CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

24 matches found

NVD•added 2026/06/04 5:16 p.m.•10 views

CVE-2026-50266

In OpenStack Neutron before 28.0.1, a project manager can create or update a port on a shared network owned by another project and set deviceowner to a value that has "network:" at the beginning "network:dhcp" for example. The default port RBAC policies incorrectly included PROJECTMANAGER without...

2.2CVSS0.00262EPSS

Exploits0References6

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2016-6313

Malware in sbrugna...

8.2CVSS8.1AI score0.03346EPSS

Exploits0References13

Tenable Nessus•added 2024/06/03 12:0 a.m.•16 views

RHEL 6 : openstack-neutron (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - openstack-neutron: ICMPv6 source address spoofing vulnerability CVE-2015-8914 - openstack-neutron: MAC...

9.1CVSS8.5AI score0.04168EPSS

Exploits1References3

Tenable Nessus•added 2024/05/11 12:0 a.m.•23 views

RHEL 6 : openstack-neutron (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - openstack-neutron: MAC source address spoofing vulnerability CVE-2016-5363 - The IPTables firewall in...

8.5AI score0.03346EPSS

Exploits0References2

Tenable Nessus•added 2024/05/11 12:0 a.m.•24 views

RHEL 7 : systemd (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - systemd: Mishandled symlinks in systemd-tmpfiles allows local users to obtain ownership of arbitrary file...

7.1AI score0.03878EPSS

Exploits11References9

Github Security Blog•added 2022/05/14 2:19 a.m.•9 views

OpenStack Neutron allows remote attackers to bypass an intended DHCP-spoofing protection mechanism

The IPTables firewall in OpenStack Neutron before 7.0.4 and 8.0.0 through 8.1.0 allows remote attackers to bypass an intended DHCP-spoofing protection mechanism and consequently cause a denial of service or intercept network traffic via a crafted DHCP discovery message...

8.2CVSS6.7AI score0.03346EPSS

Exploits0References11Affected Software1

OSV•added 2022/05/14 2:19 a.m.•7 views

GHSA-QPWC-P365-PQRR OpenStack Neutron allows remote attackers to bypass an intended DHCP-spoofing protection mechanism

8.2CVSS6.5AI score0.03346EPSS

Exploits0References11

Tenable Nessus•added 2021/11/17 12:0 a.m.•27 views

EulerOS Virtualization 2.9.1 : systemd (EulerOS-SA-2021-2752)

According to the versions of the systemd packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - An exploitable denial-of-service vulnerability exists in Systemd 245. A specially crafted DHCP FORCERENEW packet can cause a...

6.1CVSS6.7AI score0.0865EPSS

Exploits3References3

OSV•added 2021/08/23 10:12 a.m.•6 views

OPENSUSE-SU-2021:2809-1 Security update for systemd

This update for systemd fixes the following issues: - Updated to version 246.15 - CVE-2021-33910: Fixed a denial of service issue in systemd. bsc1188063 - CVE-2020-13529: Fixed an issue that allows crafted DHCP FORCERENEW packet can cause a server running the DHCP client to be vulnerable to a DHC...

6.1CVSS6AI score0.0865EPSS

Exploits3References8

OSV•added 2021/08/23 10:12 a.m.•6 views

SUSE-SU-2021:2809-1 Security update for systemd

6.1CVSS5.7AI score0.0865EPSS

Exploits3References8

OSV•added 2021/07/22 7:8 a.m.•7 views

MGASA-2021-0365 Updated systemd packages fix security vulnerabilities

This systemd update provides the v246.15 maintenance release and fixes at least the following security issues: An exploitable denial-of-service vulnerability exists in Systemd 245. A specially crafted DHCP FORCERENEW packet can cause a server running the DHCP client to be vulnerable to a DHCP ACK...

6.1CVSS5.7AI score0.0865EPSS

Exploits3References4

Debian CVE•added 2021/05/10 3:8 p.m.•38 views

CVE-2020-13529

An exploitable denial-of-service vulnerability exists in Systemd 245. A specially crafted DHCP FORCERENEW packet can cause a server running the DHCP client to be vulnerable to a DHCP ACK spoofing attack. An attacker can forge a pair of FORCERENEW and DCHP ACK packets to reconfigure the server...

6.1CVSS6.6AI score0.01399EPSS

Exploits1

RedHat Linux•added 2018/05/15 3:3 p.m.•2 views

dhcp: Command injection vulnerability in the DHCP client NetworkManager integration script

A command injection flaw was found in the NetworkManager integration script included in the DHCP client packages in Red Hat Enterprise Linux. A malicious DHCP server, or an attacker on the local network able to spoof DHCP responses, could use this flaw to execute arbitrary commands with root...

7.9CVSS6AI score0.94457EPSS

Exploits14References5

RedHat Linux•added 2016/07/20 11:53 p.m.•4 views

openstack-neutron: DHCP spoofing vulnerability

Neutron functionality includes internal firewall management between networks. Due to the relaxed nature of particular rules, it is possible for machines on the same layer 2 networks to forge non-IP traffic, such as ARP and DHCP requests...

8.2CVSS5.8AI score0.03346EPSS

Exploits0References4

NVD•added 2016/06/17 3:59 p.m.•16 views

CVE-2016-5362

8.2CVSS7.9AI score0.03346EPSS

Exploits0References9

OSV•added 2016/06/17 3:59 p.m.•6 views

CVE-2016-5362

8.2CVSS6.5AI score

Exploits0References9