Lldpd
This hub aggregates every CVE we track for Lldpd, a product in the networking infrastructure space. Use it to gauge the current risk picture and drill into individual advisories.
6
CVEs tracked
2
Critical
3
High
0
In CISA KEV
Severity distribution
HIGH3CRITICAL2MEDIUM1
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
1
0
2024-082026-07
Latest CVEs
The 6 most recently published vulnerabilities affecting Lldpd.
- CVE-2026-46433lldpd: Heap OOB Read in VLAN Decapsulation memmove6.5
- CVE-2023-41910An issue was discovered in lldpd before 1.0.17. By crafting a CDP PDU packet with specific CDP_TLV_ADDRESSES TLVs, a malicious actor can remotely force the lldpd daemon to perform an out-of-bounds ...9.8
- CVE-2021-43612In lldpd before 1.0.13, when decoding SONMP packets in the sonmp_decode function, it's possible to trigger an out-of-bounds heap read via short SONMP packets.7.5
- CVE-2020-27827A flaw was found in multiple versions of OpenvSwitch. Specially crafted LLDP packets can cause memory to be lost when allocating data to handle specific optional TLVs, potentially causing a denial ...7.5
- CVE-2015-8011Buffer overflow in the lldp_decode function in daemon/protocols/lldp.c in lldpd before 0.8.0 allows remote attackers to cause a denial of service (daemon crash) and possibly execute arbitrary code ...9.8
- CVE-2015-8012lldpd before 0.8.0 allows remote attackers to cause a denial of service (assertion failure and daemon crash) via a malformed packet.7.5
Product normalization is registry-driven with AI assist and human review. How it works