PT-2022-4748 · Linux +7 · Linux Kernel +7

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A flaw was found in the sctp make strreset req function in net/sctp/sm make chunk.c in the SCTP network protocol. This issue is related to an attempt to use more buffer than is...

Siemens Sinumerik 808D 缓冲区错误漏洞

SINUMERIK CNCs provide automation solutions for shop floor, workshop and large volume production environments. a denial of service vulnerability exists in Siemens SINUMERIK Controllers. the vulnerability stems from the fact that the affected device fails to properly handle certain specially craft...

PT-2021-4649 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to a denial-of-service vulnerability in the implementation of the TCP/IP protocol in Microsoft Windows operating systems, caused by insufficient input validation. This...

Digi RealPort 安全漏洞

Digi RealPort is a proprietary Serial-over-LAN encapsulation protocol. It provides virtual connectivity to serial devices anywhere on the network by encapsulating ICS protocol data in a TCP-based protocol.A security vulnerability exists in Digi RealPort that could be exploited by an attacker to...

Design/Logic Flaw

A vulnerability in the WLAN Control Protocol WCP implementation for Cisco Aironet Access Point AP software could allow an unauthenticated, adjacent attacker to cause a reload of an affected device, resulting in a denial of service DoS condition. This vulnerability is due to incorrect error handli...

CVE-2021-34740

Cisco Aironet Access Point software is affected by CVE-2021-34740, a WLAN Control Protocol (WCP) packet buffer leak DoS. An unauthenticated, adjacent attacker can send crafted 802.11 frames to an AP interface to trigger buffer leaks, leading to buffer allocation failures and a device reload. Root...

CVE-2021-34740 Cisco Aironet Access Points WLAN Control Protocol Packet Buffer Leak Denial of Service Vulnerability

A vulnerability in the WLAN Control Protocol WCP implementation for Cisco Aironet Access Point AP software could allow an unauthenticated, adjacent attacker to cause a reload of an affected device, resulting in a denial of service DoS condition. This vulnerability is due to incorrect error handli...

CVE-2021-34740 Cisco Aironet Access Points WLAN Control Protocol Packet Buffer Leak Denial of Service Vulnerability

A vulnerability in the WLAN Control Protocol WCP implementation for Cisco Aironet Access Point AP software could allow an unauthenticated, adjacent attacker to cause a reload of an affected device, resulting in a denial of service DoS condition. This vulnerability is due to incorrect error handli...

Cisco Aironet Access Points WLAN Control Protocol Packet Buffer Leak Denial of Service Vulnerability

A vulnerability in the WLAN Control Protocol WCP implementation for Cisco Aironet Access Point AP software could allow an unauthenticated, adjacent attacker to cause a reload of an affected device, resulting in a denial of service DoS condition. This vulnerability is due to incorrect error handli...

Cisco Aironet Access Points 缓冲区错误漏洞

Cisco Aironet Access Points aps is a network access point device from Cisco. A buffer error vulnerability exists in Cisco Aironet Access Points, which stems from an improper implementation of the product's WLAN Control Protocol WCP that prevents the proper handling of unexpected 802.11 data. An...

多款 Cisco 产品资源管理错误漏洞

Cisco IOS is a suite of operating systems developed for its network devices.IOS XE is a suite of operating systems developed for its network devices.SD-WAN Software is one of the suites of software-defined WAN software.Wire is a chat software. The software supports Web, WindowsiOS, Android, and O...

多款 Cisco 产品资源管理错误漏洞

Cisco IOS is a suite of operating systems developed for its network devices.IOS XE is a suite of operating systems developed for its network devices.SD-WAN Software is one of the suites of software-defined WAN software.Wire is a chat software. The software supports Web, WindowsiOS, Android, and O...

The vulnerability of the TCP protocol implementation in NicheLite and InterNiche TCP/IP implementations allows a attacker to cause service failures.

The vulnerability of the TCP protocol implementation in NicheLite and InterNiche protocols is related to an error in exception handling. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

The vulnerability of TCP/IP NicheLite and InterNiche, related to improper handling of exceptional states, allows attackers to trigger a service failure.

The vulnerability of TCP/IP NicheLite and InterNiche relates to improper handling of exceptional states during HTTP requests processing. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel SCTP, where an attacker may be able to kill an existing SCTP association with an invalid block if the attacker knows the IP...

PT-2021-7751 · Linux +9 · Linux +9

Name of the Vulnerable Software and Affected Versions: Linux affected versions not specified Description: A flaw was found in the Linux SCTP stack, allowing a blind attacker to kill an existing SCTP association through invalid chunks if the attacker knows the IP-addresses and port numbers being...

CVE-2021-1523

A vulnerability in Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure ACI Mode could allow an unauthenticated, remote attacker to cause a queue wedge on a leaf switch, which could result in critical control plane traffic to the device being dropped. This could result in...

IEC104 代码问题漏洞

IEC104 is an international standard of the International Electrotechnical Commission IEC standards organization widely used in the electric power, urban rail transit and other industries. A code issue vulnerability exists in IEC104 v1.0, which can be exploited by an attacker to cause a denial of...

The vulnerability of the CmpGateway component in the Codesys V3 Runtime System software suite allows a intruder to trigger a service failure.

The vulnerability of the CmpGateway component in the Codesys V3 Runtime System software suite is related to pointer assignment errors. Exploiting this vulnerability could allow a malicious actor to trigger a service failure using a specially crafted TCP packet...

The vulnerability of the implementation of TCP/IP protocols in the Hyper-V virtualization system in the Windows operating system allows a perpetrator to execute arbitrary code.

The vulnerability of the TCP/IP protocol implementation in the Hyper-V virtualization system in the Windows operating system is related to errors in packet processing. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...