CVE-2026-34956
Published: May 5, 2026
Modified: May 6, 2026
CVSS v3.1
5.9
Description
A flaw was found in Open vSwitch. When Open vSwitch is configured with a conntrack flow using FTP helpers over the userspace datapath, a remote attacker can send a specially crafted FTP stream with an EPASV command exceeding 255 characters. This heap access error can lead to a crash, resulting in a Denial of Service (DoS) for the affected system.
| Vendor | Product | Versions |
|---|---|---|
Red Hat | Fast Datapath for RHEL 7 | All versions |
Red Hat | Fast Datapath for RHEL 7 | All versions |
Red Hat | Fast Datapath for RHEL 7 | All versions |
Red Hat | Fast Datapath for RHEL 7 | All versions |
Red Hat | Fast Datapath for RHEL 7 | All versions |
Red Hat | Fast Datapath for RHEL 7 | All versions |
Red Hat | Fast Datapath for RHEL 7 | All versions |
Red Hat | Fast Datapath for RHEL 7 | All versions |
Red Hat | Fast Datapath for RHEL 8 | All versions |
Red Hat | Fast Datapath for RHEL 8 | All versions |
Red Hat | Fast Datapath for RHEL 8 | All versions |
Red Hat | Fast Datapath for RHEL 8 | All versions |
Red Hat | Fast Datapath for RHEL 8 | All versions |
Red Hat | Fast Datapath for RHEL 8 | All versions |
Red Hat | Fast Datapath for RHEL 8 | All versions |
Red Hat | Fast Datapath for RHEL 8 | All versions |
Red Hat | Fast Datapath for RHEL 8 | All versions |
Red Hat | Fast Datapath for RHEL 8 | All versions |
Red Hat | Fast Datapath for RHEL 9 | All versions |
Red Hat | Fast Datapath for RHEL 9 | All versions |
Red Hat | Fast Datapath for RHEL 9 | All versions |
Red Hat | Fast Datapath for RHEL 9 | All versions |
Red Hat | Fast Datapath for RHEL 9 | All versions |
Red Hat | Fast Datapath for RHEL 9 | All versions |
Red Hat | Fast Datapath for RHEL 9 | All versions |
Red Hat | Fast Datapath for RHEL 9 | All versions |
Red Hat | Fast Datapath for RHEL 9 | All versions |
Red Hat | Red Hat Enterprise Linux 7 | All versions |
Red Hat | Red Hat OpenShift Container Platform 4 | All versions |
Red Hat | Red Hat OpenShift Container Platform 4 | All versions |
Red Hat | Red Hat OpenShift Container Platform 4 | All versions |
Red Hat | Red Hat OpenShift Container Platform 4 | All versions |
Red Hat | Red Hat OpenStack Platform 13 (Queens) | All versions |
Red Hat | Red Hat OpenStack Platform 13 (Queens) | All versions |
Red Hat | Red Hat OpenStack Platform 13 (Queens) | All versions |
Red Hat | Red Hat OpenStack Platform 16.2 | All versions |
Red Hat | Red Hat OpenStack Platform 16.2 | All versions |
Red Hat | Red Hat OpenStack Platform 17.1 | All versions |
Red Hat | Red Hat OpenStack Platform 17.1 | All versions |
Red Hat | Red Hat OpenStack Platform 18.0 | All versions |
Weaknesses (CWE)
CVSS v3.1 Details
CVSS v3.1 Vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now