Lucene search
K

21 matches found

EUVD
EUVD
added 2026/06/26 5:32 p.m.7 views

EUVD-2026-39821

Envoy is an open source edge and service proxy designed for cloud-native applications. Prior to 1.35.11, 1.36.7, 1.37.3, and 1.38.1, in cases where UDP DNS filter is configured with local resolution containing a name with the length of 255 octets or remote resolution for a name of 255 octets long...

5.9CVSS5.8AI score0.00405EPSS
Exploits0References1
OSV
OSV
added 2026/06/25 5:17 p.m.3 views

DEBIAN-CVE-2026-56123

socat versions 1.8.0.0 through 1.8.1.1 contain a heap-based buffer overflow vulnerability that allows a malicious SOCKS5 proxy server to overwrite adjacent heap memory by exploiting a sign-extension flaw in the DOMAINNAME reply parser. During connection setup, the domain name length byte is read...

9.8CVSS6AI score0.00308EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2026/06/25 3:43 p.m.4 views

CVE-2026-56123

socat versions 1.8.0.0 through 1.8.1.1 contain a heap-based buffer overflow vulnerability that allows a malicious SOCKS5 proxy server to overwrite adjacent heap memory by exploiting a sign-extension flaw in the DOMAINNAME reply parser. During connection setup, the domain name length byte is read...

9.8CVSS6AI score0.00308EPSS
Exploits0
CVE
CVE
added 2026/06/25 3:43 p.m.15 views

CVE-2026-56123

CVE-2026-56123 affects socat versions 1.8.0.0 through 1.8.1.1. A signed-char sign-extension bug in the DOMAINNAME reply parser during SOCKS5 handshake allows a negative bytes_to_read value to be implicitly converted to size_t, causing an unbounded heap write into a 262-byte reply buffer. This res...

9.8CVSS6.2AI score0.00308EPSS
Exploits0References2Affected Software1
Snyk
Snyk
added 2026/05/12 9:0 p.m.14 views

Regular Expression Denial of Service (ReDoS)

Overview Affected versions of this package are vulnerable to Regular Expression Denial of Service ReDoS through the idna.encode function when processing very large domain name inputs that exploit the validcontexto function before length validation. This is triggered by arbitrarily large inputs th...

7.5CVSS6.6AI score0.01386EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/05/05 12:0 a.m.19 views

PT-2026-38372

Name of the Vulnerable Software and Affected Versions Netty versions prior to 4.1.133.Final Netty versions prior to 4.2.13.Final Description Netty's DNS codec fails to enforce RFC 1035 domain name constraints during encoding and decoding, creating a bidirectional attack surface. In the encoder, t...

9.8CVSS5.8AI score0.00818EPSS
Exploits1References479
Snyk
Snyk
added 2026/03/30 5:29 p.m.1 views

Incorrect Privilege Assignment

Overview Affected versions of this package are vulnerable to Incorrect Privilege Assignment in the CapFQDN.DecodeFromBytes function of the BGP OPEN Message Handler. An attacker can bypass intended access controls by manipulating the domainNameLen argument remotely, potentially resulting in...

6.3CVSS5.9AI score0.00293EPSS
Exploits0References2
Snyk
Snyk
added 2026/03/30 5:29 p.m.4 views

Incorrect Privilege Assignment

Overview Affected versions of this package are vulnerable to Incorrect Privilege Assignment in the CapFQDN.DecodeFromBytes function of the BGP OPEN Message Handler. An attacker can bypass intended access controls by manipulating the domainNameLen argument remotely, potentially resulting in...

6.3CVSS5.9AI score0.00293EPSS
Exploits0References2
EUVD
EUVD
added 2026/03/30 3:32 p.m.6 views

EUVD-2026-17091

A security flaw has been discovered in osrg GoBGP up to 4.3.0. This affects the function DecodeFromBytes of the file pkg/packet/bgp/bgp.go of the component BGP OPEN Message Handler. Performing a manipulation of the argument domainNameLen results in improper access controls. The attack may be...

6.3CVSS5.3AI score0.00293EPSS
Exploits0References7
OSV
OSV
added 2026/03/30 3:16 p.m.2 views

UBUNTU-CVE-2026-5122

A security flaw has been discovered in osrg GoBGP up to 4.3.0. This affects the function DecodeFromBytes of the file pkg/packet/bgp/bgp.go of the component BGP OPEN Message Handler. Performing a manipulation of the argument domainNameLen results in improper access controls. The attack may be...

6.3CVSS5.2AI score0.00293EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/03/30 2:15 p.m.2 views

CVE-2026-5122

A security flaw has been discovered in osrg GoBGP up to 4.3.0. This affects the function DecodeFromBytes of the file pkg/packet/bgp/bgp.go of the component BGP OPEN Message Handler. Performing a manipulation of the argument domainNameLen results in improper access controls. The attack may be...

6.3CVSS5.3AI score0.00293EPSS
Exploits0References7Affected Software1
CVE
CVE
added 2026/03/30 2:15 p.m.13 views

CVE-2026-5122

The CVE affects osrg GoBGP ≤ 4.3.0, specifically the BGP OPEN Message Handler in pkg/packet/bgp/bgp.go DecodeFromBytes. Manipulating the domainNameLen argument results in improper access controls, potentially enabling remote exploitation. The attack is described with a high complexity requirement...

6.3CVSS5.3AI score0.00293EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2026/03/30 2:15 p.m.22 views

CVE-2026-5122 osrg GoBGP BGP OPEN Message bgp.go DecodeFromBytes access control

A security flaw has been discovered in osrg GoBGP up to 4.3.0. This affects the function DecodeFromBytes of the file pkg/packet/bgp/bgp.go of the component BGP OPEN Message Handler. Performing a manipulation of the argument domainNameLen results in improper access controls. The attack may be...

6.3CVSS0.00293EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2026/03/30 2:15 p.m.1 views

CVE-2026-5122 osrg GoBGP BGP OPEN Message bgp.go DecodeFromBytes access control

A security flaw has been discovered in osrg GoBGP up to 4.3.0. This affects the function DecodeFromBytes of the file pkg/packet/bgp/bgp.go of the component BGP OPEN Message Handler. Performing a manipulation of the argument domainNameLen results in improper access controls. The attack may be...

6.3CVSS5.3AI score0.00293EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/03/30 12:0 a.m.10 views

GoBGP 访问控制错误漏洞

GoBGP is an open-source implementation of the Border Gateway Protocol BGP developed by osrg. Versions of GoBGP prior to 4.3.0 contained a access control vulnerability, which was caused by incorrect handling of the parameter domainNameLen in the file pkg/packet/bgp/bgp.go. This vulnerability could...

6.3CVSS5.8AI score0.00293EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2025/10/27 12:0 a.m.5 views

SUSE: Security Advisory (SUSE-SU-2025:3776-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.00539EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/08/09 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-24294

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The attack vector is a potential Denial of Service DoS. The vulnerability is caused by an insufficient check on the length of a decompressed domain name within ...

7.5CVSS6.5AI score0.00539EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/07/12 12:0 a.m.2 views

Ruby 安全漏洞

Ruby is a cross-platform, object-oriented, dynamically typed programming language from the individual developer Yukihiro Matsumoto. A security vulnerability exists in Ruby, which stems from insufficient checking of the length of decompressed domain names in DNS packets, which could lead to a...

7.5CVSS6.3AI score0.00539EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 3:54 a.m.5 views

SUSE CVE-2020-25110

An issue was discovered in the DNS implementation in Ethernut in Nut/OS 5.1. The length byte of a domain name in a DNS query/response is not checked, and is used for internal memory operations. This may lead to successful Denial-of-Service, and possibly Remote Code Execution...

9.8CVSS9.2AI score0.52259EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 3:32 a.m.4 views

SUSE CVE-2022-2929

In ISC DHCP 1.0 - 4.4.3, ISC DHCP 4.1-ESV-R1 - 4.1-ESV-R16-P1 a system with access to a DHCP server, sending DHCP packets crafted to include fqdn labels longer than 63 bytes, could eventually cause the server to run out of memory...

6.5CVSS8.5AI score0.0062EPSS
Exploits0References9
Rows per page
Query Builder