majdlatah/OVS-Other-Config-Bug

Releases0

We explain how a simple configuration bug can crash OVS daemon

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2026-36499 ↗	Jun 4, 2026Thursday, 4 June 2026, 19:16	6.5 MEDIUM	—
A missing upper-bound check in the udpif_set_threads() function of Open vSwitch v3.6.90 allows an attacker with OVSDB write access to request an excessive number of handler or revalidation threads. This can cause a denial of service (DoS) via resource exhaustion.