5112 matches found
CVE-2024-11596
ECMP dissector crash in Wireshark 4.4.0 to 4.4.1 and 4.2.0 to 4.2.8 allows denial of service via packet injection or crafted capture file...
CVE-2024-11596
ECMP dissector crash in Wireshark 4.4.0 to 4.4.1 and 4.2.0 to 4.2.8 allows denial of service via packet injection or crafted capture file...
CVE-2024-11596
ECMP dissector crash in Wireshark 4.4.0 to 4.4.1 and 4.2.0 to 4.2.8 allows denial of service via packet injection or crafted capture file...
DEBIAN-CVE-2024-11596
ECMP dissector crash in Wireshark 4.4.0 to 4.4.1 and 4.2.0 to 4.2.8 allows denial of service via packet injection or crafted capture file...
CVE-2024-11595
FiveCo RAP dissector infinite loop in Wireshark 4.4.0 to 4.4.1 and 4.2.0 to 4.2.8 allows denial of service via packet injection or crafted capture file...
CVE-2024-11595
FiveCo RAP dissector infinite loop in Wireshark 4.4.0 to 4.4.1 and 4.2.0 to 4.2.8 allows denial of service via packet injection or crafted capture file...
CVE-2024-11595
FiveCo RAP dissector infinite loop in Wireshark 4.4.0 to 4.4.1 and 4.2.0 to 4.2.8 allows denial of service via packet injection or crafted capture file...
CVE-2024-10403
Brocade Fabric OS versions before 8.2.3e2, versions 9.0.0 through 9.2.0c, and 9.2.1 through 9.2.1a can capture the SFTP/FTP server password used for a firmware download operation initiated by SANnav or through WebEM in a weblinker core dump that is later captured via supportsave...
UBUNTU-CVE-2024-11595
FiveCo RAP dissector infinite loop in Wireshark 4.4.0 to 4.4.1 and 4.2.0 to 4.2.8 allows denial of service via packet injection or crafted capture file...
CVE-2024-11596 Buffer Over-read in Wireshark
ECMP dissector crash in Wireshark 4.4.0 to 4.4.1 and 4.2.0 to 4.2.8 allows denial of service via packet injection or crafted capture file...
CVE-2024-11596
CVE-2024-11596 : Wireshark ECMP dissector crash causes a Denial of Service when processing certain packets or crafted captures. Affected versions include 4.4.0–4.4.1 and 4.2.0–4.2.8. The underlying issue is a crash in the ECMP dissector, leading to potential DoS via packet injection or crafted ca...
CVE-2024-11596 Buffer Over-read in Wireshark
ECMP dissector crash in Wireshark 4.4.0 to 4.4.1 and 4.2.0 to 4.2.8 allows denial of service via packet injection or crafted capture file...
CVE-2024-11595 Loop with Unreachable Exit Condition ('Infinite Loop') in Wireshark
FiveCo RAP dissector infinite loop in Wireshark 4.4.0 to 4.4.1 and 4.2.0 to 4.2.8 allows denial of service via packet injection or crafted capture file...
CVE-2024-11595
Wireshark vulnerability CVE-2024-11595: FiveCo RAP dissector may enter an infinite loop on packets in Wireshark versions 4.4.0–4.4.1 and 4.2.0–4.2.8, allowing denial of service via crafted captures or packet injections. Connected sources confirm the affected ranges and the FiveCo RAP issue as the...
CVE-2024-10403 SFTP/FTP password could be captured in plain text in Supportsave generated from SANnav
Brocade Fabric OS versions before 8.2.3e2, versions 9.0.0 through 9.2.0c, and 9.2.1 through 9.2.1a can capture the SFTP/FTP server password used for a firmware download operation initiated by SANnav or through WebEM in a weblinker core dump that is later captured via supportsave...
CVE-2024-10403
CVE-2024-10403 affects Brocade Fabric OS: versions prior to 8.2.3e2, 9.0.0–9.2.0c, and 9.2.1–9.2.1a may capture the SFTP/FTP server password used for firmware downloads when SANnav or WebEM triggers a weblinker core dump later uploaded via SupportSave. Root cause: sensitive credentials stored in ...
Broadcom Fabric OS 安全漏洞
Broadcom Fabric OS FOS is a set of embedded operating systems used in devices such as switches and routers from Broadcom, USA. A security vulnerability exists in Broadcom Fabric OS versions prior to 8.2.3e2, 9.0.0 through 9.2.0c, and 9.2.1 through 9.2.1a, which stems from the ability to capture...
Wireshark 安全漏洞
Wireshark is a very popular network packet analyzer that intercepts various network packets and displays packet details. A denial of service vulnerability exists in Wireshark. The vulnerability is due to a crash in the ECMP unpacker when processing specific packets or carefully constructed captur...
Hackers Hijack Unsecured Jupyter Notebooks to Stream Illegal Sports Broadcasts
Malicious actors are exploiting misconfigured JupyterLab and Jupyter Notebooks to conduct stream ripping and enable sports piracy using live streaming capture tools. The attacks involve the hijack of unauthenticated Jupyter Notebooks to establish initial access, and perform a series of actions...
SUSE CVE-2024-50288
In the Linux kernel, the following vulnerability has been resolved: media: vivid: fix buffer overwrite when using 32 buffers The maximum number of buffers that can be requested was increased to 64 for the video capture queue. But video capture used a mustblank array that was still sized for 32...