Buffer Overflow in radvd Router Advertisement Daemon Affecting IPv6 Functionality
CVE-2026-48715

7.7HIGH

Key Information:

Vendor: Radvd-project
Status: Radvdump
Vendor: CVE Published:; 19 June 2026

🔔 Create Radvd-project Vulnerability Alert

What is CVE-2026-48715?

The radvd router advertisement daemon for IPv6 prior to version 2.21 contains a significant vulnerability in its radvdump utility. This vulnerability is a stack buffer overflow within the Route Information option parser, triggered when processing specially crafted ICMPv6 Router Advertisements. The print_ff() function attempts to copy up to 2032 bytes of data from an attacker-controlled packet into a limited 16-byte struct in6_addr on the stack. This operation can lead to an overflow of up to 2016 bytes, potentially allowing for unauthorized code execution or system compromise. The main radvd daemon is not vulnerable, but users must upgrade to version 2.21 or later to mitigate the risk.

Affected Version(s)

radvdump < 2.21

References

https://github.com/radvd-project/radvd/security/advisorie...

x_refsource_CONFIRM

https://github.com/radvd-project/radvd/commit/068bde13e3f...

x_refsource_MISC

CVSS V4

Score:

7.7

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

High

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 19, 2026
Vulnerability Reserved
May 22, 2026

CVE-2026-48715 Data

JSON