Lucene search
K

219892 matches found

ATTACKERKB
ATTACKERKB
added 2026/05/01 2:42 p.m.4 views

CVE-2026-43505

An issue was discovered in Prosody before 0.12.6 and 1.0.0 through 13.0.0 before 13.0.5, when modproxy65 is enabled. Because modproxy65 mishandles access control in the activation scenario, relaying of unauthenticated traffic can occur...

6.5CVSS5.8AI score0.00204EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/01 2:42 p.m.5 views

CVE-2026-43505

An issue was discovered in Prosody before 0.12.6 and 1.0.0 through 13.0.0 before 13.0.5, when modproxy65 is enabled. Because modproxy65 mishandles access control in the activation scenario, relaying of unauthenticated traffic can occur...

6.5CVSS5.8AI score0.00204EPSS
Exploits0References2
CVE
CVE
added 2026/05/01 2:42 p.m.18 views

CVE-2026-43505

Prosody (with mod_proxy65 enabled) is affected by CVE-2026-43505. In versions before 0.12.6 and 1.0.0 up to 13.0.0 before 13.0.5, mod_proxy65 mishandles access control in the activation scenario, allowing relaying of unauthenticated traffic. Impact is limited to unauthorized relaying; no exploita...

6.5CVSS5.8AI score0.00204EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/05/01 2:42 p.m.30 views

CVE-2026-43505

An issue was discovered in Prosody before 0.12.6 and 1.0.0 through 13.0.0 before 13.0.5, when modproxy65 is enabled. Because modproxy65 mishandles access control in the activation scenario, relaying of unauthenticated traffic can occur...

6.5CVSS0.00204EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/01 2:40 p.m.4 views

CVE-2026-43504

An issue was discovered in Prosody before 0.12.6 and 1.0.0 through 13.0.0 before 13.0.5, when modproxy65 is enabled. Because modproxy65 mishandles access control in a paused scenario, relaying of unauthenticated traffic can occur...

6.5CVSS5.8AI score0.00256EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/01 2:40 p.m.31 views

CVE-2026-43504

An issue was discovered in Prosody before 0.12.6 and 1.0.0 through 13.0.0 before 13.0.5, when modproxy65 is enabled. Because modproxy65 mishandles access control in a paused scenario, relaying of unauthenticated traffic can occur...

6.5CVSS0.00256EPSS
Exploits0References2
CVE
CVE
added 2026/05/01 2:40 p.m.23 views

CVE-2026-43504

Prosody has a vulnerability CVE-2026-43504 in which the mod_proxy65 module mishandles access control in a paused state, allowing relaying of unauthenticated traffic. Affected versions are Prosody before 0.12.6 and 1.0.0 up to 13.0.0, with fixes in 13.0.5 and later. The issue is due to incorrect a...

6.5CVSS5.8AI score0.00256EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/01 2:40 p.m.4 views

CVE-2026-43504

An issue was discovered in Prosody before 0.12.6 and 1.0.0 through 13.0.0 before 13.0.5, when modproxy65 is enabled. Because modproxy65 mishandles access control in a paused scenario, relaying of unauthenticated traffic can occur...

6.5CVSS5.8AI score0.00256EPSS
Exploits0References3Affected Software1
AlpineLinux
AlpineLinux
added 2026/05/01 2:40 p.m.7 views

CVE-2026-43504

An issue was discovered in Prosody before 0.12.6 and 1.0.0 through 13.0.0 before 13.0.5, when modproxy65 is enabled. Because modproxy65 mishandles access control in a paused scenario, relaying of unauthenticated traffic can occur...

6.5CVSS5.8AI score0.00256EPSS
Exploits0
NVD
NVD
added 2026/05/01 2:16 p.m.6 views

CVE-2026-31712

In the Linux kernel, the following vulnerability has been resolved: ksmbd: require minimum ACE size in smbcheckpermdacl Both ACE-walk loops in smbcheckpermdacl only guard against an under-sized remaining buffer, not against an ACE whose declared ace-size is smaller than the struct it claims to...

8.3CVSS0.00315EPSS
Exploits0References7
NVD
NVD
added 2026/05/01 2:16 p.m.7 views

CVE-2026-31710

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix dir separator in SMB1 UNIX mounts When calling cifsmountgettcon with SMB1 UNIX mounts, @cifssb-mntcifsflags needs to be read or updated only after calling resetcifsunixcaps, otherwise it might end up with missing...

5.5CVSS0.001EPSS
Exploits0References2
NVD
NVD
added 2026/05/01 2:16 p.m.4 views

CVE-2026-31709

In the Linux kernel, the following vulnerability has been resolved: smb: client: validate the whole DACL before rewriting it in cifsacl buildsecdesc and idmodetocifsacl derive a DACL pointer from a server-supplied dacloffset and then use the incoming ACL to rebuild the chmod/chown security...

8.8CVSS0.00259EPSS
Exploits0References19
Debian CVE
Debian CVE
added 2026/05/01 2:15 p.m.4 views

CVE-2026-43037

In the Linux kernel, the following vulnerability has been resolved: ip6tunnel: clear skb2-cb in ip4ip6err Oskar Kjos reported the following problem. ip4ip6err calls icmpsend on a cloned skb whose cb was written by the IPv6 receive path as struct inet6skbparm. icmpsend passes IPCBskb2 to...

9.8CVSS5.8AI score0.00563EPSS
Exploits0
Cvelist
Cvelist
added 2026/05/01 2:15 p.m.28 views

CVE-2026-43038 ipv6: icmp: clear skb2->cb[] in ip6_err_gen_icmpv6_unreach()

In the Linux kernel, the following vulnerability has been resolved: ipv6: icmp: clear skb2-cb in ip6errgenicmpv6unreach Sashiko AI-review observed: In ip6errgenicmpv6unreach, the skb is an outer IPv4 ICMP error packet where its cb contains an IPv4 inetskbparm. When skb is cloned into skb2 and...

9.8CVSS0.00255EPSS
Exploits0References8
Cvelist
Cvelist
added 2026/05/01 2:15 p.m.31 views

CVE-2026-43037 ip6_tunnel: clear skb2->cb[] in ip4ip6_err()

In the Linux kernel, the following vulnerability has been resolved: ip6tunnel: clear skb2-cb in ip4ip6err Oskar Kjos reported the following problem. ip4ip6err calls icmpsend on a cloned skb whose cb was written by the IPv6 receive path as struct inet6skbparm. icmpsend passes IPCBskb2 to...

9.8CVSS0.00563EPSS
Exploits0References8
CVE
CVE
added 2026/05/01 2:15 p.m.73 views

CVE-2026-43038

CVE-2026-43038 affects the Linux kernel IPv6 ICMP error path. A forged IPv4 ICMP error with CIPSO options could cause ip6_err_gen_icmpv6_unreach() to misinterpret an inner IPv4 inet_skb_parm as an IPv6 parameter, allowing an offset misreference (dsthao) that could enable out-of-bounds or memory a...

9.8CVSS5.8AI score0.00255EPSS
Exploits0References23Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/01 2:15 p.m.4 views

CVE-2026-43038

In the Linux kernel, the following vulnerability has been resolved: ipv6: icmp: clear skb2-cb in ip6errgenicmpv6unreach Sashiko AI-review observed: In ip6errgenicmpv6unreach, the skb is an outer IPv4 ICMP error packet where its cb contains an IPv4 inetskbparm. When skb is cloned into skb2 and...

5.7AI score0.00255EPSS
Exploits0References9Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/01 2:15 p.m.4 views

CVE-2026-43037

In the Linux kernel, the following vulnerability has been resolved: ip6tunnel: clear skb2-cb in ip4ip6err Oskar Kjos reported the following problem. ip4ip6err calls icmpsend on a cloned skb whose cb was written by the IPv6 receive path as struct inet6skbparm. icmpsend passes IPCBskb2 to...

5.8AI score0.00563EPSS
Exploits0References9Affected Software1
EUVD
EUVD
added 2026/05/01 2:15 p.m.5 views

EUVD-2026-26636

In the Linux kernel, the following vulnerability has been resolved: ip6tunnel: clear skb2-cb in ip4ip6err Oskar Kjos reported the following problem. ip4ip6err calls icmpsend on a cloned skb whose cb was written by the IPv6 receive path as struct inet6skbparm. icmpsend passes IPCBskb2 to...

5.8AI score0.00563EPSS
Exploits0References8
CVE
CVE
added 2026/05/01 2:15 p.m.68 views

CVE-2026-43037

CVE-2026-43037 affects the Linux kernel; vulnerability arises from ip4ip6_err() using a cloned skb where the IPv6 receive path writes cb[] as inet6_skb_parm, which is then misinterpreted as IPv4 inet_skb_parm by __ip_options_echo(), causing a potential data leak/compromise. The fix includes clear...

9.8CVSS5.8AI score0.00563EPSS
Exploits0References40Affected Software1
Rows per page
Query Builder