Frrouting
This hub aggregates every CVE we track for Frrouting, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.
49
CVEs tracked
5
Critical
28
High
0
In CISA KEV
Severity distribution
HIGH28MEDIUM15CRITICAL5LOW1
Monthly trend
0
1
0
0
0
0
1
0
0
0
0
0
0
0
0
9
0
0
0
0
1
1
2
0
2024-072026-06
Latest CVEs
The 15 most recently published vulnerabilities affecting Frrouting.
- CVE-2026-37458Missing input validation in the MP_REACH_NLRI component of FRRouting (FRR) stable/10.0 to stable/10.6 allows authenticated attackers to cause a Denial of Service (DoS) via supplying a crafted UPDAT...6.5
- CVE-2026-37457An off-by-one out-of-bounds write vulnerability in the bgp_flowspec_op_decode() function (bgpd/bgp_flowspec_util.c) of FRRouting (FRR) stable/10.0 allows attackers to cause a Denial of Service (DoS...7.5
- CVE-2026-28532FRRouting < 10.5.3 Integer Overflow in OSPF TLV Parser Functions6.5
- CVE-2026-5107FRRouting FRR EVPN Type-2 Route bgp_evpn.c process_type2_route access control4.2
- CVE-2025-61104FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the show_vty_unknown_tlv function at ospf_ext.c. This vulnerability allows attackers to cause a Deni...7.5
- CVE-2025-61107FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the show_vty_ext_pref_pref_sid function at ospf_ext.c. This vulnerability allows attackers to cause ...7.5
- CVE-2025-61103FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the show_vty_ext_link_lan_adj_sid function at ospf_ext.c. This vulnerability allows attackers to cau...7.5
- CVE-2025-61106FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the show_vty_ext_pref_pref_sid function at ospf_ext.c. This vulnerability allows attackers to cause ...7.5
- CVE-2025-61101FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the show_vty_ext_link_rmt_itf_addr function at ospf_ext.c. This vulnerability allows attackers to ca...7.5
- CVE-2025-61105FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the show_vty_link_info function at ospf_ext.c. This vulnerability allows attackers to cause a Denial...7.5
- CVE-2025-61102FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the show_vty_ext_link_adj_sid function at ospf_ext.c. This vulnerability allows attackers to cause a...7.5
- CVE-2025-61100FRRouting/frr from v2.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the ospf_opaque_lsa_dump function at ospf_opaque.c. This vulnerability allows attackers to cause a D...7.5
- CVE-2025-61099FRRouting/frr from v2.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the opaque_info_detail function at ospf_opaque.c. This vulnerability allows attackers to cause a Den...7.5
- CVE-2024-55553In FRRouting (FRR) before 10.3 from 6.0 onward, all routes are re-validated if the total size of an update received via RTR exceeds the internal socket's buffer size, default 4K on most OSes. An at...7.5
- CVE-2024-44070An issue was discovered in FRRouting (FRR) through 10.1. bgp_attr_encap in bgpd/bgp_attr.c does not check the actual remaining stream length before taking the TLV value.7.5
Product normalization is registry-driven with AI assist and human review. How it works