CVE-2021-1460

A vulnerability in the Cisco IOx Application Framework of Cisco 809 Industrial Integrated Services Routers Industrial ISRs, Cisco 829 Industrial ISRs, Cisco CGR 1000 Compute Module, and Cisco IC3000 Industrial Compute Gateway could allow an unauthenticated, remote attacker to cause a denial of...

Siemens SIMATIC MV400 安全漏洞

Siemens SIMATIC MV400 is an industrial device from Siemens Germany. It is used for optical identification. An unspecified vulnerability exists in the Siemens SIMATIC MV400 series TCP protocol stack. An attacker can exploit this vulnerability to terminate arbitrary TCP sessions...

Squid 缓冲区错误漏洞

Squid is a caching and forwarding HTTP web proxy. Squid suffers from a WCCP protocol data out-of-bounds read vulnerability. An attacker could exploit this vulnerability to obtain information...

PT-2024-11038 · Linux +4 · Linux Kernel +4

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability has been resolved in the Linux kernel related to the TCP QUEUE SEQ option. The issue was reported by Qingyu Li, who found a syzkaller bug that changes the RCV SEQ after...

CVE-2021-24074

Windows TCP/IP Remote Code Execution Vulnerability...

The vulnerability of the TCP/IP protocol implementation in Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the TCP/IP protocol implementation in Windows operating systems is related to the lack of protection for service data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

Multiple Embedded TCP/IP Security Feature Issue Vulnerability

Multiple Embedded TCP/IP is a highly efficient embedded stack developed using a verifiable process and in strict compliance with the MISRA coding standard. Multiple Embedded TCP/IP suffers from a security signature issue vulnerability that can be exploited by an attacker to spoof or interrupt TCP...

Multiple Embedded TCP/IP Security Feature Issue Vulnerability

Multiple Embedded TCP/IP is a highly efficient embedded stack developed using a verifiable process and in strict compliance with the MISRA coding standard. Multiple Embedded TCP/IP suffers from a security signature issue vulnerability that can be exploited by attackers to spoof or corrupt TCP...

Contiki Security Feature Issue Vulnerability

Contiki is an open source cross-platform operating system for IoT Internet of Things devices. Contiki version 4.5 suffers from a security signature issue vulnerability that allows attackers to spoof or corrupt TCP connections...

CVE-2020-28388

A vulnerability has been identified in APOGEE PXC Compact BACnet All versions V3.5.5, APOGEE PXC Compact P2 Ethernet All versions V2.8.20, APOGEE PXC Modular BACnet All versions V3.5.5, APOGEE PXC Modular P2 Ethernet All versions V2.8.20, Nucleus NET All versions V5.2, Nucleus ReadyStart V3 All...

PT-2021-1925 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to a lack of protection for service data in the implementation of the TCP/IP protocol in Windows operating systems. This allows a remote attacker to execute arbitrary...

Microsoft Windows TCP/IP component 安全漏洞

The Microsoft Windows operating system is a set of operating systems developed by Microsoft Corporation in the United States. A denial of service vulnerability exists in Microsoft Windows TCP/IP, which can be triggered by an attacker by sending multiple crafted IPv6 packets multiple IP packet...

Mozilla: Use-after-free write when handling a malicious COOKIE-ECHO SCTP chunk

Use after free in WebRTC in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to potentially exploit heap corruption via a crafted SCTP packet...

Duplicate numbering

Freyrscada IEC-60879-5-104 Server Simulator is a software from Freyrscada India for simulating communication between IEDs and RTUs over TCP. The software is written in C for all POSIX compliant operating systems and supports single server simulation with multiple workstations. "Obsolete" Do not u...

UBUNTU-CVE-2020-16044

Use after free in WebRTC in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to potentially exploit heap corruption via a crafted SCTP packet...

CVE-2020-27722

In BIG-IP APM versions 15.0.0-15.0.1.3, 14.1.0-14.1.3, and 13.1.0-13.1.3.4, under certain conditions, the VDI plugin does not observe plugin flow-control protocol causing excessive resource consumption...

Apache NuttX Buffer Overflow Vulnerability

Apache NuttX is a real-time embedded operating system from the Apache Software Foundation.TCP Transmission Control Protocol is a connection-oriented, reliable, byte-stream-based transport layer communication protocol defined by IETF RFC 793. TCP Transmission Control Protocol is a...

Apache NuttX 缓冲区错误漏洞

Apache NuttX is a real-time embedded operating system from the Apache Software Foundation.TCP Transmission Control Protocol is a connection-oriented, reliable, byte-stream-based transport layer communication protocol defined by IETF RFC 793. TCP Transmission Control Protocol is a...

Schneider Electric Easergy T300 访问控制错误漏洞

Easergy T300 is a new generation of intelligent terminals for distribution network automation, adhering to the design concepts of "modularity, flexibility, and application orientation", which can be widely used in medium-voltage distribution network management, fault location, isolation, and...

Denial of Service Vulnerability in CenturyStar Configuration Software

Century Star Configuration Software is an obstruction software launched by Beijing Century Changqiu Technology Co., Ltd. is a real-time human-machine interface utility program generator, consisting of the CSMaker development system and CSViewer runtime system, the CSMaker development system is th...