CVE-2026-5124 | osrg GoBGP up to 4.3.0 BGP Header pkg/packet/bgp/bgp.go BGPHeader.DecodeFromBytes access control (ID 3340)

A vulnerability marked as problematic has been reported in osrg GoBGP up to 4.3.0. Affected is the function BGPHeader.DecodeFromBytes of the file pkg/packet/bgp/bgp.go of the component BGP Header Handler. The manipulation leads to improper access controls.

This vulnerability is referenced as CVE-2026-5124. Remote exploitation of the attack is possible. No exploit is available.

To fix this issue, it is recommended to deploy a patch.VulDB Recent EntriesRead More