ReportizFlow
Filtered by vendor Redhat
Subscriptions
Filtered by product Openvswitch
Subscriptions
Total
2 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2026-36499 | 1 Redhat | 1 Openvswitch | 2026-06-06 | 6.5 Medium |
| A missing upper-bound check in the udpif_set_threads() function of Open vSwitch v3.6.90 allows an attacker with OVSDB write access to request an excessive number of handler or revalidation threads. This can cause a denial of service (DoS) via resource exhaustion. | ||||
| CVE-2026-34956 | 1 Redhat | 7 Enterprise Linux, Fast Datapath, Openshift and 4 more | 2026-05-06 | 5.9 Medium |
| A flaw was found in Open vSwitch. When Open vSwitch is configured with a conntrack flow using FTP helpers over the userspace datapath, a remote attacker can send a specially crafted FTP stream with an EPASV command exceeding 255 characters. This heap access error can lead to a crash, resulting in a Denial of Service (DoS) for the affected system. | ||||
Page 1 of 1.