Lucene search
K

5112 matches found

NVD
NVD
added 2024/11/21 11:15 a.m.9 views

CVE-2024-11596

ECMP dissector crash in Wireshark 4.4.0 to 4.4.1 and 4.2.0 to 4.2.8 allows denial of service via packet injection or crafted capture file...

7.8CVSS0.00299EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2024/11/21 11:15 a.m.0 views

CVE-2024-11596

ECMP dissector crash in Wireshark 4.4.0 to 4.4.1 and 4.2.0 to 4.2.8 allows denial of service via packet injection or crafted capture file...

7.8CVSS6.1AI score0.00299EPSS
Exploits1References3Affected Software1
AlpineLinux
AlpineLinux
added 2024/11/21 11:15 a.m.14 views

CVE-2024-11596

ECMP dissector crash in Wireshark 4.4.0 to 4.4.1 and 4.2.0 to 4.2.8 allows denial of service via packet injection or crafted capture file...

7.8CVSS7.3AI score0.00299EPSS
Exploits1
OSV
OSV
added 2024/11/21 11:15 a.m.3 views

DEBIAN-CVE-2024-11596

ECMP dissector crash in Wireshark 4.4.0 to 4.4.1 and 4.2.0 to 4.2.8 allows denial of service via packet injection or crafted capture file...

5.5CVSS5.6AI score0.00299EPSS
Exploits1References1
NVD
NVD
added 2024/11/21 11:15 a.m.15 views

CVE-2024-11595

FiveCo RAP dissector infinite loop in Wireshark 4.4.0 to 4.4.1 and 4.2.0 to 4.2.8 allows denial of service via packet injection or crafted capture file...

7.8CVSS0.00268EPSS
Exploits0References2
AlpineLinux
AlpineLinux
added 2024/11/21 11:15 a.m.13 views

CVE-2024-11595

FiveCo RAP dissector infinite loop in Wireshark 4.4.0 to 4.4.1 and 4.2.0 to 4.2.8 allows denial of service via packet injection or crafted capture file...

7.8CVSS7.3AI score0.00268EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2024/11/21 11:15 a.m.2 views

CVE-2024-11595

FiveCo RAP dissector infinite loop in Wireshark 4.4.0 to 4.4.1 and 4.2.0 to 4.2.8 allows denial of service via packet injection or crafted capture file...

7.8CVSS6.7AI score0.00268EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2024/11/21 11:15 a.m.24 views

CVE-2024-10403

Brocade Fabric OS versions before 8.2.3e2, versions 9.0.0 through 9.2.0c, and 9.2.1 through 9.2.1a can capture the SFTP/FTP server password used for a firmware download operation initiated by SANnav or through WebEM in a weblinker core dump that is later captured via supportsave...

7.5CVSS0.00644EPSS
Exploits0References1
OSV
OSV
added 2024/11/21 11:15 a.m.3 views

UBUNTU-CVE-2024-11595

FiveCo RAP dissector infinite loop in Wireshark 4.4.0 to 4.4.1 and 4.2.0 to 4.2.8 allows denial of service via packet injection or crafted capture file...

7.8CVSS5.8AI score0.00268EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/11/21 9:30 a.m.14 views

CVE-2024-11596 Buffer Over-read in Wireshark

ECMP dissector crash in Wireshark 4.4.0 to 4.4.1 and 4.2.0 to 4.2.8 allows denial of service via packet injection or crafted capture file...

7.8CVSS0.00299EPSS
Exploits1References2
CVE
CVE
added 2024/11/21 9:30 a.m.98 views

CVE-2024-11596

CVE-2024-11596 : Wireshark ECMP dissector crash causes a Denial of Service when processing certain packets or crafted captures. Affected versions include 4.4.0–4.4.1 and 4.2.0–4.2.8. The underlying issue is a crash in the ECMP dissector, leading to potential DoS via packet injection or crafted ca...

7.8CVSS7.5AI score0.00299EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/11/21 9:30 a.m.19 views

CVE-2024-11596 Buffer Over-read in Wireshark

ECMP dissector crash in Wireshark 4.4.0 to 4.4.1 and 4.2.0 to 4.2.8 allows denial of service via packet injection or crafted capture file...

7.8CVSS7.7AI score0.00299EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/11/21 9:30 a.m.25 views

CVE-2024-11595 Loop with Unreachable Exit Condition ('Infinite Loop') in Wireshark

FiveCo RAP dissector infinite loop in Wireshark 4.4.0 to 4.4.1 and 4.2.0 to 4.2.8 allows denial of service via packet injection or crafted capture file...

7.8CVSS0.00268EPSS
Exploits0References2
CVE
CVE
added 2024/11/21 9:30 a.m.101 views

CVE-2024-11595

Wireshark vulnerability CVE-2024-11595: FiveCo RAP dissector may enter an infinite loop on packets in Wireshark versions 4.4.0–4.4.1 and 4.2.0–4.2.8, allowing denial of service via crafted captures or packet injections. Connected sources confirm the affected ranges and the FiveCo RAP issue as the...

7.8CVSS7.5AI score0.00268EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/11/21 5:44 a.m.25 views

CVE-2024-10403 SFTP/FTP password could be captured in plain text in Supportsave generated from SANnav

Brocade Fabric OS versions before 8.2.3e2, versions 9.0.0 through 9.2.0c, and 9.2.1 through 9.2.1a can capture the SFTP/FTP server password used for a firmware download operation initiated by SANnav or through WebEM in a weblinker core dump that is later captured via supportsave...

5.9CVSS0.00644EPSS
Exploits0References1
CVE
CVE
added 2024/11/21 5:44 a.m.77 views

CVE-2024-10403

CVE-2024-10403 affects Brocade Fabric OS: versions prior to 8.2.3e2, 9.0.0–9.2.0c, and 9.2.1–9.2.1a may capture the SFTP/FTP server password used for firmware downloads when SANnav or WebEM triggers a weblinker core dump later uploaded via SupportSave. Root cause: sensitive credentials stored in ...

7.5CVSS6.9AI score0.00644EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/11/21 12:0 a.m.3 views

Broadcom Fabric OS 安全漏洞

Broadcom Fabric OS FOS is a set of embedded operating systems used in devices such as switches and routers from Broadcom, USA. A security vulnerability exists in Broadcom Fabric OS versions prior to 8.2.3e2, 9.0.0 through 9.2.0c, and 9.2.1 through 9.2.1a, which stems from the ability to capture...

7.5CVSS6.7AI score0.00644EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/11/21 12:0 a.m.1 views

Wireshark 安全漏洞

Wireshark is a very popular network packet analyzer that intercepts various network packets and displays packet details. A denial of service vulnerability exists in Wireshark. The vulnerability is due to a crash in the ECMP unpacker when processing specific packets or carefully constructed captur...

7.8CVSS6.7AI score0.00299EPSS
Exploits1References2
The Hacker News
The Hacker News
added 2024/11/19 2:0 p.m.7 views

Hackers Hijack Unsecured Jupyter Notebooks to Stream Illegal Sports Broadcasts

Malicious actors are exploiting misconfigured JupyterLab and Jupyter Notebooks to conduct stream ripping and enable sports piracy using live streaming capture tools. The attacks involve the hijack of unauthenticated Jupyter Notebooks to establish initial access, and perform a series of actions...

7.4AI score
Exploits0
SUSE CVE
SUSE CVE
added 2024/11/19 3:49 a.m.3 views

SUSE CVE-2024-50288

In the Linux kernel, the following vulnerability has been resolved: media: vivid: fix buffer overwrite when using 32 buffers The maximum number of buffers that can be requested was increased to 64 for the video capture queue. But video capture used a mustblank array that was still sized for 32...

5.5CVSS7.9AI score0.00186EPSS
Exploits0References3
Rows per page
Query Builder