Lucene search
+L

197 matches found

nessus
nessus
added 2024/01/16 12:0 a.m.35 views

EulerOS 2.0 SP11 : kernel (EulerOS-SA-2023-3010)

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Improper access control in the IntelR Ethernet Controller RDMA driver for linux before version 1.9.30 may allow an unauthenticated user to...

9.8CVSS6.8AI score0.00978EPSS
Exploits2References12
redhat
redhat
added 2023/11/07 9:3 a.m.6 views

kernel: hash collisions in the IPv6 connection lookup table

A hash collision flaw was found in the IPv6 connection lookup table in the Linux kernel’s IPv6 functionality when a user makes a new kind of SYN flood attack. A user located in the local network or with a high bandwidth connection can increase the CPU usage of the server that accepts IPV6...

5.7CVSS6.6AI score0.00553EPSS
Exploits0References5
nessus
nessus
added 2023/10/31 12:0 a.m.45 views

Ubuntu 22.04 LTS : Linux kernel (NVIDIA) vulnerabilities (USN-6466-1)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6466-1 advisory. Hyunwoo Kim discovered that the DVB Core driver in the Linux kernel contained a race condition during device removal, leading to a use-after- free...

9.8CVSS8.4AI score0.54577EPSS
Exploits8References39
nessus
nessus
added 2023/10/18 12:0 a.m.48 views

SUSE SLES15: cluster-md-kmp-default / dlm-kmp-default / gfs2-kmp-default / etc (SUSE-SU-2023:4095-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:4095-1 advisory. The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixe...

7.8CVSS6.8AI score0.01094EPSS
Exploits3References49
nessus
nessus
added 2023/10/14 12:0 a.m.93 views

SUSE SLED15: cluster-md-kmp-64kb / cluster-md-kmp-default / dlm-kmp-64kb / etc (SUSE-SU-2023:4071-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:4071-1 advisory. The SUSE Linux Enterprise 15 SP5 kernel was updated to receive various security and bugfixes. Th...

7.8CVSS6.7AI score0.01094EPSS
Exploits4References115
kitploit
kitploit
added 2023/07/19 12:30 p.m.118 views

Network_Assessment - With Wireshark Or TCPdump, You Can Determine Whether There Is Harmful Activity On Your Network Traffic That You Have Recorded On The Network You Monitor

With Wireshark or TCPdump, you can determine whether there is harmful activity on your network traffic that you have recorded on the network you monitor. This Python script analyzes network traffic in a given .pcap file and attempts to detect the following suspicious network activities and attack...

7.1AI score
Exploits0References2
nvd
nvd
added 2023/06/30 10:15 p.m.31 views

CVE-2023-1206

A hash collision flaw was found in the IPv6 connection lookup table in the Linux kernel’s IPv6 functionality when a user makes a new kind of SYN flood attack. A user located in the local network or with a high bandwidth connection can increase the CPU usage of the server that accepts IPV6...

5.7CVSS6.3AI score0.00553EPSS
Exploits0References6
osv
osv
added 2023/06/30 10:15 p.m.6 views

CVE-2023-1206

A hash collision flaw was found in the IPv6 connection lookup table in the Linux kernel’s IPv6 functionality when a user makes a new kind of SYN flood attack. A user located in the local network or with a high bandwidth connection can increase the CPU usage of the server that accepts IPV6...

5.7CVSS6.1AI score
Exploits0References6
ubuntucve
ubuntucve
added 2023/06/30 10:15 p.m.56 views

CVE-2023-1206

A hash collision flaw was found in the IPv6 connection lookup table in the Linux kernel’s IPv6 functionality when a user makes a new kind of SYN flood attack. A user located in the local network or with a high bandwidth connection can increase the CPU usage of the server that accepts IPV6...

5.7CVSS6.6AI score0.00553EPSS
Exploits0References17
debiancve
debiancve
added 2023/06/30 12:0 a.m.56 views

CVE-2023-1206

A hash collision flaw was found in the IPv6 connection lookup table in the Linux kernel’s IPv6 functionality when a user makes a new kind of SYN flood attack. A user located in the local network or with a high bandwidth connection can increase the CPU usage of the server that accepts IPV6...

5.7CVSS7.4AI score0.00553EPSS
Exploits0
cve
cve
added 2023/06/30 12:0 a.m.598 views

CVE-2023-1206

CVE-2023-1206 describes a hash collision flaw in the Linux kernel’s IPv6 connection lookup table that can allow a local attacker or a user with high bandwidth to cause significant CPU spike (up to 95%) on the server accepting IPv6 connections. Connected advisories show this CVE being addressed in...

5.7CVSS6.3AI score0.00553EPSS
Exploits0References6Affected Software1
cvelist
cvelist
added 2023/06/30 12:0 a.m.52 views

CVE-2023-1206

A hash collision flaw was found in the IPv6 connection lookup table in the Linux kernel’s IPv6 functionality when a user makes a new kind of SYN flood attack. A user located in the local network or with a high bandwidth connection can increase the CPU usage of the server that accepts IPV6...

6.6AI score0.00553EPSS
Exploits0References6
redhatcve
redhatcve
added 2023/06/25 10:15 a.m.88 views

CVE-2023-1206

A hash collision flaw was found in the IPv6 connection lookup table in the Linux kernel’s IPv6 functionality when a user makes a new kind of SYN flood attack. A user located in the local network or with a high bandwidth connection can increase the CPU usage of the server that accepts IPV6...

5.7CVSS6.4AI score0.00553EPSS
Exploits0References4
cnnvd
cnnvd
added 2023/04/04 12:0 a.m.5 views

Directus 资源管理错误漏洞

Directus is a real-time Api and application dashboard. It is used to manage Sql database content. A security vulnerability exists in the Directus API version v.2.2.0. A remote attacker could exploit this vulnerability to cause a denial of service via a large number of HTTP requests to the system...

6.5CVSS6.6AI score0.01079EPSS
Exploits1References2
susecve
susecve
added 2023/02/15 4:25 a.m.6 views

SUSE CVE-2018-14624

A vulnerability was discovered in 389-ds-base through versions 1.3.7.10, 1.3.8.8 and 1.4.0.16. The lock controlling the error log was not correctly used when re-opening the log file in logerroremergency. An attacker could send a flood of modifications to a very large DN, which would cause slapd t...

7.5CVSS6.8AI score0.02451EPSS
Exploits1References6
susecve
susecve
added 2023/02/15 4:14 a.m.5 views

SUSE CVE-2019-9512

Some HTTP/2 implementations are vulnerable to ping floods, potentially leading to a denial of service. The attacker sends continual pings to an HTTP/2 peer, causing the peer to build an internal queue of responses. Depending on how efficiently this data is queued, this can consume excess CPU,...

7.5CVSS9AI score0.83433EPSS
Exploits1References21
susecve
susecve
added 2023/02/15 3:31 a.m.5 views

SUSE CVE-2022-3094

Sending a flood of dynamic DNS updates may cause named to allocate large amounts of memory. This, in turn, may cause named to exit due to a lack of free memory. We are not aware of any cases where this has been exploited. Memory is allocated prior to the checking of access permissions ACLs and is...

6.5CVSS7.7AI score0.13108EPSS
Exploits0References11
packetstorm
packetstorm
added 2022/12/15 12:0 a.m.241 views

SOUND4 IMPACT/FIRST/PULSE/Eco 2.x ICMP Flood Attack

SOUND4 IMPACT/FIRST/PULSE/Eco =2.x ping/traceroute ICMP Flood Attack Vendor: SOUND4 Ltd. Product web page: https://www.sound4.com | https://www.sound4.biz Affected version: FM/HD Radio Processing: Impact/Pulse/First Version 2: 1.1/2.15 Impact/Pulse/First Version 1: 2.1/1.69 Impact/Pulse Eco 1.16...

7.4AI score
Exploits0
zeroscience
zeroscience
added 2022/12/14 12:0 a.m.249 views

SOUND4 IMPACT/FIRST/PULSE/Eco <=2.x (ping/traceroute) ICMP Flood Attack

Summary The SOUND4 IMPACT introduces an innovative process - mono and stereo parts of the signal are processed separately to obtain perfect consistency in terms of both sound and level. Therefore, in moving reception, when the FM receiver switches from stereo to mono and back to stereo, the sound...

8.7CVSS6AI score0.0074EPSS
Exploits2
osv
osv
added 2022/09/21 11:15 a.m.5 views

ALPINE-CVE-2022-2795

By flooding the target resolver with queries exploiting this flaw an attacker can significantly impair the resolver's performance, effectively denying legitimate clients access to the DNS resolution service...

5.3CVSS6.9AI score0.01495EPSS
Exploits0References1
Rows per page
Query Builder