CVE-2026-37462 | gobgp 4.3.0 BGP /bgp/bgp.go BGPUpdate.DecodeFromBytes integer underflow

June 3, 2026 Yanac

A vulnerability marked as problematic has been reported in gobgp 4.3.0. This issue affects the function BGPUpdate.DecodeFromBytes of the file /bgp/bgp.go of the component BGP Handler. The manipulation leads to integer underflow.

This vulnerability is documented as CVE-2026-37462. The attack can be initiated remotely. There is not any exploit available.VulDB Recent EntriesRead More