PT-2026-28761 · Frrouting+2 · Frrouting Frr+2

Rensiru

Publicado

2026-03-30

Atualizado

2026-06-03

CVE-2026-5107

CVSS v3.1

4.2

Média

Vetor

AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L

Name of the Vulnerable Software and Affected Versions FRRouting FRR versions up to 10.5.1

Description A security issue exists in FRRouting FRR related to improper access controls within the EVPN Type-2 Route Handler component. The issue is located in the process type2 route function of the bgpd/bgp evpn.c file. The attack can be initiated remotely and is considered difficult to exploit.

Recommendations Deploy a patch to address this issue.

Correção

Incorrect Privilege Assignment

Improper Access Control

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-266CWE-284

Identificadores relacionados

CVE-2026-5107

OPENSUSE-SU-2026:10606-1

SUSE-SU-2026:22026-1

USN-8175-1

Produtos afetados

Frrouting Frr

Linuxmint

Ubuntu

PT-2026-28761 · Frrouting+2 · Frrouting Frr+2

CVE-2026-5107

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 27