1921 matches found
CVE-2022-20795
A vulnerability in the implementation of the Datagram TLS DTLS protocol in Cisco Adaptive Security Appliance ASA Software and Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to cause high CPU utilization, resulting in a denial of service DoS condition...
Backdoor.Win32.Kilo.016 Denial Of Service
Discovery / credits: Malvuln - malvuln.com c 2022 Original source: https://malvuln.com/advisory/9ede6951ea527f96a785c5e32b5079e6.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Kilo.016 Vulnerability: Denial of Service UDP Datagram Description: The malware liste...
USN-5377-1: Linux kernel (BlueField) vulnerabilities
It was discovered that the network traffic control implementation in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2022-1055 Yiqi Sun and Kevin Wang discovered that the...
The vulnerability of the NT Lan Manager Datagram Receiver Driver of the Microsoft Windows operating system allows a hacker to disclose protected information.
The vulnerability of the NT Lan Manager Datagram Receiver Driver of the Microsoft Windows operating system is related to the disclosure of information. Exploiting this vulnerability can allow an attacker to disclose protected information...
CVE-2022-25218
The use of the RSA algorithm without OAEP, or any other padding scheme, in telnetdstartup, allows an unauthenticated attacker on the local area network to achieve a significant degree of control over the "plaintext" to which an arbitrary blob of ciphertext will be decrypted by OpenSSL's...
CVE-2022-25218
The use of the RSA algorithm without OAEP, or any other padding scheme, in telnetdstartup, allows an unauthenticated attacker on the local area network to achieve a significant degree of control over the "plaintext" to which an arbitrary blob of ciphertext will be decrypted by OpenSSL's...
CVE-2022-23297
Windows NT Lan Manager Datagram Receiver Driver Information Disclosure Vulnerability...
CVE-2022-23297
Windows NT Lan Manager Datagram Receiver Driver Information Disclosure Vulnerability...
CVE-2022-23297
Windows NT Lan Manager Datagram Receiver Driver Information Disclosure Vulnerability...
Information disclosure
Windows NT Lan Manager Datagram Receiver Driver Information Disclosure Vulnerability...
CVE-2022-23297
CVE-2022-23297 is described as Windows NT LAN Manager Datagram Receiver Driver Information Disclosure Vulnerability. According to the initial entry, it has a CVSSv3.1 base score of 5.5 (MEDIUM) with LOCAL attack vector, LOW attack complexity, and LOW privileges required, causing HIGH confidential...
CVE-2022-23297 Windows NT Lan Manager Datagram Receiver Driver Information Disclosure Vulnerability
...
Windows NT Lan Manager Datagram Receiver Driver Information Disclosure Vulnerability
...
PT-2022-1881 · Microsoft · Windows Nt Lan Manager Datagram Receiver Driver +1
Name of the Vulnerable Software and Affected Versions: Windows NT Lan Manager Datagram Receiver Driver affected versions not specified Description: The issue is related to information disclosure in the NT Lan Manager Datagram Receiver Driver of the Microsoft Windows operating system. It allows an...
A flaw in the processing of received ICMP errors (ICMP fragment needed and ICMP redirect) in the Linux kernel functionality was found to allow the ability to quickly scan open UDP ports. This flaw allows an off-path remote user to effectively bypass the source port UDP randomization. The highest threat from this vulnerability is to confidentiality and possibly integrity because software that relies on UDP source port randomization are indirectly affected as well.
...
kernel: Use After Free in unix_gc() which could result in a local privilege escalation
A vulnerability was found in unixdgramrecvmsg in net/unix/afunix.c in the Linux kernel's garbage collection for Unix domain socket file handlers. In this flaw, a missing cleanup may lead to a use-after-free due to a race problem. This flaw allows a local user to crash the system or escalate their...
DEBIAN-CVE-2021-28715
Guest can force Linux netback driver to hog large amounts of kernel memory This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. Incoming data packets for a guest in the Linux kernel's netback driver are buffered until the...
PT-2021-14829 · Unknown · Ic Module Cma
Name of the Vulnerable Software and Affected Versions: iC Module CMA version 5.0 Description: A stack-based buffer overflow issue exists in the CMA check udp crc function. This can be triggered by a specially-crafted packet, leading to a buffer overflow during a call to strcpy. An attacker can...
PJSIP 数字错误漏洞
PJSIP is a free and open source multimedia communications library written in C that implements standards-based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. PJSIP suffers from a numeric error vulnerability that stems from the fact that an incoming STUN message containing the ERROR-CODE...
PT-2021-5580 · Anker · Anker Eufy Homebase 2
Name of the Vulnerable Software and Affected Versions: Anker Eufy Homebase 2 version 2.1.6.9h Description: The issue is caused by an out-of-bounds write vulnerability in the read udp push config file function of the home security binary. This vulnerability can be exploited by a remote attacker...