Primary

Context

FRRouting Denial-of-Service Vulnerability via Crafted BGP UPDATE Message

Vulnerability

A denial-of-service vulnerability has been identified in FRRouting (FRR) versions stable/10.0 to stable/10.6. The issue arises from missing input validation in the rfapiRibBi2Ri() function within the rfapi_rib.c file. This vulnerability allows attackers to cause a denial-of-service by sending a crafted BGP UPDATE message.

Impact

Exploitation of this vulnerability leads to a denial-of-service condition, causing the application to become unresponsive or unavailable.

Reproduction

The vulnerability can be reproduced by sending a crafted BGP UPDATE message that exploits the lack of input validation in the rfapiRibBi2Ri() function. This can be done using a BGP speaker that supports EVPN, by manipulating the IP address length in the BGP update to trigger the denial-of-service condition.

Added: Jun 3, 2026, 2:39 PM

Updated: Jun 3, 2026, 2:39 PM

Vulnerability Rating

Custom Algorithm

spread

1.0

impact

2.5

exploitability

8.6

remediation

0.0

relevance

9.9

threat

4.8

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

1.0

impact

2.5

exploitability

8.6

remediation

0.0

relevance

9.9

threat

4.8

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

FRRouting Denial-of-Service Vulnerability via Crafted BGP UPDATE Message

Vulnerability

Impact

Reproduction

Affected Products

FRRouting

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating