CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedHat Linux•added 2016/01/19 12:26 p.m.•5 views

kernel: net: incorrect processing of checksums in UDP implementation

A flaw was found in the way the Linux kernel's networking implementation handled UDP packets with incorrect checksum values. A remote attacker could potentially use this flaw to trigger an infinite loop in the kernel, resulting in a denial of service on the system, or cause a denial of service in...

7.8CVSS6.8AI score0.06267EPSS

CNVD•added 2016/01/16 12:0 a.m.•2 views

ISC DHCP UDP IPv4 Packet Denial of Service Vulnerability

ISC DHCP is a set of open source Dynamic Host Configuration Protocol server software. A security vulnerability in ISC DHCP's handling of UDP IPv4 packets allows remote attackers to conduct denial-of-service attacks by sending UDP messages containing invalid length fields...

6.5CVSS6.6AI score0.7645EPSS

OSV•added 2016/01/12 12:0 a.m.•4 views

UBUNTU-CVE-2015-8605

ISC DHCP 4.x before 4.1-ESV-R12-P1, 4.2.x, and 4.3.x before 4.3.3-P1 allows remote attackers to cause a denial of service application crash via an invalid length field in a UDP IPv4 packet...

6.5CVSS6.8AI score0.7645EPSS

RedHat Linux•added 2016/01/07 3:58 p.m.•4 views

rpcbind: Use-after-free vulnerability in PMAP_CALLIT

A use-after-free flaw related to the PMAPCALLIT operation and TCP/UDP connections was discovered in rpcbind. A remote, unauthenticated attacker could possibly exploit this flaw to crash the rpcbind service denial of service by performing a series of UDP and TCP calls...

7.5CVSS7.4AI score0.06408EPSS

CNVD•added 2015/11/07 12:0 a.m.•1 views

Linux kernel 'skb_copy_and_csum_datagram_iovec()' function buffer overflow vulnerability

Linux kernel is an open source operating system. A buffer overflow vulnerability exists in the Linux kernel 'skbcopyandcsumdatagramiovec' function, which can be exploited by a local attacker to crash the system and cause a denial of service attack...

7.8CVSS7.5AI score0.00378EPSS

CNVD•added 2015/10/27 12:0 a.m.•3 views

Cisco Adaptive Security Appliance Denial of Service Vulnerability (CNVD-2015-06865)

The Cisco ASA 5500 Series Adaptive Security Appliances are modular platforms for delivering security and VPN services, providing firewall, IPS, anti-X, and VPN services. The Cisco Adaptive Security Appliance ASA has a security vulnerability in the IKEv1 implementation. A remote attacker could cau...

7.8CVSS6.8AI score0.02175EPSS

Tenable Nessus•added 2015/10/21 12:0 a.m.•69 views

Ubuntu 14.04 LTS : Linux kernel (Vivid HWE) vulnerabilities (USN-2778-1)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-2778-1 advisory. It was discovered that the Linux kernel did not check if a new IPv6 MTU set by a user space application was valid. A remote attacker could forge a route...

6.1CVSS7.5AI score0.05059EPSS

Exploits1References5

Ubuntu•added 2015/10/20 7:36 p.m.•73 views

USN-2779-1: Linux kernel vulnerabilities

It was discovered that the Linux kernel did not check if a new IPv6 MTU set by a user space application was valid. A remote attacker could forge a route advertisement with an invalid MTU that a user space daemon like NetworkManager would honor and apply to the kernel, causing a denial of service...

6.1CVSS7.3AI score0.05059EPSS

Exploits1

OSV•added 2015/10/20 12:57 a.m.•9 views

USN-2777-1 linux-lts-utopic vulnerabilities

It was discovered that virtio networking in the Linux kernel did not handle fragments correctly, leading to kernel memory corruption. A remote attacker could use this to cause a denial of service system crash or possibly execute code with administrative privileges. CVE-2015-5156 Benjamin Randazzo...

6.1CVSS7.1AI score0.01164EPSS

Exploits1References6

Ubuntu•added 2015/10/19 6:56 p.m.•69 views

USN-2774-1: Linux kernel (OMAP4) vulnerabilities

6.1CVSS6.8AI score0.01164EPSS

Ubuntu•added 2015/10/19 6:8 p.m.•62 views

USN-2773-1: Linux kernel vulnerabilities

6.1CVSS6.8AI score0.01164EPSS

Tenable Nessus•added 2015/09/22 12:0 a.m.•236 views

Debian DSA-3364-1 : linux - security update

Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation or denial of service. - CVE-2015-8215 It was discovered that NetworkManager would set IPv6 MTUs based on the values received in IPv6 RAs Router Advertisements, without sufficiently validating...

6.9CVSS7.1AI score0.03693EPSS

Exploits1References17

Tenable Nessus•added 2015/09/22 12:0 a.m.•47 views

Debian DLA-310-1 : linux-2.6 security update

This update fixes the CVEs described below. CVE-2015-0272 It was discovered that NetworkManager would set IPv6 MTUs based on the values received in IPv6 RAs Router Advertisements, without sufficiently validating these values. A remote attacker could exploit this attack to disable IPv6 connectivit...

7.8CVSS7.2AI score0.06267EPSS

Exploits0References9

Debian•added 2015/09/21 6:43 p.m.•48 views

[SECURITY] [DSA 3364-1] linux security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3364-1 [email protected] https://www.debian.org/security/ Ben Hutchings September 21, 2015 https://www.debian.org/security/faq -...

6.9CVSS7.4AI score0.05059EPSS

OpenVAS•added 2015/09/21 12:0 a.m.•58 views

Debian Security Advisory DSA 3364-1 (linux - security update)

Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation or denial of service. CVE-2015-0272 It was discovered that NetworkManager would set IPv6 MTUs based on the values received in IPv6 RAs Router Advertisements, without sufficiently validating...

7.8CVSS0.7AI score0.05059EPSS

OSV•added 2015/09/21 12:0 a.m.•54 views

DSA-3364-1 linux - security update

Bulletin has no description...

6.1CVSS7AI score0.03693EPSS