Lucene search
K

116 matches found

OSV
OSV
added 2024/02/29 1:43 a.m.4 views

CVE-2024-20294

A vulnerability in the Link Layer Discovery Protocol LLDP feature of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to improper handling of specific fields i...

6.6CVSS5.8AI score0.00318EPSS
Exploits0References1
NVD
NVD
added 2023/08/14 5:15 p.m.21 views

CVE-2023-28768

Improper frame handling in the Zyxel XGS2220-30 firmware version V4.80ABXN.1, XMG1930-30 firmware version V4.80ACAR.1, and XS1930-10 firmware version V4.80ABQE.1 could allow an unauthenticated LAN-based attacker to cause denial-of-service DoS conditions by sending crafted frames to an affected...

6.5CVSS6.5AI score0.0027EPSS
Exploits0References1
Prion
Prion
added 2023/08/14 5:15 p.m.12 views

Input validation

Improper frame handling in the Zyxel XGS2220-30 firmware version V4.80ABXN.1, XMG1930-30 firmware version V4.80ACAR.1, and XS1930-10 firmware version V4.80ABQE.1 could allow an unauthenticated LAN-based attacker to cause denial-of-service DoS conditions by sending crafted frames to an affected...

3.3CVSS6.5AI score0.0027EPSS
Exploits0References1Affected Software11
Cvelist
Cvelist
added 2023/08/14 4:10 p.m.20 views

CVE-2023-28768

Improper frame handling in the Zyxel XGS2220-30 firmware version V4.80ABXN.1, XMG1930-30 firmware version V4.80ACAR.1, and XS1930-10 firmware version V4.80ABQE.1 could allow an unauthenticated LAN-based attacker to cause denial-of-service DoS conditions by sending crafted frames to an affected...

6.5CVSS6.7AI score0.0027EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/08/14 12:0 a.m.4 views

PT-2023-4399 · Zyxel · Zyxel Xs1930-10 +2

Name of the Vulnerable Software and Affected Versions: Zyxel XGS2220-30 firmware version V4.80ABXN.1 Zyxel XMG1930-30 firmware version V4.80ACAR.1 Zyxel XS1930-10 firmware version V4.80ABQE.1 Description: The issue is related to improper frame handling in the firmware of certain Zyxel switches,...

6.5CVSS6.4AI score0.0027EPSS
Exploits0References7
CVE
CVE
added 2023/08/14 12:0 a.m.58 views

CVE-2023-29468

The vulnerability CVE-2023-29468 affects TI WiLink WL18xx MCP driver in WILINK8-WIFI-MCP8 versions 8.5_SP3 and earlier. The root cause is that the driver does not limit the number of information elements (IEs) of type XCC_EXT_1_IE_ID or XCC_EXT_2_IE_ID parsed in a management frame, allowing a spe...

9.8CVSS9.8AI score0.10081EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2023/05/30 4:50 p.m.3 views

CVE-2023-33974 RIOT-OS vulnerable to Race Condition in SFR Timeout

RIOT-OS, an operating system for Internet of Things IoT devices, contains a network stack with the ability to process 6LoWPAN frames. In versions 2023.01 and prior, an attacker can send multiple crafted frames to the device to trigger a race condition. The race condition invalidates assumptions...

7.5CVSS6.7AI score0.00707EPSS
Exploits0References10
CNNVD
CNNVD
added 2023/04/24 12:0 a.m.5 views

RIOT RIOT-OS 数字错误漏洞

RIOT RIOT-OS is a set of operating systems used in the Internet of Things IoT space. A numeric error vulnerability exists in RIOT RIOT-OS versions prior to 2022.10, which can be exploited by an attacker to allow a device to send crafted frames that result in a large number of out-of-bounds writes...

7.5CVSS7.4AI score0.00859EPSS
Exploits0References4
OSV
OSV
added 2023/03/23 5:15 p.m.4 views

CVE-2023-20112

A vulnerability in Cisco access point AP software could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to insufficient validation of certain parameters within 802.11 frames. An attacker could exploit this...

6.5CVSS5.8AI score
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2023/03/22 4:0 p.m.2 views

CVE-2023-20112

A vulnerability in Cisco access point AP software could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to insufficient validation of certain parameters within 802.11 frames. An attacker could exploit this...

7.4CVSS6.6AI score0.00303EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 6:11 a.m.3 views

SUSE CVE-2007-3763

The IAX2 channel driver chaniax2 in Asterisk before 1.2.22 and 1.4.x before 1.4.8, Business Edition before B.2.2.1, AsteriskNOW before beta7, Appliance Developer Kit before 0.5.0, and s800i before 1.0.2 allows remote attackers to cause a denial of service crash via a crafted 1 LAGRQ or 2 LAGRP...

5CVSS6.7AI score0.2656EPSS
Exploits2References5
BDU FSTEC
BDU FSTEC
added 2022/05/26 12:0 a.m.6 views

The vulnerability of the WPA2 algorithm implementation in TP-Link Archer AX10 router software allows a hacker to disable the connected client from the network, due to security configuration errors.

The vulnerability of the WPA2 algorithm implemented in TP-Link Archer AX10 router software is related to security configuration errors. Exploiting this vulnerability can allow a malicious actor to remotely disable clients connected to the network by sending specially crafted authentication frames...

7.8CVSS7.2AI score0.02532EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2022/03/12 10:15 p.m.2 views

UBUNTU-CVE-2022-26966

An issue was discovered in the Linux kernel before 5.16.12. drivers/net/usb/sr9700.c allows attackers to obtain sensitive information from heap memory via crafted frame lengths from a device...

5.5CVSS6.7AI score0.00338EPSS
Exploits0References9
OSV
OSV
added 2022/03/10 5:44 p.m.10 views

CVE-2022-0618

A program using swift-nio-http2 is vulnerable to a denial of service attack, caused by a network peer sending a specially crafted HTTP/2 frame. This vulnerability is caused by a logical error when parsing a HTTP/2 HEADERS or HTTP/2 PUSHPROMISE frame where the frame contains padding information...

7.5CVSS6.8AI score
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2021/10/13 12:0 a.m.6 views

The vulnerability of the channel-level implementation of Cisco IOS XE allows a attacker to trigger a service failure.

The vulnerability of the channel-level implementation of Cisco IOS XE is related to resource management errors. Exploiting this vulnerability can allow an attacker to cause a service failure using specially crafted channel-level frames...

7.4CVSS7.2AI score0.00349EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2021/09/23 3:15 a.m.3 views

CVE-2021-34703

A vulnerability in the Link Layer Discovery Protocol LLDP message parser of Cisco IOS Software and Cisco IOS XE Software could allow an attacker to trigger a reload of an affected device, resulting in a denial of service DoS condition. This vulnerability is due to improper initialization of a...

6.5CVSS5.8AI score0.01149EPSS
Exploits0References1
OSV
OSV
added 2021/07/15 8:15 p.m.5 views

CVE-2021-0290

Improper Handling of Exceptional Conditions in Ethernet interface frame processing of Juniper Networks Junos OS allows an attacker to send specially crafted frames over the local Ethernet segment, causing the interface to go into a down state, resulting in a Denial of Service DoS condition. The...

6.5CVSS7.1AI score0.00381EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2021/07/14 12:0 a.m.31 views

Juniper Junos OS Vulnerability (JSA11192)

The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA11192 advisory. - Improper Handling of Exceptional Conditions in Ethernet interface frame processing of Juniper Networks Junos OS allows an attacker to send specially crafted frames over th...

6.5CVSS6.9AI score0.00381EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2020/05/29 12:0 a.m.8 views

The vulnerability of the GAS frame processing function in the 802.11 protocol of Cisco Wireless LAN Controllers allows a attacker to induce a service failure.

The vulnerability of the Generic Advertising Service GAS frame processing function in Cisco Wireless LAN Controllers based on the 802.11 protocol is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow an attacker to cause a service failure ...

8.6CVSS7.8AI score0.01274EPSS
Exploits0References2Affected Software1
RedHat Linux
RedHat Linux
added 2020/03/17 10:39 a.m.6 views

kernel: rtl_p2p_noa_ie in drivers/net/wireless/realtek/rtlwifi/ps.c in the Linux kernel lacks a certain upper-bound check, leading to a buffer overflow

A flaw was found in the Linux kernel's implementation of the RealTek wireless drivers WiFi-direct or WiFi peer-to-peer driver implementation. When the RealTek wireless networking hardware is configured to accept WiFi-Direct or WiFi P2P connections, an attacker within the wireless network...

8.8CVSS6.7AI score0.03017EPSS
Exploits0References6
Rows per page
Query Builder