Lucene search
K

1921 matches found

ATTACKERKB
ATTACKERKB
added 2021/06/15 9:15 p.m.3 views

CVE-2021-3594

An invalid pointer initialization issue was found in the SLiRP networking implementation of QEMU. The flaw exists in the udpinput function and could occur while processing a udp packet that is smaller than the size of the 'udphdr' structure. This issue may lead to out-of-bounds read access or...

3.8CVSS5.5AI score0.00326EPSS
Exploits0References10
CNNVD
CNNVD
added 2021/06/14 12:0 a.m.2 views

QEMU 缓冲区错误漏洞

QEMU is a suite of analog processor software. A security vulnerability exists in QEMU that stems from the use of memory outside of the working mbuf buffer by the function udp6input when processing udp packets from incoming guests that are smaller than the size of the udphdr structure. An attacker...

3.8CVSS5.9AI score0.00326EPSS
Exploits0References31
Packet Storm
Packet Storm
added 2021/05/31 12:0 a.m.204 views

Backdoor.Win32.Whirlpool.a Buffer Overflow

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/90171763d1cc62102b08482bac54ea8b.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Whirlpool.a Vulnerability: Remote Buffer Overflow - UDP Datagram Description: The...

1.2AI score
Exploits0
NCSC
NCSC
added 2021/05/26 12:0 a.m.6 views

Vulnerability fixed in Nginx

A vulnerability has been fixed in Nginx. The vulnerability allows a remote malicious party the ability to cause a denial-of-service cause and potentially execute arbitrary code by sending a specially prepared DNS response. Nginx is only vulnerable if the "resolver directive" is used in the...

7.7CVSS9.3AI score0.52838EPSS
Exploits10
CNNVD
CNNVD
added 2021/05/25 12:0 a.m.4 views

F5 NGINX Controller 安全漏洞

F5 NGINX Controller is a centralized monitoring and management platform for NGINX from F5. The platform supports the management of multiple NGINX instances using a visual interface. A security vulnerability exists in F5 NGINX Controller that allows an attacker to forge UDP packets from a DNS serv...

7.7CVSS7.8AI score0.52838EPSS
Exploits10References59
OSV
OSV
added 2021/05/25 12:0 a.m.1 views

UBUNTU-CVE-2021-23017

A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact...

7.7CVSS7.1AI score0.52838EPSS
Exploits10References5
Packet Storm
Packet Storm
added 2021/05/22 12:0 a.m.175 views

Backdoor.Win32.Singu.a Buffer Overflow

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/c7aabf5d248c6974b4cea6c070d6d441.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Singu.a Vulnerability: Remote Stack Buffer Overflow UDP Datagram Description: The...

0.9AI score
Exploits0
OSV
OSV
added 2021/05/13 2:15 p.m.3 views

CVE-2021-20988

In Hilscher rcX RTOS versions prios to V2.1.14.1 the actual UDP packet length is not verified against the length indicated by the packet. This may lead to a denial of service of the affected device...

7.5CVSS5.8AI score0.0099EPSS
Exploits0References2
CNNVD
CNNVD
added 2021/05/13 12:0 a.m.3 views

Hilscher rcX RTOS 缓冲区错误漏洞

The Hilscher rcX RTOS is an operating system from the German company Hilscher. A full-featured multitasking operating system developed specifically for the netX series. A security vulnerability exists in Hilscher rcX RTOS prior to version 2.1.14.1. The vulnerability stems from the program not...

8.6CVSS7.3AI score0.0099EPSS
Exploits0References2
OSV
OSV
added 2021/05/07 7:31 p.m.5 views

CVE-2021-27573

An issue was discovered in Emote Remote Mouse through 4.0.0.0. Remote unauthenticated users can execute arbitrary code via crafted UDP packets with no prior authorization or authentication...

9.8CVSS7.8AI score0.14195EPSS
Exploits1References2
OSV
OSV
added 2021/05/07 7:31 p.m.2 views

CVE-2021-27572

An issue was discovered in Emote Remote Mouse through 4.0.0.0. Authentication Bypass can occur via Packet Replay. Remote unauthenticated users can execute arbitrary code via crafted UDP packets even when passwords are set...

8.1CVSS6AI score0.03248EPSS
Exploits1References2
CNNVD
CNNVD
added 2021/05/07 12:0 a.m.3 views

Emote Remote Mouse 安全漏洞

Remote Mouse is an application. A remote mouse. A security vulnerability exists in Emote Remote Mouse version 4.0.0.0 and prior versions that originates from an unauthenticated remote user who can execute arbitrary code via a crafted UDP packet without prior authorization or authentication. An...

9.8CVSS6.3AI score0.14195EPSS
Exploits1References3
CNNVD
CNNVD
added 2021/05/07 12:0 a.m.3 views

Emote Remote Mouse 安全漏洞

Remote Mouse is an application. A remote mouse. A security vulnerability exists in Emote Remote Mouse version 4.0.0.0 and prior versions, which stems from Authentication bypass can occur via packet replay. Even if a password is set, a remote unauthenticated user can execute arbitrary code via a...

8.1CVSS8.5AI score0.03248EPSS
Exploits1References2
Packet Storm
Packet Storm
added 2021/04/30 12:0 a.m.354 views

Backdoor.Win32.Agent.kte Buffer Overflow

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/7c92e59e776355734781bbf05571d0f0.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Agent.kte Vulnerability: Remote Stack Buffer Overflow UDP Datagram Description: The...

0.5AI score
Exploits0
OSV
OSV
added 2021/04/26 5:15 p.m.1 views

UBUNTU-CVE-2021-21210

Inappropriate implementation in Network in Google Chrome prior to 90.0.4430.72 allowed a remote attacker to potentially access local UDP ports via a crafted HTML page...

6.5CVSS7.3AI score0.01905EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/04/23 12:0 a.m.15 views

Datagram Transport Layer Security (DTLS) Protocol Detection

Detection of services supporting the Datagram Transport Layer Security DTLS protocol. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

5.8AI score
Exploits0
Positive Technologies
Positive Technologies
added 2021/04/05 12:0 a.m.3 views

PT-2021-8037 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to the validation of UDP retransmission in the Linux kernel's NFS module. Specifically, it concerns the xprt calc majortimeo function, where a shift out-of-bounds...

7.1CVSS8.3AI score0.00281EPSS
Exploits0References18
CNNVD
CNNVD
added 2021/03/29 12:0 a.m.5 views

Aruba Access Points 缓冲区错误漏洞

Aruba Instant is a cloud-hosted controller-less wireless access point. Aruba Instant has a buffer overflow vulnerability that can be exploited by an attacker to execute arbitrary code in the underlying operating system by sending specially crafted packets to the PAPI UDP port...

9CVSS6.7AI score0.02146EPSS
Exploits0References5
OSV
OSV
added 2021/03/24 3:15 p.m.4 views

CVE-2020-5015

IBM Elastic Storage System 6.0.0 through 6.0.1.2 and IBM Elastic Storage Server 5.3.0 through 5.3.6.2 could allow a remote attacker to cause a denial of service by sending malformed UDP requests. IBM X-Force ID: 193486...

7.5CVSS7.2AI score0.02466EPSS
Exploits0References3
Akamai Blog
Akamai Blog
added 2021/03/23 4:0 a.m.16 views

Threat Advisory - DCCP for (D)DoS

Recent attacks against Akamai customers have leveraged a networking protocol known as protocol 33, or Datagram Congestion Control Protocol DCCP...

4.5AI score
Exploits0
Rows per page
Query Builder