CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1034 matches found

CVE•added 2024/10/21 7:39 p.m.•156 views

CVE-2024-50045

The CVE-2024-50045 entry concerns a Linux kernel vulnerability in br_netfilter that can panic (crash) when forwarding untagged frames via a VxLAN bridge port, due to an invalid skb_dst handling during fragmentation checks. The root cause is a metadata_dst tunnel destination being treated as valid...

5.5CVSS5AI score0.00012EPSS

Exploits0References13Affected Software1

OSV•added 2024/10/21 7:39 p.m.•12 views

CVE-2024-50045 netfilter: br_netfilter: fix panic with metadata_dst skb

In the Linux kernel, the following vulnerability has been resolved: netfilter: brnetfilter: fix panic with metadatadst skb Fix a kernel panic in the brnetfilter module when sending untagged traffic via a VxLAN device. This happens during the check for fragmentation in brnfdevqueuexmit. It is...

5.5CVSS6.1AI score0.00012EPSS

Exploits0References13

OSV•added 2024/10/21 6:15 p.m.•3 views

DEBIAN-CVE-2024-49949

In the Linux kernel, the following vulnerability has been resolved: net: avoid potential underflow in qdiscpktleninit with UFO After commit 7c6d2ecbda83 "net: be more gentle about silly gso requests coming from user" virtionethdrtoskb had sanity check to detect malicious attempts from user space ...

5.5CVSS5.8AI score0.00011EPSS

Exploits0References1

OSV•added 2024/10/21 6:15 p.m.•0 views

UBUNTU-CVE-2024-49978

In the Linux kernel, the following vulnerability has been resolved: gso: fix udp gso fraglist segmentation after pull from fraglist Detect gso fraglist skbs with corrupted geometry see below and pass these to skbsegment instead of skbsegmentlist, as the first can segment them correctly. Valid...

5.5CVSS6.2AI score0.00007EPSS

Exploits0References23

Cvelist•added 2024/10/21 6:2 p.m.•12 views

CVE-2024-49978 gso: fix udp gso fraglist segmentation after pull from frag_list

0.00007EPSS

Exploits0References5

NVD•added 2024/10/21 12:15 p.m.•6 views

CVE-2024-47719

In the Linux kernel, the following vulnerability has been resolved: iommufd: Protect against overflow of ALIGN during iova allocation Userspace can supply an iova and uptr such that the target iova alignment becomes really big and ALIGN overflows which corrupts the selected area range during...

7.8CVSS0.00024EPSS

Exploits0References4

CVE•added 2024/10/21 11:53 a.m.•150 views

CVE-2024-47719

CVE-2024-47719 (Linux kernel) concerns iommufd:ALIGN() overflow during iova allocation, which can corrupt the selected area range. The fix caps the automatic alignment to the huge page size to prevent fragmentation/space waste and Overflow, per the advisory. Affected component: iommufd/io_pagetab...

7.8CVSS7.4AI score0.00024EPSS

Exploits0References4Affected Software1

Cvelist•added 2024/10/21 11:53 a.m.•18 views

CVE-2024-47719 iommufd: Protect against overflow of ALIGN() during iova allocation

0.00024EPSS

Exploits0References4

CNNVD•added 2024/10/21 12:0 a.m.•1 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from improper assumptions about RCU read locks in the ip6fragment function in the ipv6 subsystem when processing...

7.8CVSS6.5AI score0.00013EPSS

Exploits0References10

Positive Technologies•added 2024/10/21 12:0 a.m.•2 views

PT-2024-33820

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.6.58 Description: The issue concerns the Linux kernel, where a vulnerability has been resolved related to the handling of UDP GSO fraglist segmentation after data is pulled from the frag list. This occurs when...

5.5CVSS5.3AI score0.00007EPSS

Exploits0

SUSE Linux•added 2024/10/16 9:33 a.m.•3 views

Security update for the Linux Kernel (Live Patch 47 for SLE 15 SP2)

This update for the Linux Kernel 5.3.18-15020024188 fixes several issues. The following security issues were fixed: CVE-2024-35861: Fixed potential UAF in cifssignalcifsdforreconnect bsc1225312. CVE-2021-47291: ipv6: fix another slab-out-of-bounds in fib6nhflushexceptions bsc1227651...

7.8CVSS7.8AI score0.0072EPSS

Exploits2References64

Microsoft CVE•added 2024/10/15 12:0 a.m.•2 views

CVE-2021-23192

...

7.5CVSS7.2AI score0.00106EPSS

Exploits0

BDU FSTEC•added 2024/10/10 12:0 a.m.•1 views

The vulnerability of the IPv4 Fragmentation Handler component in Cisco IOS XE router operating systems such as Cisco ASR 1000 and Cisco cBR-8 allows a attacker to cause a service failure.

The vulnerability of the IPv4 Fragmentation Handler component in Cisco IOS XE routers of the Cisco ASR 1000 and Cisco cBR-8 family is related to resource management errors. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

8.6CVSS5.4AI score0.141EPSS

Exploits0References5Affected Software1

OSV•added 2024/09/25 5:15 p.m.•2 views

CVE-2024-20467

A vulnerability in the implementation of the IPv4 fragmentation reassembly code in Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to improper management of resources during fragment...

8.6CVSS5.9AI score0.141EPSS

Exploits0References1

NVD•added 2024/09/25 5:15 p.m.•12 views

CVE-2024-20467

8.6CVSS0.141EPSS

Exploits0References1

CVE•added 2024/09/25 4:28 p.m.•71 views

CVE-2024-20467

Cisco IOS XE Software contains a vulnerability in the IPv4 fragmentation reassembly code that could allow an unauthenticated, remote attacker to cause a DoS by sending specific sizes of fragmented packets or via a Virtual Fragmentation Reassembly (VFR) interface. Affected devices are Cisco ASR 10...

8.6CVSS7.4AI score0.141EPSS

Exploits0References1Affected Software1