Analysis and contextual insights are available on OpenCVE Cloud.
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
No advisories yet.
Thu, 11 Jun 2026 00:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Open vSwitch Thread Allocation Exploit Causing Denial of Service | openvswitch: Open vSwitch: Denial of service via resource exhaustion due to missing upper-bound check |
| References |
| |
| Metrics |
threat_severity
|
threat_severity
|
Sun, 07 Jun 2026 01:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
Fri, 05 Jun 2026 10:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Redhat
Redhat openvswitch |
|
| Vendors & Products |
Redhat
Redhat openvswitch |
Thu, 04 Jun 2026 23:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Open vSwitch Thread Allocation Exploit Causing Denial of Service |
Thu, 04 Jun 2026 21:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Open vSwitch Resource Exhaustion via Missing Thread Bound Check | |
| Weaknesses | CWE-399 |
Thu, 04 Jun 2026 19:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Open vSwitch Resource Exhaustion via Missing Thread Bound Check | |
| Weaknesses | CWE-399 |
Thu, 04 Jun 2026 19:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Weaknesses | CWE-770 | |
| Metrics |
cvssV3_1
|
Thu, 04 Jun 2026 18:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | A missing upper-bound check in the udpif_set_threads() function of Open vSwitch v3.6.90 allows an attacker with OVSDB write access to request an excessive number of handler or revalidation threads. This can cause a denial of service (DoS) via resource exhaustion. | |
| References |
|
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2026-06-06T19:34:00.960Z
Reserved: 2026-04-06T00:00:00.000Z
Link: CVE-2026-36499
Updated: 2026-06-04T18:39:16.014Z
Status : Awaiting Analysis
Published: 2026-06-04T19:16:28.563
Modified: 2026-06-06T20:16:36.233
Link: CVE-2026-36499
OpenCVE Enrichment
Updated: 2026-06-05T10:10:59Z