CVE-2026-5367
Ovn: ovn: information disclosure via crafted dhcpv6 packets
CVSS Score
8.6
EPSS Score
0.0%
EPSS Percentile
7th
A flaw was found in OVN (Open Virtual Network). A remote attacker, by sending crafted DHCPv6 (Dynamic Host Configuration Protocol for IPv6) SOLICIT packets with an inflated Client ID length, could cause the ovn-controller to read beyond the bounds of a packet. This out-of-bounds read can lead to the disclosure of sensitive information stored in heap memory, which is then returned to the attacker's virtual machine port.
| CWE | CWE-130 |
| Vendor | red hat |
| Product | fast datapath for red hat enterprise linux 10 |
| Published | Apr 24, 2026 |
| Last Updated | Jun 1, 2026 |
Stay Ahead of the Next One
Get instant alerts for red hat fast datapath for red hat enterprise linux 10
Be the first to know when new high vulnerabilities affecting red hat fast datapath for red hat enterprise linux 10 are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
CVSS v3 Breakdown
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Changed
Confidentiality
High
Integrity
None
Availability
None
Affected Versions
Red Hat / Fast Datapath for Red Hat Enterprise Linux 10
All versions affected Red Hat / Fast Datapath for Red Hat Enterprise Linux 10
All versions affected Red Hat / Fast Datapath for Red Hat Enterprise Linux 8
All versions affected Red Hat / Fast Datapath for Red Hat Enterprise Linux 8
All versions affected Red Hat / Fast Datapath for Red Hat Enterprise Linux 9
All versions affected Red Hat / Fast Datapath for Red Hat Enterprise Linux 9
All versions affected Red Hat / Fast Datapath for Red Hat Enterprise Linux 9
All versions affected Red Hat / Fast Datapath for Red Hat Enterprise Linux 9
All versions affected Red Hat / Fast Datapath for Red Hat Enterprise Linux 9
All versions affected Red Hat / Fast Datapath for RHEL 8
All versions affected Red Hat / Fast Datapath for RHEL 8
All versions affected Red Hat / Fast Datapath for RHEL 8
All versions affected Red Hat / Fast Datapath for RHEL 8
All versions affected Red Hat / Fast Datapath for RHEL 9
All versions affected Red Hat / Fast Datapath for RHEL 9
All versions affected Red Hat / Red Hat OpenShift Container Platform 4
All versions affected Red Hat / Red Hat OpenShift Container Platform 4
All versions affected Red Hat / Red Hat OpenShift Container Platform 4
All versions affected Red Hat / Red Hat OpenShift Container Platform 4
All versions affected Red Hat / Red Hat OpenShift Container Platform 4
All versions affected Red Hat / Red Hat OpenShift Container Platform 4
All versions affected Red Hat / Red Hat OpenShift Container Platform 4
All versions affected Red Hat / Red Hat OpenShift Container Platform 4
All versions affected Red Hat / Red Hat OpenShift Container Platform 4
All versions affected References
access.redhat.com: https://access.redhat.com/errata/RHSA-2026:11694 access.redhat.com: https://access.redhat.com/errata/RHSA-2026:11695 access.redhat.com: https://access.redhat.com/errata/RHSA-2026:11696 access.redhat.com: https://access.redhat.com/errata/RHSA-2026:11698 access.redhat.com: https://access.redhat.com/errata/RHSA-2026:11700 access.redhat.com: https://access.redhat.com/errata/RHSA-2026:11701 access.redhat.com: https://access.redhat.com/errata/RHSA-2026:11702 access.redhat.com: https://access.redhat.com/errata/RHSA-2026:22110 access.redhat.com: https://access.redhat.com/errata/RHSA-2026:22111 access.redhat.com: https://access.redhat.com/security/cve/CVE-2026-5367 bugzilla.redhat.com: https://bugzilla.redhat.com/show_bug.cgi?id=2455863 openwall.com: http://www.openwall.com/lists/oss-security/2026/04/20/3 openwall.com: http://www.openwall.com/lists/oss-security/2026/04/20/5