Lucene search
K

717 matches found

Vulnrichment
Vulnrichment
added 2026/05/26 12:0 a.m.14 views

CVE-2026-48684

FastNetMon Community Edition through 1.2.9 contains an out-of-bounds read in the NetFlow v9 options template parser. In processnetflowv9optionstemplate src/netflowplugin/netflowv9collector.cpp, the scope parsing loop lines 224-229 iterates until scopesoffset reaches the attacker-controlled...

5.8AI score0.00264EPSS
Exploits0References3
EUVD
EUVD
added 2026/05/24 8:0 p.m.13 views

EUVD-2026-31547

A vulnerability was identified in Besen BS20 EV Charging Station up to 20260426. Affected is an unknown function of the component BLE/UDP. The manipulation leads to insufficiently protected credentials. The attack needs to be initiated within the local network. The original disclosure mentions,...

5.1CVSS5.5AI score0.00158EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/05/24 8:0 p.m.13 views

CVE-2026-9395 Besen BS20 EV Charging Station BLE/UDP insufficiently protected credentials

A vulnerability was identified in Besen BS20 EV Charging Station up to 20260426. Affected is an unknown function of the component BLE/UDP. The manipulation leads to insufficiently protected credentials. The attack needs to be initiated within the local network. The original disclosure mentions,...

5.1CVSS5.5AI score0.00158EPSS
Exploits0References4
CVE
CVE
added 2026/05/24 8:0 p.m.22 views

CVE-2026-9395

The CVE-2026-9395 entry describes a vulnerability in Besen BS20 EV Charging Station (firmware cutoff 20260426) affecting an unspecified function of the BLE/UDP component. The issue is described as leading to insufficiently protected credentials, with the attack requiring access from the local net...

5.1CVSS5.5AI score0.00158EPSS
Exploits0References4
Redos
Redos
added 2026/05/24 12:0 a.m.9 views

ROS-20260524-73-0056

A vulnerability in the ngxresolvercopy function of the nginx server is related to a single offset error resulting from writing a dot character '.', 0x2E outside of the heap buffer. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code or cause a denia...

7.7CVSS7.7AI score0.52838EPSS
Exploits10
CNNVD
CNNVD
added 2026/05/24 12:0 a.m.9 views

Besen BS20 EV Charging Station 安全漏洞

The Besen BS20 EV Charging Station is an AC electric vehicle wall-mounted charging station developed by the Chinese company Besen. The Besen BS20 EV Charging Station, including versions dated before April 2026, contains security vulnerabilities. These vulnerabilities stem from improper operation ...

5.1CVSS5.8AI score0.00158EPSS
Exploits0References4
Rosalinux
Rosalinux
added 2026/05/22 8:59 a.m.14 views

Advisory ROSA-SA-2026-3293

CVE-ID: CVE-2026-46300 BDU-ID: None CVE-Crit: Not available CVE-DESCRIPTION: A vulnerability in the XFRM ESP-in-TCP subsystem of Linux kernels. A logical error occurs when transitioning a TCP socket to the espintcp mode after writing file data to the receive queue. The kernel processes file pages...

8.8CVSS6.1AI score0.93235EPSS
Exploits45
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in Memcached

Memcached 1.6.7 allows a Denial of Service attack through multi-packet uploads in UDP...

7.5CVSS6.5AI score0.00912EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2026/05/19 6:24 p.m.10 views

corosync: Corosync: Denial of Service via integer overflow in join message validation

A flaw was found in Corosync. An integer overflow vulnerability in Corosync's join message sanity validation allows a remote, unauthenticated attacker to send crafted User Datagram Protocol UDP packets. This can cause the service to crash, leading to a denial of service. This vulnerability...

7.5CVSS5.8AI score0.00994EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2026/05/19 1:38 p.m.7 views

corosync: Corosync: Denial of Service and information disclosure via crafted UDP packet

A flaw was found in Corosync. A remote unauthenticated attacker can exploit a wrong return value vulnerability in the Corosync membership commit token sanity check by sending a specially crafted User Datagram Protocol UDP packet. This can lead to an out-of-bounds read, causing a denial of service...

8.2CVSS5.8AI score0.00867EPSS
Exploits1References5
GithubExploit
GithubExploit
added 2026/05/14 7:2 a.m.75 views

Exploit for CVE-2026-35333

CVE-2026-35333 strongSwan RADIUS attribute-iterator pre-auth...

5.9AI score
Exploits3
Tenable Nessus
Tenable Nessus
added 2026/05/14 12:0 a.m.9 views

TencentOS Server 3: kernel (TSSA-2026:0315)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2026:0315 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

8.8CVSS6AI score0.93235EPSS
Exploits31References2
EUVD
EUVD
added 2026/05/13 6:30 p.m.9 views

EUVD-2026-30004

When a Client SSL profile is configured with Allow Dynamic Record Sizing on a UDP virtual server, undisclosed traffic can cause the Traffic Management Microkernel TMM to terminate. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

8.7CVSS5.8AI score0.00263EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/13 2:12 p.m.10 views

CVE-2026-42920

When a Client SSL profile is configured with Allow Dynamic Record Sizing on a UDP virtual server, undisclosed traffic can cause the Traffic Management Microkernel TMM to terminate. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

8.7CVSS5.8AI score0.00263EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/05/13 2:12 p.m.24 views

CVE-2026-42920

CVE-2026-42920 affects BIG-IP DTLS: when a Client SSL profile has Allow Dynamic Record Sizing on a UDP virtual server, undisclosed traffic can cause the Traffic Management Microkernel (TMM) to terminate, resulting in a DoS as TMM restarts. The F5 advisory notes this is a data-plane issue with rem...

8.7CVSS5.8AI score0.00263EPSS
Exploits0References1Affected Software21
Cvelist
Cvelist
added 2026/05/13 2:12 p.m.31 views

CVE-2026-42920 BIG-IP DTLS Vulnerability

When a Client SSL profile is configured with Allow Dynamic Record Sizing on a UDP virtual server, undisclosed traffic can cause the Traffic Management Microkernel TMM to terminate. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

8.7CVSS0.00263EPSS
Exploits0References1
CVE
CVE
added 2026/05/13 2:12 p.m.27 views

CVE-2026-41956

CVE-2026-41956 affects BIG-IP TMM. When a classification profile is configured on a UDP virtual server, undisclosed requests can cause TMM termination, producing DoS on the BIG-IP data plane. From F5 advisories, vulnerable lines include BIG-IP (all modules) UDP virtual servers across 17.x and 21....

8.7CVSS5.8AI score0.00263EPSS
Exploits0References1Affected Software21
Positive Technologies
Positive Technologies
added 2026/05/13 12:0 a.m.12 views

PT-2026-40675

Name of the Vulnerable Software and Affected Versions F5 BIG-IP versions prior to 17.1.3.1 F5 BIG-IP versions prior to 17.5.1.4 F5 BIG-IP versions prior to 21.0.0.1 Description When a Client SSL profile is configured with Allow Dynamic Record Sizing on a UDP virtual server, undisclosed traffic ca...

8.7CVSS5.8AI score0.00263EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/05/13 12:0 a.m.11 views

PT-2026-40664

Name of the Vulnerable Software and Affected Versions F5 BIG-IP affected versions not specified F5 BIG-IP Next CNF affected versions not specified F5 BIG-IP Next for Kubernetes affected versions not specified Description A stack-based overflow in the Traffic Management Microkernel TMM can be...

8.7CVSS5.9AI score0.00263EPSS
Exploits0References4
OSV
OSV
added 2026/05/08 8:16 a.m.7 views

UBUNTU-CVE-2026-43284

In the Linux kernel, the following vulnerability has been resolved: xfrm: esp: avoid in-place decrypt on shared skb frags MSGSPLICEPAGES can attach pages from a pipe directly to an skb. TCP marks such skbs with SKBFLSHAREDFRAG after skbsplicefromiter, so later paths that may modify packet data ca...

8.8CVSS6AI score0.93235EPSS
Exploits31References29
Rows per page
Query Builder