You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
cve-2026-37457
About this tag
CVE-2026-37457 is a high-severity denial-of-service vulnerability disclosed in May 2026 in FRRouting's BGP FlowSpec handling. The flaw involves an off-by-one out-of-bounds write in the bgp_flowspec_op_decode() function within bgpd/bgp_flowspec_util.c. Although not a Windows vulnerability, it is relevant to WindowsForum readers because Windows networks often rely on Linux-based routing stacks, virtual appliances, edge devices, and cloud images that incorporate open-source routing code. The key takeaway is that route control plane software can contain memory bugs leading to infrastructure outages, emphasizing the importance of patching and monitoring for such CVEs in network environments.
CVE-2026-37457 is a high-severity denial-of-service flaw disclosed in May 2026 in FRRouting’s BGP FlowSpec handling, where a crafted FlowSpec component can trigger an off-by-one out-of-bounds write in bgp_flowspec_op_decode() within bgpd/bgp_flowspec_util.c. The bug is not a Windows...