27 matches found
SAP BusinessObjects BI Platform 安全漏洞
SAP BusinessObjects BI Platform is a centralized suite provided by German company SAP for data reporting, visualization, and sharing. There is a security vulnerability in the SAP BusinessObjects BI Platform; this vulnerability can cause the Content Management Server to crash and restart, resultin...
CVE-2026-21912
A Time-of-check Time-of-use TOCTOU Race Condition vulnerability in the method to collect FPC Ethernet firmware statistics of Juniper Networks Junos OS on MX10k Series allows a local, low-privileged attacker executing the 'show system firmware' CLI command to cause an LC480 or LC2101 line card to...
CVE-2026-21906
An Improper Handling of Exceptional Conditions vulnerability in the packet forwarding engine PFE of Juniper Networks Junos OS on SRX Series allows an unauthenticated network-based attacker sending a specific ICMP packet through a GRE tunnel to cause the PFE to crash and restart. When PowerMode...
CVE-2026-0203 Junos OS: Receipt of a specifically malformed ICMP packet causes an FPC restart
An Improper Handling of Exceptional Conditions vulnerability in packet processing of Juniper Networks Junos OS allows an unauthenticated, network-adjacent attacker sending a specifically malformed ICMP packet to cause an FPC to crash and restart, resulting in a Denial of Service DoS. When an ICMP...
PT-2025-41439
Name of the Vulnerable Software and Affected Versions Juniper Networks Junos OS versions 23.4R2-S3 through 23.4R2-S5 Juniper Networks Junos OS versions 24.2R2 before 24.2R2-S1 Juniper Networks Junos OS versions 24.4 before 24.4R1-S3 and 24.4R2 Juniper Networks Junos OS Evolved versions...
EUVD-2013-0254
Malware in sbrugna...
CVE-2025-52984
A NULL Pointer Dereference vulnerability in the routing protocol daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, network-based attacker to cause impact to the availability of the device. When static route points to a reject next hop and a gNMI query is...
libreswan: IKEv1 default AH/ESP responder can crash and restart
A flaw was found in Libreswan, where it was identified to contain an assertion failure issue in the computeprotokeymat function. The vulnerability can be exploited when an IKEv1 connection is loaded with an AH/ESP default setting when no esp= line is present in the connection. This flaw allows an...
AZL-39927 CVE-2024-3652 affecting package libreswan for versions less than 4.14-2
The Libreswan Project was notified of an issue causing libreswan to restart when using IKEv1 without specifying an esp= line. When the peer requests AES-GMAC, libreswan's default proposal handler causes an assertion failure and crashes and restarts. IKEv2 connections are not affected...
UBUNTU-CVE-2023-38710
An issue was discovered in Libreswan before 4.12. When an IKEv2 Child SA REKEY packet contains an invalid IPsec protocol ID number of 0 or 1, an error notify INVALIDSPI is sent back. The notify payload's protocol ID is copied from the incoming packet, but the code that verifies outgoing packets...
UBUNTU-CVE-2023-38712
An issue was discovered in Libreswan 3.x and 4.x before 4.12. When an IKEv1 ISAKMP SA Informational Exchange packet contains a Delete/Notify payload followed by further Notifies that act on the ISAKMP SA, such as a duplicated Delete/Notify message, a NULL pointer dereference on the deleted state...
Zoom Meeting SDK 安全漏洞
The Zoom Meeting SDK is a development kit from Zoom USA, Inc. enabling your company to accelerate the development and build fully customizable video-based applications by leveraging the performance, scale and reliability of Zoom's industry-leading video-first communications platform. A security...
ALPINE-CVE-2022-38150
In Varnish Cache 7.0.0, 7.0.1, 7.0.2, and 7.1.0, it is possible to cause the Varnish Server to assert and automatically restart through forged HTTP/1 backend responses. An attack uses a crafted reason phrase of the backend response status line. This is fixed in 7.0.3 and 7.1.1...
The software’s vulnerability regarding increasing the effective working time of components and equipment, as well as optimizing resource utilization in the SAP 3D Visual Enterprise Viewer, is related to insufficient validation of input data. This vulnerability allows a perpetrator to trigger an emergency shutdown of the application.
The vulnerability of the software for increasing the effective working time of components and equipment, as well as optimizing resource utilization in the SAP 3D Visual Enterprise Viewer, is related to insufficient validation of input data during PDF file processing. Exploiting this vulnerability...
CVE-2022-22179
A Improper Validation of Specified Index, Position, or Offset in Input vulnerability in the Juniper DHCP daemon jdhcpd of Juniper Networks Junos OS allows an adjacent unauthenticated attacker to cause a crash of jdhcpd and thereby a Denial of Service DoS. In a scenario where DHCP relay or local...
[SECURITY] [DSA 5048-1] libreswan security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5048-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso January 15, 2022 https://www.debian.org/security/faq -...
de Consumentenbond Sannce Smart HD Baby Monitor 安全漏洞
The de Consumentenbond Sannce Smart HD Baby Monitor is a webcam from de Consumentenbond in the Netherlands. It provides monitoring functionality. A security vulnerability exists in de Consumentenbond Sannce Smart HD Baby Monitor, which can be exploited by attackers to cause the program to crash a...
The vulnerability of the Junos operating system’s BGP protocol allows a attacker to cause a system crash and restart.
The vulnerability of the Junos operating system’s BGP protocol exists due to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to trigger an emergency shutdown and restart of the device through the routing process of the event management service...
Denial of Service Vulnerability in ForceControl Technologies ForceControl
Forcecontrol is a monitoring and configuration software, mainly used for data acquisition and monitoring control. A denial of service vulnerability exists in ForceControl, which can be exploited by attackers to cause the software to crash and restart...
[SECURITY] [DSA 4684-1] libreswan security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4684-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso May 13, 2020 https://www.debian.org/security/faq -...