CVE-2020-5015

IBM Elastic Storage System 6.0.0 through 6.0.1.2 and IBM Elastic Storage Server 5.3.0 through 5.3.6.2 could allow a remote attacker to cause a denial of service by sending malformed UDP requests. IBM X-Force ID: 193486...

Sean DuBois Pion WebRTC 安全漏洞

Sean DuBois Pion WebRTC is Sean DuBois an open source application . Pion WebRTC is a Go implementation of WebRTC. A security vulnerability exists in Pion WebRTC before 3.0.15, which stems from not properly closing DTLS connections...

kernel: Geneve/IPsec traffic may be unencrypted between two Geneve endpoints

A flaw was found in the Linux kernel. Traffic between two Geneve endpoints may be unencrypted when IPsec is configured to encrypt traffic for the specific UDP port used by the GENEVE tunnel allowing anyone in between the two endpoints to read the traffic unencrypted. The main threat from this...

kernel: Geneve/IPsec traffic may be unencrypted between two Geneve endpoints

A flaw was found in the Linux kernel. Traffic between two Geneve endpoints may be unencrypted when IPsec is configured to encrypt traffic for the specific UDP port used by the GENEVE tunnel allowing anyone in between the two endpoints to read the traffic unencrypted. The main threat from this...

kernel: ICMP rate limiting can be used for DNS poisoning attack

A flaw in the way reply ICMP packets are limited in the Linux kernel functionality was found that allows to quickly scan open UDP ports. This flaw allows an off-path remote user to effectively bypassing source port UDP randomization. The highest threat from this vulnerability is to confidentialit...

Trojan-Dropper.Win32.Daws.etlm Unauthenticated Reboot

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/a0479e18283ed46e8908767dd0b40f8f.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Trojan-Dropper.Win32.Daws.etlm Vulnerability: Remote Unauthenticated System Reboot Description:...

The vulnerability of the UDP-based implementation of Cisco IOS XE SD-WAN’s microprogramming software for routers allows a attacker to induce service failure. This vulnerability applies to devices such as Cisco SD-WAN vBond Orchestrator, Cisco SD-WAN vEdge Cloud Routers, Cisco SD-WAN vEdge Routers, Cisco SD-WAN vSmart Controller, and the centralized network management system Cisco SD-WAN vManage.

The vulnerability of the UDP-based implementation of Cisco IOS XE SD-WAN microprogramming software, including Cisco SD-WAN vBond Orchestrator, Cisco SD-WAN vEdge Cloud Routers, Cisco SD-WAN vEdge Routers, Cisco SD-WAN vSmart Controller, and the centralized network management system Cisco SD-WAN...

CVE-2020-27541

Denial of Service vulnerability in Rostelecom CS-C2SHW 5.0.082.1. AgentGreen service has a bug in parsing broadcast discovery UDP packet. Sending a packet of too small size will lead to an attempt of allocating buffer of negative size. As the result service AgentGreen will be terminated and start...

PT-2021-1861 · Cisco · Cisco Sd-Wan Vsmart Controller +7

Name of the Vulnerable Software and Affected Versions: Cisco SD-WAN products affected versions not specified Cisco IOS XE SD-WAN affected versions not specified Cisco SD-WAN vBond Orchestrator affected versions not specified Cisco SD-WAN vEdge Cloud Routers affected versions not specified Cisco...

Email-Worm.Win32.Agent.gi Remote Stack Buffer Overflow

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/74e65773735f977185f6a09f1472ea46.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Email-Worm.Win32.Agent.gi Vulnerability: Remote Stack Buffer Overflow - UDP Datagram Description:...

DEBIAN-CVE-2020-16119

Use-after-free vulnerability in the Linux kernel exploitable by a local attacker due to reuse of a DCCP socket with an attached dccpshctxccid object as a listener after being released. Fixed in Ubuntu Linux kernel 5.4.0-51.56, 5.3.0-68.63, 4.15.0-121.123, 4.4.0-193.224, 3.13.0.182.191 and...

The vulnerability of the UDP service in D-Link DSL-2640B router software allows a hacker to gain access to administrative account information.

The vulnerability of the UDP CFM software-based router D-Link DSL-2640B lies in the insufficient protection of registration data. Exploiting this vulnerability allows a malicious actor to gain access to administrative credentials remotely...

Microsoft Windows/Windows Server Information Disclosure Vulnerability (CNVD-2021-63298)

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation, an operating system for personal devices, and Microsoft Windows Server is a server operating system. An information disclosure vulnerability exists in Microsoft Windows/Windows Server NT Lan Manager Datagra...

CVE-2021-1676

Windows NT Lan Manager Datagram Receiver Driver Information Disclosure Vulnerability...

CVE-2021-1676

Windows NT Lan Manager Datagram Receiver Driver Information Disclosure Vulnerability...

CVE-2021-1676

Technical details for CVE-2021-1676 are not publicly available in the provided connected documents. Monitor for updates.

CVE-2021-1676 Windows NT Lan Manager Datagram Receiver Driver Information Disclosure Vulnerability

...

Windows NT Lan Manager Datagram Receiver Driver Information Disclosure Vulnerability

...

Microsoft NT LAN Manager 信息泄露漏洞

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation, an operating system for personal devices, and Microsoft Windows Server is a server operating system. An information disclosure vulnerability exists in Microsoft Windows/Windows Server NT Lan Manager Datagra...

KB4598243: Windows 10 Version 1607 and Windows Server 2016 January 2021 Security Update

The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - Windows AppX Deployment Extensions Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-1685. CVE-2021-1642 - Windows DNS Query Information Disclosure Vulnerability...