CVE-2026-13351
HIGHnet: Maliciously fragmented IPv6 packets can prevent receiving/processing future incoming packets
Title source: cnaDescription
Zephyr's IPv6 network stack can be prevented from receiving or processing future incoming packets by sending a small number of maliciously fragmented IPv6 packets. When such a packet is handled by the fragment-header processing path, the associated RX network packet buffer (allocated from a memory slab) is not released back to the pool. Repeating the malicious packet exhausts all RX buffer slots, after which the device can no longer obtain RX buffers and stops receiving traffic, resulting in a denial of service.
References (1)
Core 1
Scores
CVSS v3
7.5
EPSS
0.0026
EPSS Percentile
17.6%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
yes
Technical Impact
partial
Details
CWE
CWE-772
Status
published
Products (1)
zephyrproject-rtos/Zephyr
< 4.3
Published
Jun 25, 2026
Tracked Since
Jun 25, 2026