CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

181 matches found

Debian CVE•added 2026/05/26 12:0 a.m.•8 views

CVE-2026-48683

FastNetMon Community Edition through 1.2.9 contains an out-of-bounds read vulnerability in the NetFlow v9 data flowset processor. In src/netflowplugin/netflowv9collector.cpp, the Data template branch lines 1695-1702 iterates over flow records without performing a per-iteration bounds check agains...

6.5CVSS5.9AI score0.00331EPSS

Exploits0

Debian CVE•added 2026/05/26 12:0 a.m.•8 views

CVE-2026-48686

FastNetMon Community Edition through 1.2.9 contains a stack-based buffer overflow in the BGP NLRI Network Layer Reachability Information decoder. The function decodebgpsubnetencodingipv4raw in src/bgpprotocol.cpp reads prefixbitlength directly from the BGP packet line 99 without validating it is ...

9.8CVSS6.4AI score0.00572EPSS

Exploits0

Debian CVE•added 2026/05/26 12:0 a.m.•7 views

CVE-2026-48690

FastNetMon Community Edition through 1.2.9 contains an integer overflow vulnerability in the packet capture buffer allocation. In src/packetstorage.hpp, the allocatebuffer function computes memorysizeinbytes as 'buffersizeinpackets maxcapturedpacketsize + sizeoffastnetmonpcappkthdrt +...

7.1CVSS6AI score0.00116EPSS

Exploits0

Debian CVE•added 2026/05/26 12:0 a.m.•8 views

CVE-2026-48687

FastNetMon Community Edition through 1.2.9 contains an OS command injection vulnerability in the Juniper router integration plugin. The log function in src/juniperplugin/fastnetmonjuniper.php lines 117-118 constructs shell commands by concatenating the $msg parameter directly into exec calls:...

9.8CVSS6AI score0.0141EPSS

Exploits1

Debian CVE•added 2026/05/26 12:0 a.m.•6 views

CVE-2026-48695

FastNetMon Community Edition through 1.2.9 contains an OS command injection vulnerability in the MikroTik router integration plugin. The log function in src/mikrotikplugin/fastnetmonmikrotik.php lines 107-108 constructs shell commands by concatenating the $msg parameter directly into exec calls:...

8.1CVSS5.9AI score0.01068EPSS

Exploits0

Debian CVE•added 2026/05/26 12:0 a.m.•9 views

CVE-2026-48685

FastNetMon Community Edition through 1.2.9 has out-of-bounds memory access because it incorrectly parses BGP path attributes with the extended length flag set. In src/bgpprotocol.hpp, the parserawbgpattribute function correctly identifies when extendedlengthbit is set and sets lengthoflengthfield...

6.5CVSS5.8AI score0.00295EPSS

Exploits0

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-52970

Malicious code in bioql PyPI...

7.5CVSS6.3AI score0.00671EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2024-52971

Malicious code in bioql PyPI...

7.5CVSS6.3AI score0.00557EPSS

Exploits0References2

HackRead•added 2025/09/11 8:0 a.m.•2 views

1.5 billion packets per second DDoS attack detected with FastNetMon

London, United Kingdom, 11th September 2025, CyberNewsWire...

7AI score

Exploits0

Tenable Nessus•added 2025/08/30 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2024-56073

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in FastNetMon Community Edition through 1.2.7. Zero-length templates for Netflow v9 allow remote attackers to cause a denial of service...

7.5CVSS5.9AI score0.00557EPSS

Exploits0References2

Tenable Nessus•added 2025/08/27 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2024-56072

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in FastNetMon Community Edition through 1.2.7. The sFlow v5 plugin allows remote attackers to cause a denial of service application cras...

7.5CVSS5.8AI score0.00671EPSS

Exploits0References2

RedhatCVE•added 2025/05/23 6:19 a.m.•5 views

CVE-2024-56072

An issue was discovered in FastNetMon Community Edition through 1.2.7. The sFlow v5 plugin allows remote attackers to cause a denial of service application crash via a crafted packet that specifies many sFlow samples...

7.5CVSS6.7AI score0.00671EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 6:19 a.m.•4 views

CVE-2024-56073

An issue was discovered in FastNetMon Community Edition through 1.2.7. Zero-length templates for Netflow v9 allow remote attackers to cause a denial of service divide-by-zero error and application crash...

7.5CVSS6.8AI score0.00557EPSS

Exploits0References1

OpenVAS•added 2024/12/27 12:0 a.m.•8 views

Debian: Security Advisory (DSA-5837-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.1AI score0.00671EPSS

Exploits0References2

Debian•added 2024/12/26 2:59 p.m.•8 views

[SECURITY] [DSA 5837-1] fastnetmon security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5837-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff December 26, 2024 https://www.debian.org/security/faq -...

7.5CVSS6.9AI score0.00671EPSS

Exploits0

Tenable Nessus•added 2024/12/26 12:0 a.m.•7 views

Debian dsa-5837 : fastnetmon - security update

The remote Debian 12 host has a package installed that is affected by multiple vulnerabilities as referenced in the dsa-5837 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-5837-1 [email protected] https://www.debian.org/securit...

7.5CVSS5.7AI score0.00671EPSS

Exploits0References6