Lucene search
K

2561 matches found

RedhatCVE
RedhatCVE
added 2026/05/04 9:53 a.m.11 views

CVE-2026-6535

A flaw was found in Wireshark's dissection engine. A remote attacker could exploit this vulnerability by sending a specially crafted packet. This could trigger a zlib decompression crash, leading to a denial of service and making the application unresponsive or causing it to terminate unexpectedl...

6.5CVSS5.8AI score0.00141EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2026/05/04 9:49 a.m.13 views

CVE-2026-6537

A flaw was found in Wireshark. A remote attacker could exploit a vulnerability in the ZigBee protocol dissector by crafting a malicious packet. This could lead to a crash of the Wireshark application, resulting in a denial of service DoS for the user. Mitigation To mitigate this issue, users can...

6.5CVSS5.8AI score0.0018EPSS
Exploits1References5
CVE
CVE
added 2026/05/01 12:0 a.m.13 views

CVE-2025-63547

CVE-2025-63547 concerns Eprosima Micro-XRCE-DDS Agent v3.0.1. The issue allows a remote attacker to cause a denial of service by sending a crafted packet that targets the MTU length field. Affected software is the Micro-XRCE-DDS Agent (v3.0.1) developed by Eprosima; the root cause and exact vulne...

7.5CVSS5.8AI score0.00358EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/01 12:0 a.m.33 views

CVE-2025-63547

An issue in Eprosima Micro-XREC-DDS Agent v.3.0.1 allows a remote attacker to cause a denial of service via a crafted packet to the MTU length field...

0.00358EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/01 12:0 a.m.40 views

CVE-2025-63548

An issue in Eprosima Micro-XREC-DDS Agent v.3.0.1 allows a remote attacker to cause a denial of service via a packet specially crafted to bear a non-valid value in any Boolean field...

0.00332EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/01 12:0 a.m.9 views

PT-2026-36524

Name of the Vulnerable Software and Affected Versions Eprosima Micro-XREC-DDS Agent version 3.0.1 Description A remote attacker can cause a denial of service by sending a crafted packet to the MTU length field. Recommendations At the moment, there is no information about a newer version that...

7.5CVSS5.8AI score0.00358EPSS
Exploits0References7
CVE
CVE
added 2026/05/01 12:0 a.m.15 views

CVE-2025-63548

The CVE-2025-63548 entry concerns Eprosima Micro-XREC-DDS Agent v3.0.1. The issue allows a remote attacker to cause a denial of service by sending a packet with a non-valid value in any Boolean field. The NVD metrics indicate a Network attack vector, low complexity, no privileges, and an Availabi...

7.5CVSS5.8AI score0.00332EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/05/01 12:0 a.m.14 views

Wireshark 2.0.x < 2.0.4 Multiple Vulnerabilities (macOS)

The version of Wireshark installed on the remote macOS / Mac OS X host is prior to 2.0.4. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-2.0.4 advisory. - epan/dissectors/packet-pktap.c in the Ethernet dissector in Wireshark 2.x before 2.0.4 mishandles the...

7.5CVSS7.2AI score0.02776EPSS
Exploits1References27
NVD
NVD
added 2026/04/29 7:16 p.m.5 views

CVE-2026-7424

Integer underflow in the DHCPv6 sub-option parser in FreeRTOS-Plus-TCP before V4.4.1 and V4.2.6 allows an adjacent network actor to corrupt the device's IPv6 address assignment, DNS configuration, and lease times, and to cause a denial of service permanent IP task freeze requiring hardware reset ...

8.1CVSS0.00223EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/04/21 6:0 p.m.38 views

CVE-2026-40613 Coturn: Misaligned Memory Access in coturn STUN Attribute Parser (Remote DoS on ARM64)

Coturn is a free open source implementation of TURN and STUN Server. Prior to 4.10.0, the STUN/TURN attribute parsing functions in coturn perform unsafe pointer casts from uint8t to uint16t without alignment checks. When processing a crafted STUN message with odd-aligned attribute boundaries, thi...

7.5CVSS0.01123EPSS
Exploits1References1
EUVD
EUVD
added 2026/04/21 6:0 p.m.7 views

EUVD-2026-24228

Coturn is a free open source implementation of TURN and STUN Server. Prior to 4.10.0, the STUN/TURN attribute parsing functions in coturn perform unsafe pointer casts from uint8t to uint16t without alignment checks. When processing a crafted STUN message with odd-aligned attribute boundaries, thi...

7.5CVSS5.8AI score0.01123EPSS
Exploits1References1
OSV
OSV
added 2026/04/21 12:4 a.m.3 views

JLSEC-2026-173

In OpenLDAP through 2.4.57 and 2.5.x through 2.5.1alpha, an assertion failure in slapd can occur in the issuerAndThisUpdateCheck function via a crafted packet, resulting in a denial of service daemon exit via a short timestamp. This is related to schemainit.c and checkTime...

7.5CVSS7.1AI score0.64147EPSS
Exploits1References16
EUVD
EUVD
added 2026/04/20 6:31 a.m.6 views

EUVD-2026-23753

SD-330AC and AMC Manager provided by silex technology, Inc. contain an issue with a sensitive information in resource not removed before reuse. An attacker may login to the device without knowing the password by sending a crafted packet...

7.1CVSS5.8AI score0.0026EPSS
Exploits0References4
NVD
NVD
added 2026/04/20 4:16 a.m.7 views

CVE-2026-32960

SD-330AC and AMC Manager provided by silex technology, Inc. contain an issue with a sensitive information in resource not removed before reuse. An attacker may login to the device without knowing the password by sending a crafted packet...

7.1CVSS0.0026EPSS
Exploits0References3
CVE
CVE
added 2026/04/20 3:18 a.m.29 views

CVE-2026-32960

CVE-2026-32960 affects SD-330AC and AMC Manager by silex technology, Inc. Affected: SD-330AC and AMC Manager. Issue: sensitive information remains in a resource not removed before reuse, enabling an attacker to login without a password by sending a crafted packet. Impact (per provided metrics): C...

7.1CVSS5.8AI score0.0026EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/04/20 3:18 a.m.33 views

CVE-2026-32960

SD-330AC and AMC Manager provided by silex technology, Inc. contain an issue with a sensitive information in resource not removed before reuse. An attacker may login to the device without knowing the password by sending a crafted packet...

7.1CVSS0.0026EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/04/20 12:0 a.m.10 views

PT-2026-33698

SD-330AC and AMC Manager provided by silex technology, Inc. contain an issue with a sensitive information in resource not removed before reuse. An attacker may login to the device without knowing the password by sending a crafted packet...

7.1CVSS5.8AI score0.0026EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2026/04/17 6:52 p.m.6 views

CVE-2026-34232

Firebird is an open-source relational database management system. In versions prior to 5.0.4, 4.0.7 and 3.0.14, the xdrstatusvector function does not handle the iscargcstring type when decoding an opresponse packet, causing a server crash when one is encountered in the status vector. An...

7.5CVSS5.3AI score0.00466EPSS
Exploits1
CVE
CVE
added 2026/04/17 6:48 p.m.11 views

CVE-2026-33337

Firebird vulnerability CVE-2026-33337 affects the xdr_datum() deserialization path when processing slice packets. In versions prior to 5.0.4, 4.0.7 and 3.0.14, a cstring length is not validated against the slice descriptor bounds, allowing a crafted slice packet to overflow the allocated buffer. ...

7.5CVSS5.9AI score0.00543EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2026/04/17 6:5 p.m.33 views

CVE-2026-28212 Firebird has potential server crash via null pointer dereference when processing op_slice packet

Firebird is an open-source relational database management system. In versions prior to 6.0.0, 5.0.4, 4.0.7 and 3.0.14, when processing an opslice network packet, the server passes an unprepared structure containing a null pointer to the SDLinfo function, resulting in a null pointer dereference an...

7.5CVSS0.00503EPSS
Exploits1References4
Rows per page
Query Builder