The vulnerability in FastNetMon Community Edition (≤1.2.9) arises from insufficient validation in the decode_mp_reach_ipv6() function within src/bgp_protocol.cpp. Specifically, the function casts raw pointers to structured types without verifying data length, uses attacker-controlled length_of_next_hop to determine memcpy size, and calculates prefix_length from attacker-controlled offsets without bounds checks. These flaws allow out-of-bounds reads during processing of the BGP MP_REACH_NLRI IPv6 attribute, potentially leading to memory disclosure or application instability.

The out-of-bounds read vulnerabilities may allow an attacker to cause application crashes or read unintended memory areas, which could lead to information disclosure or denial of service. There is no evidence of known exploits in the wild. The exact impact depends on how the vulnerable code is used and the attacker's ability to supply crafted BGP attributes.

Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until an official fix is released, users should consider restricting or monitoring BGP sessions from untrusted sources to reduce exposure to crafted malicious attributes.