Lucene search
K

719 matches found

BDU FSTEC
BDU FSTEC
added 2024/12/12 12:0 a.m.5 views

The vulnerability of the DHIP microprogramming-based IP camera from Lorex 2K Indoor Wi-Fi Security Camera allows a intruder to escalate their privileges to root level and gain full access to the device.

The vulnerability of the DHIP microprogramming-based IP camera from Lorex 2K Indoor Wi-Fi Security Camera lies in the manipulation of the zero pointer. Exploiting this vulnerability allows an attacker to escalate their privileges to root and gain full access to the device through a connection usi...

5.3CVSS5.4AI score0.00769EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/11/21 12:0 a.m.5 views

The vulnerability of the UDP component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the udp component in the Linux operating system’s kernel is related to a memory corruption in the udpgroreceive function. Exploiting this vulnerability can allow an attacker to cause a service failure...

8.8CVSS6.6AI score0.00669EPSS
Exploits0References37Affected Software7
CNNVD
CNNVD
added 2024/11/13 12:0 a.m.3 views

Bosch Rexroth IndraDrive 安全漏洞

Bosch Rexroth IndraDrive is a servo drive system from Bosch Rexroth that supports multiple protocols. A security vulnerability exists in Bosch Rexroth IndraDrive that originates from a flaw in the PROFINET stack implementation, which can be exploited by an attacker to send an arbitrary UDP messag...

7.5CVSS6.6AI score0.00495EPSS
Exploits0References2
OSV
OSV
added 2024/11/08 3:10 p.m.8 views

OESA-2024-2371 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: ipv6: avoid use-after-free in ip6fragment Blamed commit claimed rcureadlock was held by ip6fragment callers. It seems to not be always true, at least for UDP...

8.8CVSS6.3AI score0.01168EPSS
Exploits0References90
RedHat Linux
RedHat Linux
added 2024/11/05 12:54 a.m.3 views

kernel: tipc: Return non-zero value from tipc_udp_addr2str() on error

A flaw was found in Linux kernel tipc. tipcudpaddr2str does not return a nonzero value when UDP media address is invalid, which can result in a buffer overflow in tipcmediaaddrprintf...

7.8CVSS7.1AI score0.00269EPSS
Exploits0References5
SUSE Linux
SUSE Linux
added 2024/10/30 7:3 p.m.1 views

Security update for the Linux Kernel (Live Patch 28 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-15040024125 fixes several issues. The following security issues were fixed: CVE-2021-47598: schcake: do not call cakedestroy from cakeinit bsc1227471. Intermittent nfs mount failures may be due to SUNRPC over UDP bsc1231353 CVE-2024-40954: net: do not leav...

7.8CVSS8.1AI score0.00269EPSS
Exploits0References14
SUSE CVE
SUSE CVE
added 2024/10/22 2:23 p.m.2 views

SUSE CVE-2022-48956

In the Linux kernel, the following vulnerability has been resolved: ipv6: avoid use-after-free in ip6fragment Blamed commit claimed rcureadlock was held by ip6fragment callers. It seems to not be always true, at least for UDP stack. syzbot reported: BUG: KASAN: use-after-free in ip6dstidev...

7.8CVSS6.3AI score0.00265EPSS
Exploits0References67
OSV
OSV
added 2024/10/21 6:15 p.m.2 views

DEBIAN-CVE-2024-49978

In the Linux kernel, the following vulnerability has been resolved: gso: fix udp gso fraglist segmentation after pull from fraglist Detect gso fraglist skbs with corrupted geometry see below and pass these to skbsegment instead of skbsegmentlist, as the first can segment them correctly. Valid...

5.5CVSS5.7AI score0.00235EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/10/21 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel, which stems from a fraglist segmentation issue in gso's handling of udp packets resulting in a segmentation error...

5.5CVSS6.6AI score0.00235EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2024/10/16 12:36 a.m.3 views

kernel: udp: do not accept non-tunnel GSO skbs landing in a tunnel

CVE-2024-35884 highlights a flaw in the Linux kernel's handling of UDP packets when Generic Receive Offload GRO forwarding is enabled. The issue occurs because non-tunnel UDP packets are sometimes mistakenly processed as if they belong to a tunnel. This can lead to data corruption or kernel...

8.8CVSS7.3AI score0.00669EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/10/16 12:28 a.m.3 views

kernel: tipc: Return non-zero value from tipc_udp_addr2str() on error

A flaw was found in Linux kernel tipc. tipcudpaddr2str does not return a nonzero value when UDP media address is invalid, which can result in a buffer overflow in tipcmediaaddrprintf...

7.8CVSS7.1AI score0.00269EPSS
Exploits0References5
OSV
OSV
added 2024/10/15 11:15 a.m.3 views

CVE-2024-45274

An unauthenticated remote attacker can execute OS commands via UDP on the device due to missing authentication...

9.8CVSS5.9AI score0.01543EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2024/10/15 12:42 a.m.8 views

kernel: tipc: Return non-zero value from tipc_udp_addr2str() on error

A flaw was found in Linux kernel tipc. tipcudpaddr2str does not return a nonzero value when UDP media address is invalid, which can result in a buffer overflow in tipcmediaaddrprintf...

7.8CVSS7.1AI score0.00269EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/10/15 12:42 a.m.12 views

kernel: udp: do not accept non-tunnel GSO skbs landing in a tunnel

CVE-2024-35884 highlights a flaw in the Linux kernel's handling of UDP packets when Generic Receive Offload GRO forwarding is enabled. The issue occurs because non-tunnel UDP packets are sometimes mistakenly processed as if they belong to a tunnel. This can lead to data corruption or kernel...

8.8CVSS7.3AI score0.00669EPSS
Exploits0References5
CNNVD
CNNVD
added 2024/10/15 12:0 a.m.3 views

Helmholz REX100 访问控制错误漏洞

The Helmholz REX100 is a wireless router from Helmholz. An access control error vulnerability exists in Helmholz REX100 versions prior to 2.3.1, which stems from a lack of authentication and allows an unauthenticated, remote attacker to execute operating system commands via UDP on the device...

9.8CVSS9.5AI score0.01543EPSS
Exploits1References3
CNNVD
CNNVD
added 2024/10/14 12:0 a.m.3 views

HAProxy 安全漏洞

HAProxy is an open source TCP/HTTP load balancing server from the French company HAProxy. The server provides Layer 4 and Layer 7 proxies and can support tens of thousands of connection levels with high efficiency and stability. A security vulnerability exists in HAProxy that stems from the use o...

5.3CVSS5.3AI score0.00502EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2024/10/03 11:27 a.m.5 views

cups-browsed: cups-browsed binds on UDP INADDR_ANY:631 trusting any packet from any source

A security issue has been identified in OpenPrinting CUPS. The function ppdCreatePPDFromIPP2 in the libppd library is responsible for generating a PostScript Printer Description PPD file based on attributes retrieved from an Internet Printing Protocol IPP response. Essentially, it takes printer...

5.3CVSS7AI score0.50174EPSS
Exploits14References7
RedHat Linux
RedHat Linux
added 2024/10/02 6:32 p.m.5 views

cups-browsed: cups-filters: cups-browsed vulnerable to DDoS amplification attack

A flaw was found in cups-browsed. This vulnerability allows an attacker to launch DDoS amplification attacks via an HTTP POST request to an arbitrary destination and port in response to a single IPP UDP packet requesting a printer to be added...

7.5CVSS5.8AI score0.00859EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2024/09/27 8:20 p.m.4 views

cups-browsed: cups-filters: cups-browsed vulnerable to DDoS amplification attack

A flaw was found in cups-browsed. This vulnerability allows an attacker to launch DDoS amplification attacks via an HTTP POST request to an arbitrary destination and port in response to a single IPP UDP packet requesting a printer to be added...

7.5CVSS5.8AI score0.00859EPSS
Exploits0References7
CNNVD
CNNVD
added 2024/09/25 12:0 a.m.5 views

Cisco SD-WAN vEdge 安全漏洞

The Cisco SD-WAN vEdge is a router from Cisco USA. A security vulnerability exists in the Cisco SD-WAN vEdge that originates from not properly handling certain types of incorrectly formatted UDP packets...

6.1CVSS6.6AI score0.00225EPSS
Exploits0References3
Rows per page
Query Builder