openvswitch (SUSE:Linux Enterprise Server 15 SP4-LTSS) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise Server 15 SP4-LTSS package openvswitch, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (5)
CVE-2026-5367 — CVSS 8.6 (high): A flaw was found in OVN (Open Virtual Network). A remote attacker, by sending crafted DHCPv6 (Dynamic Host Configuration Protocol for IPv6)…
CVE-2025-0650 — CVSS 8.1 (high): A flaw was found in the Open Virtual Network (OVN). Specially crafted UDP packets may bypass egress access control lists (ACLs) in OVN…
CVE-2023-3966 — CVSS 7.5 (high): A flaw was found in Open vSwitch where multiple versions are vulnerable to crafted Geneve packets, which may result in a denial of service…
CVE-2024-22563 — CVSS 7.5 (high): openvswitch 2.17.8 was discovered to contain a memory leak via the function xmalloc__ in openvswitch-2.17.8/lib/util.c.
CVE-2026-5265 — CVSS 6.5 (medium): When generating an ICMP Destination Unreachable or Packet Too Big response, the handler copies a portion of the original packet into the…