Fast datapath
This hub aggregates every CVE we track for Fast datapath, a product in the operating systems space. Use it to gauge the current risk picture and drill into individual advisories.
Operating Systemson-prem
14
CVEs tracked
3
Critical
7
High
0
In CISA KEV
Severity distribution
HIGH7MEDIUM4CRITICAL3
Monthly trend
0
0
0
2
0
1
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-082026-07
Latest CVEs
The 14 most recently published vulnerabilities affecting Fast datapath.
- CVE-2025-0650Ovn: egress acls may be bypassed via specially crafted udp packet8.1
- CVE-2024-52337Tuned: improper sanitization of `instance_name` parameter of the `instance_create()` method5.5
- CVE-2024-52336Tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root7.8
- CVE-2023-3966Openvswsitch: ovs-vswitch fails to recover after malformed geneve metadata packet7.5
- CVE-2023-5366Openvswitch don't match packets on nd_target field7.1
- CVE-2023-3153Service monitor mac flow is not rate limited5.3
- CVE-2023-1668A flaw was found in openvswitch (OVS). When processing an IP packet with protocol 0, OVS will install the datapath flow without the action modifying the IP header. This issue results (for both kern...8.2
- CVE-2022-4338An integer underflow in Organization Specific TLV was found in various versions of OpenvSwitch.9.8
- CVE-2022-4337An out-of-bounds read in Organization Specific TLV was found in various versions of OpenvSwitch.9.8
- CVE-2022-28199NVIDIA’s distribution of the Data Plane Development Kit (MLNX_DPDK) contains a vulnerability in the network stack, where error recovery is not handled properly, which can allow a remote attacker ...6.5
- CVE-2022-2132A permissive list of allowed inputs flaw was found in DPDK. This issue allows a remote attacker to cause a denial of service triggered by sending a crafted Vhost header to DPDK.8.6
- CVE-2021-36980Open vSwitch (aka openvswitch) 2.11.0 through 2.15.0 has a use-after-free in decode_NXAST_RAW_ENCAP (called from ofpact_decode and ofpacts_decode) during the decoding of a RAW_ENCAP action.5.5
- CVE-2020-27827A flaw was found in multiple versions of OpenvSwitch. Specially crafted LLDP packets can cause memory to be lost when allocating data to handle specific optional TLVs, potentially causing a denial ...7.5
- CVE-2015-8011Buffer overflow in the lldp_decode function in daemon/protocols/lldp.c in lldpd before 0.8.0 allows remote attackers to cause a denial of service (daemon crash) and possibly execute arbitrary code ...9.8
Product normalization is registry-driven with AI assist and human review. How it works