Lucene search
K

146 matches found

BDU FSTEC
BDU FSTEC
added 2022/12/14 12:0 a.m.6 views

The vulnerability of the ARP protocol implementation, which is used to determine the MAC address of a computer, in the microsoftware for TP-Link TL-WR740N routers, allows a attacker to cause a service failure.

The vulnerability of the ARP protocol implementation for determining the MAC address of TP-Link TL-WR740N router microprogramming systems is related to an uncontrolled resource consumption. Exploiting this vulnerability can allow a hacker to cause service failures...

6.5CVSS5.9AI score0.00301EPSS
Exploits1References5
CNNVD
CNNVD
added 2022/12/06 12:0 a.m.3 views

TP-LINK TL-WR740N 资源管理错误漏洞

The TP-LINK TL-WR740N is a wireless router from China P&L TP-LINK. The TP-LINK TL-WR740N suffers from a Resource Management Error vulnerability that stems from an unknown function of the component ARP handler that manipulates to cause resource consumption...

6.5CVSS5.7AI score0.00301EPSS
Exploits1References3
OSV
OSV
added 2022/09/27 6:15 p.m.4 views

CVE-2021-27853

Layer 2 network filtering capabilities such as IPv6 RA guard or ARP inspection can be bypassed using combinations of VLAN 0 headers and LLC/SNAP headers...

4.7CVSS5.8AI score0.0071EPSS
Exploits1References7
BDU FSTEC
BDU FSTEC
added 2022/07/13 12:0 a.m.6 views

The vulnerability of the microprogrammed software of industrial switches SCALANCE W1788-1 M12, SCALANCE W1788-2 EEC M12, SCALANCE W1788-2 M12, SCALANCE W1788-2IA M12 allows a intruder to trigger a service failure.

The vulnerability of the microprogrammed software of industrial switches SCALANCE W1788-1 M12, SCALANCE W1788-2 EEC M12, SCALANCE W1788-2 M12, and SCALANCE W1788-2IA M12 is related to errors in processing ARP packets. Exploiting this vulnerability can allow a remote attacker to cause service...

7.4CVSS5.9AI score0.00227EPSS
Exploits0References2Affected Software4
CNNVD
CNNVD
added 2022/07/06 12:0 a.m.6 views

Gallagher Controller 6000 安全漏洞

The Gallagher Controller 6000 is an interface between the Gallagher Command Center server and distributed field hardware from Gallagher New Zealand. A security vulnerability exists in the Gallagher Controller 6000 that originates from an attack via conflicting ARP packets with duplicate IP...

7.8CVSS7.4AI score0.00845EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/05/20 1:15 p.m.2 views

CVE-2022-27640

A vulnerability has been identified in SIMATIC CP 442-1 RNA All versions V1.5.18, SIMATIC CP 443-1 RNA All versions V1.5.18. The affected devices improperly handles excessive ARP broadcast requests. This could allow an attacker to create a denial of service condition by performing ARP storming...

6.5CVSS5.7AI score0.00354EPSS
Exploits0References2
OSV
OSV
added 2022/05/20 1:15 p.m.2 views

CVE-2022-27640

A vulnerability has been identified in SIMATIC CP 442-1 RNA All versions V1.5.18, SIMATIC CP 443-1 RNA All versions V1.5.18. The affected devices improperly handles excessive ARP broadcast requests. This could allow an attacker to create a denial of service condition by performing ARP storming...

6.5CVSS5.7AI score0.00354EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2022/04/13 12:0 a.m.9 views

The vulnerability of the ARP protocol implementation in the TCP/IP stack allows a attacker to gain unauthorized access to protected information.

The vulnerability of the ARP protocol, which is used to determine the MAC address of a computer, within the Trace TCP/IP stack is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

4.3CVSS5.5AI score0.01657EPSS
Exploits1References12Affected Software1
OSV
OSV
added 2022/04/12 9:15 a.m.2 views

CVE-2022-27481

A vulnerability has been identified in SCALANCE W1788-1 M12 All versions V3.0.0, SCALANCE W1788-2 EEC M12 All versions V3.0.0, SCALANCE W1788-2 M12 All versions V3.0.0, SCALANCE W1788-2IA M12 All versions V3.0.0. Affected devices do not properly handle resources of ARP requests. This could allow ...

5.3CVSS5.7AI score0.00227EPSS
Exploits0References1
OSV
OSV
added 2022/02/24 10:15 p.m.4 views

CVE-2021-39364

Honeywell HDZP252DI 1.00.HW02.4 and HBW2PER1 1.000.HW01.3 devices allow command spoofing for camera control after ARP cache poisoning has been achieved...

7.5CVSS5.7AI score0.01031EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/02/24 12:0 a.m.5 views

Honeywell HDZP252DI 1.00.HW02.4 安全漏洞

Honeywell Hdzp252Di is a Performance Series Ip Camera from Honeywell USA. A security vulnerability exists in Honeywell HDZP252DI 1.00.HW02.4 that originates from allowing command spoofing for camera control after ARP cache poisoning...

7.5CVSS7.3AI score0.01031EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2021/10/27 12:0 a.m.5 views

The vulnerability of the Network Address Translation (NAT) technology implemented in the Cisco IOS XE operating system allows attackers to bypass ALG and establish unauthorized connections.

The vulnerability of the Network Address Translation NAT technology implemented in the Cisco IOS XE operating system is related to a violation of data protection mechanisms. Exploiting this vulnerability allows an attacker to bypass the Address Resolution Protocol ALG and establish unauthorized...

5CVSS5.5AI score0.01156EPSS
Exploits0References2Affected Software1
RedHat Linux
RedHat Linux
added 2021/05/18 2:6 p.m.3 views

QEMU: slirp: out-of-bounds access while processing ARP/NCSI packets

An out-of-bounds access issue was found in the SLiRP user networking implementation of QEMU. It could occur while processing ARP/NCSI packets, if the packet length was shorter than required to accommodate respective protocol headers and payload. A privileged guest user may use this flaw to...

4.3CVSS6.8AI score0.0183EPSS
Exploits1References5
HashiCorp Security Advisories
HashiCorp Security Advisories
added 2021/05/12 10:29 p.m.6 views

Nomad Bridge Networking Mode Allows ARP Spoofing From Other Bridged Tasks On Same Node

Summary A vulnerability was identified in Nomad and Nomad Enterprise “Nomad” such that Nomad’s bridge networking mode allows ARP spoofing from other bridged tasks on the same node. This vulnerability, CVE-2021-32575, affects all Nomad versions up to 1.0.4, and is fixed in the 0.12.12, 1.0.5 and...

6.5CVSS6.7AI score0.00512EPSS
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/04/06 12:0 a.m.5 views

The vulnerability of the Address Resolution Protocol implementation in Cisco IOS and Cisco IOS XE operating systems allows a attacker to cause a service failure.

The vulnerability of the Address Resolution Protocol implementation in Cisco IOS and Cisco IOS XE operating systems is related to resource management errors. Exploiting this vulnerability can allow a malicious actor to cause service failures...

5.8CVSS6.6AI score0.01433EPSS
Exploits0References2
OSV
OSV
added 2021/03/24 8:15 p.m.4 views

CVE-2021-1377

A vulnerability in Address Resolution Protocol ARP management of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to prevent an affected device from resolving ARP entries for legitimate hosts on the connected subnets. This vulnerability exists because A...

5.8CVSS6.6AI score0.01433EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/03/24 12:0 a.m.8 views

Cisco IOS和IOS XE 资源管理错误漏洞

Cisco IOS is an operation and maintenance system developed by Cisco for its network devices, where users set up the functions of the network devices through a command-line human-machine interface.IOS XE is a set of modular operating systems based on the Linux kernel developed for its network...

5.8CVSS6.4AI score0.01433EPSS
Exploits0References3
ThreatPost
ThreatPost
added 2021/03/02 4:54 p.m.57 views

Ryuk Ransomware: Now with Worming Self-Propagation

A new version of the Ryuk ransomware is capable of worm-like self-propagation within a local network, researchers have found. The variant first emerged in Windows-focused campaigns earlier in 2021, according to the French National Agency for the Security of Information Systems ANSSI. The agency...

0.7AI score
Exploits0References7
Positive Technologies
Positive Technologies
added 2021/03/02 12:0 a.m.5 views

PT-2021-20341 · Stormshield · Stormshield Network Security

Name of the Vulnerable Software and Affected Versions: Stormshield Network Security versions 2.0.0 through 2.7.7 Stormshield Network Security versions 2.8.0 through 2.16.0 Stormshield Network Security versions 3.0.0 through 3.7.16 Stormshield Network Security versions 3.8.0 through 3.11.4...

5.3CVSS7.2AI score0.01016EPSS
Exploits0References4
OSV
OSV
added 2021/02/09 6:15 p.m.2 views

CVE-2021-25666

A vulnerability has been identified in SCALANCE W780 and W740 IEEE 802.11n family All versions V6.3. Sending specially crafted packets through the ARP protocol to an affected device could cause a partial denial-of-service, preventing the device to operate normally for a short period of time...

4.3CVSS5.7AI score0.00694EPSS
Exploits0References2
Rows per page
Query Builder