkg/packet/mrt/mrt.go does not properly check the input length, e.g., by ensuring that thereEPSS 0.4%