Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

38 matches found

NVD
NVDadded 2026/04/13 2:16 p.m.1 views

CVE-2026-31417

In the Linux kernel, the following vulnerability has been resolved: net/x25: Fix overflow when accumulating packets Add a check to ensure that x25sock.fraglen does not overflow. The fraglen also needs to be resetted when purging fragmentqueue in x25clearqueues...

7.5CVSS0.00118EPSS
Exploits0References8
EUVD
EUVDadded 2026/02/04 5:58 p.m.3 views

EUVD-2026-5376

ESF-IDF is the Espressif Internet of Things IOT Development Framework. In versions 5.5.2, 5.4.3, 5.3.4, 5.2.6, and 5.1.6, a vulnerability exists in the WPS Wi-Fi Protected Setup Enrollee implementation where malformed EAP-WSC packets with truncated payloads can cause integer underflow during...

6.3CVSS5.5AI score0.00044EPSS
Exploits0References8
Positive Technologies
Positive Technologiesadded 2026/02/04 12:0 a.m.3 views

PT-2026-6314

Name of the Vulnerable Software and Affected Versions Espressif Internet of Things IOT Development Framework versions 5.1.6 through 5.5.2 Description The Espressif Internet of Things IOT Development Framework contains a flaw in the WPS Wi-Fi Protected Setup Enrollee implementation. Malformed...

6.3CVSS5.6AI score0.00044EPSS
Exploits0References12
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2017-3034

Malware in sbrugna...

7.5CVSS7.6AI score0.01179EPSS
Exploits0References10
Vulnrichment
Vulnrichmentadded 2025/05/01 2:10 p.m.1 views

CVE-2022-49908 Bluetooth: L2CAP: Fix memory leak in vhci_write

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix memory leak in vhciwrite Syzkaller reports a memory leak as follows: ==================================== BUG: memory leak unreferenced object 0xffff88810d81ac00 size 240: ... hex dump first 32 bytes: 00 00 ...

6.1AI score0.00023EPSS
Exploits0References3
OSV
OSVadded 2024/08/22 4:15 a.m.2 views

DEBIAN-CVE-2022-48938

In the Linux kernel, the following vulnerability has been resolved: CDC-NCM: avoid overflow in sanity checking A broken device may give an extreme offset like 0xFFF0 and a reasonable length for a fragment. In the sanity check as formulated now, this will create an integer overflow, defeating the...

5.5CVSS5.2AI score0.00022EPSS
Exploits0References1
SUSE CVE
SUSE CVEadded 2023/02/15 5:36 a.m.2 views

SUSE CVE-2013-4083

The dissectpft function in epan/dissectors/packet-dcp-etsi.c in the DCP ETSI dissector in Wireshark 1.6.x before 1.6.16, 1.8.x before 1.8.8, and 1.10.0 does not validate a certain fragment length value, which allows remote attackers to cause a denial of service application crash via a crafted...

5CVSS7.3AI score0.0079EPSS
Exploits0References6
SUSE CVE
SUSE CVEadded 2023/02/15 5:36 a.m.3 views

SUSE CVE-2013-4408

Heap-based buffer overflow in the dcerpcreadncacnpacketdone function in librpc/rpc/dcerpcutil.c in winbindd in Samba 3.x before 3.6.22, 4.0.x before 4.0.13, and 4.1.x before 4.1.3 allows remote AD domain controllers to execute arbitrary code via an invalid fragment length in a DCE-RPC packet...

8.3CVSS8.4AI score0.0295EPSS
Exploits0References11
SUSE CVE
SUSE CVEadded 2023/02/15 5:32 a.m.2 views

SUSE CVE-2014-0195

The dtls1reassemblefragment function in d1both.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h does not properly validate fragment lengths in DTLS ClientHello messages, which allows remote attackers to execute arbitrary code or cause a denial of service buffer overflow a...

6.8CVSS8.1AI score0.92751EPSS
Exploits4References14
SUSE CVE
SUSE CVEadded 2023/02/15 4:42 a.m.0 views

SUSE CVE-2017-11407

In Wireshark 2.2.0 to 2.2.7 and 2.0.0 to 2.0.13, the MQ dissector could crash. This was addressed in epan/dissectors/packet-mq.c by validating the fragment length before a reassembly attempt...

7.5CVSS6.8AI score0.01179EPSS
Exploits0References5
Veracode
Veracodeadded 2019/01/15 8:53 a.m.26 views

Remote Code Execution (RCE)

samba4 is vulnerable to remote code execution RCE attacks. The vulnerability exists through a heap-based buffer overflow in the dcerpcreadncacnpacketdone function in librpc/rpc/dcerpcutil.c in winbindd in Samba 3.x before 3.6.22, 4.0.x before 4.0.13, and 4.1.x before 4.1.3 allows remote AD domain...

8.3CVSS8.3AI score0.0295EPSS
Exploits1References25Affected Software2
RedhatCVE
RedhatCVEadded 2017/07/19 11:50 a.m.38 views

CVE-2017-11407

In Wireshark 2.2.0 to 2.2.7 and 2.0.0 to 2.0.13, the MQ dissector could crash. This was addressed in epan/dissectors/packet-mq.c by validating the fragment length before a reassembly attempt...

7.5CVSS1.2AI score0.01179EPSS
Exploits0References2
Prion
Prionadded 2017/07/18 9:29 p.m.19 views

Design/Logic Flaw

In Wireshark 2.2.0 to 2.2.7 and 2.0.0 to 2.0.13, the MQ dissector could crash. This was addressed in epan/dissectors/packet-mq.c by validating the fragment length before a reassembly attempt...

5CVSS7.2AI score0.01179EPSS
Exploits0References6Affected Software2
OSV
OSVadded 2017/07/18 9:29 p.m.0 views

UBUNTU-CVE-2017-11407

In Wireshark 2.2.0 to 2.2.7 and 2.0.0 to 2.0.13, the MQ dissector could crash. This was addressed in epan/dissectors/packet-mq.c by validating the fragment length before a reassembly attempt...

7.5CVSS7.1AI score0.01179EPSS
Exploits0References4
OSV
OSVadded 2017/07/18 9:29 p.m.1 views

DEBIAN-CVE-2017-11407

In Wireshark 2.2.0 to 2.2.7 and 2.0.0 to 2.0.13, the MQ dissector could crash. This was addressed in epan/dissectors/packet-mq.c by validating the fragment length before a reassembly attempt...

7.5CVSS7.7AI score0.01179EPSS
Exploits0References1
OSV
OSVadded 2017/07/18 9:29 p.m.1 views

ALPINE-CVE-2017-11407

In Wireshark 2.2.0 to 2.2.7 and 2.0.0 to 2.0.13, the MQ dissector could crash. This was addressed in epan/dissectors/packet-mq.c by validating the fragment length before a reassembly attempt...

7.5CVSS6.8AI score0.01179EPSS
Exploits0References1
Debian CVE
Debian CVEadded 2017/07/18 9:0 p.m.22 views

CVE-2017-11407

In Wireshark 2.2.0 to 2.2.7 and 2.0.0 to 2.0.13, the MQ dissector could crash. This was addressed in epan/dissectors/packet-mq.c by validating the fragment length before a reassembly attempt...

7.5CVSS1.2AI score0.01179EPSS
Exploits0
Tenable Nessus
Tenable Nessusadded 2016/12/12 12:0 a.m.58 views

openSUSE Security Update : the Linux Kernel (openSUSE-2016-1426)

The openSUSE Leap 42.2 kernel was updated to 4.4.36 to receive various security and bugfixes. The following security bugs were fixed : - CVE-2015-1350: The VFS subsystem in the Linux kernel 3.x provides an incomplete set of requirements for setattr operations that underspecifies removing extended...

10CVSS7.8AI score0.4799EPSS
Exploits17References100
OSV
OSVadded 2016/12/10 12:59 a.m.2 views

CVE-2016-6834

The nettxpktdoswfragmentation function in hw/net/nettxpkt.c in QEMU aka Quick Emulator allows local guest OS administrators to cause a denial of service infinite loop and QEMU process crash via a zero length for the current fragment length...

4.4CVSS6.5AI score
Exploits0References7
Cvelist
Cvelistadded 2016/12/10 12:0 a.m.20 views

CVE-2016-6834

The nettxpktdoswfragmentation function in hw/net/nettxpkt.c in QEMU aka Quick Emulator allows local guest OS administrators to cause a denial of service infinite loop and QEMU process crash via a zero length for the current fragment length...

6.1AI score0.00111EPSS
Exploits0References7
Rows per page
Query Builder