CVE-2026-5107: FRRouting FRR EVPN Type-2 Route bgp_evpn.c process_type2_route access control

Overview

Severity

Medium (CVSS 4.2)

CVSS Vector

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L/E:X/RL:O/RC:C

Exploit Status

Not Exploited

Patch Tuesday

2026-Mar

Released

2026-03-31

Last Updated

2026-05-06

EPSS Score

0.02% (percentile: 3.8%)

Affected Products (4)

Other

• 21092-17084
• 20873-17086
• 21208-17084
• 21317-17084

Revision History

• 2026-03-31: Information published.
• 2026-04-02: Information published.
• 2026-04-02: Information published.
• 2026-04-03: Information published.
• 2026-04-09: Information published.
• 2026-04-14: Information published.
• 2026-05-06: Information published.