Lucene search
+L

176 matches found

NVD
NVD
added 2019/05/16 2:29 a.m.21 views

CVE-2019-1832

A vulnerability in the detection engine of Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to bypass configured access control policies. The vulnerability is due to improper validation of ICMP packets. An attacker could exploit this vulnerability by...

7.5CVSS6.3AI score0.01647EPSS
Exploits0References2
OSV
OSV
added 2019/05/16 2:29 a.m.3 views

CVE-2019-1832

A vulnerability in the detection engine of Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to bypass configured access control policies. The vulnerability is due to improper validation of ICMP packets. An attacker could exploit this vulnerability by...

7.5CVSS6.8AI score0.01647EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2019/05/16 1:15 a.m.7 views

CVE-2019-1832 Cisco Firepower Threat Defense Software Detection Engine Policy Bypass Vulnerability

A vulnerability in the detection engine of Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to bypass configured access control policies. The vulnerability is due to improper validation of ICMP packets. An attacker could exploit this vulnerability by...

5.8CVSS7.3AI score0.01647EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/05/08 12:0 a.m.12 views

Siemens SIMATIC S7-400 PN CPUs 6.0.1 and 6.0.2 ICMP Packets DOS

Binary data 720185.prm...

7.8CVSS7AI score0.03464EPSS
Exploits0References2
Prion
Prion
added 2018/12/06 11:29 p.m.18 views

Information disclosure

Amazon Web Services AWS FreeRTOS through 1.3.1, FreeRTOS up to V10.0.1 with FreeRTOS+TCP, and WITTENSTEIN WHIS Connect middleware TCP/IP component allow information disclosure during parsing of ICMP packets in prvProcessICMPPacket...

4.3CVSS5.6AI score0.0185EPSS
Exploits1References3Affected Software2
Cvelist
Cvelist
added 2018/12/06 11:0 p.m.20 views

CVE-2018-16527

Amazon Web Services AWS FreeRTOS through 1.3.1, FreeRTOS up to V10.0.1 with FreeRTOS+TCP, and WITTENSTEIN WHIS Connect middleware TCP/IP component allow information disclosure during parsing of ICMP packets in prvProcessICMPPacket...

5.6AI score0.0185EPSS
Exploits1References3
Prion
Prion
added 2017/12/13 9:29 a.m.13 views

Code injection

MikroTik v6.40.5 devices allow remote attackers to cause a denial of service via a flood of ICMP packets...

7.8CVSS7.4AI score0.07788EPSS
Exploits1References1Affected Software1
The Hacker News
The Hacker News
added 2016/11/13 11:50 p.m.17 views

Even A Single Computer Can Take Down Big Servers Using BlackNurse Attack

Yes, you only need a single laptop with a decent internet connection, rather a massive botnet, to launch overwhelming denial of service DoS attacks in order to bring down major Internet servers and modern-day firewalls. Researchers at TDC Security Operations Center have discovered a new attack...

6.9AI score
Exploits0
NVD
NVD
added 2016/10/05 8:59 p.m.19 views

CVE-2016-6378

Cisco IOS XE 3.1 through 3.17 and 16.1 through 16.2 allows remote attackers to cause a denial of service device reload via crafted ICMP packets that require NAT, aka Bug ID CSCuw85853...

7.8CVSS7.4AI score0.01939EPSS
Exploits0References3
Cvelist
Cvelist
added 2016/10/05 8:0 p.m.26 views

CVE-2016-6378

Cisco IOS XE 3.1 through 3.17 and 16.1 through 16.2 allows remote attackers to cause a denial of service device reload via crafted ICMP packets that require NAT, aka Bug ID CSCuw85853...

7.4AI score0.01939EPSS
Exploits0References3
CVE
CVE
added 2016/10/05 8:0 p.m.51 views

CVE-2016-6378

CVE-2016-6378 affects Cisco IOS XE, where NAT processing of ICMP packets can be abused to cause a device reload (DoS). Affected versions include IOS XE 3.1–3.17 and 16.1–16.2. Root cause is improper handling of malformed ICMP packets requiring NAT, per Cisco’s advisory and CVE record. The issue i...

7.8CVSS7.4AI score0.01939EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2016/07/31 8:39 p.m.5 views

MGASA-2016-0270 Updated glibc and libtirpc packages fixes security vulnerability

A stack-based buffer overflow in the clntudpcall function in sunrpc/clntudp.c in the GNU C Library aka glibc or libc6 allows remote servers to cause a denial of service crash or possibly unspecified other impact via a flood of crafted ICMP and UDP packets CVE-2016-4429. A similar issue was fixed ...

5.9CVSS6.6AI score0.03922EPSS
Exploits0References2
Prion
Prion
added 2016/06/27 10:59 a.m.18 views

Design/Logic Flaw

The icmpchecksysrq function in net/ipv4/icmp.c in the kernel.org projects/rt patches for the Linux kernel, as used in the kernel-rt package before 3.10.0-327.22.1 in Red Hat Enterprise Linux for Real Time 7 and other products, allows remote attackers to execute SysRq commands via crafted ICMP Ech...

6.8CVSS7.4AI score0.03387EPSS
Exploits0References7Affected Software4
OSV
OSV
added 2016/06/10 3:59 p.m.0 views

DEBIAN-CVE-2016-4429

Stack-based buffer overflow in the clntudpcall function in sunrpc/clntudp.c in the GNU C Library aka glibc or libc6 allows remote servers to cause a denial of service crash or possibly unspecified other impact via a flood of crafted ICMP and UDP packets...

5.9CVSS9.5AI score0.03922EPSS
Exploits0References1
OSV
OSV
added 2016/06/10 12:0 a.m.8 views

UBUNTU-CVE-2016-4429

Stack-based buffer overflow in the clntudpcall function in sunrpc/clntudp.c in the GNU C Library aka glibc or libc6 allows remote servers to cause a denial of service crash or possibly unspecified other impact via a flood of crafted ICMP and UDP packets...

9.8CVSS7.1AI score0.03922EPSS
Exploits0References5
NVD
NVD
added 2016/05/14 1:59 a.m.21 views

CVE-2016-1399

The packet-processing microcode in Cisco IOS 15.22EA, 15.22EA1, 15.22EA2, and 15.24EA on Industrial Ethernet 4000 devices and 15.22EB and 15.22EB1 on Industrial Ethernet 5000 devices allows remote attackers to cause a denial of service packet data corruption via crafted IPv4 ICMP packets, aka Bug...

7.5CVSS7.4AI score0.02471EPSS
Exploits0References4
Cvelist
Cvelist
added 2016/05/14 1:0 a.m.25 views

CVE-2016-1399

The packet-processing microcode in Cisco IOS 15.22EA, 15.22EA1, 15.22EA2, and 15.24EA on Industrial Ethernet 4000 devices and 15.22EB and 15.22EB1 on Industrial Ethernet 5000 devices allows remote attackers to cause a denial of service packet data corruption via crafted IPv4 ICMP packets, aka Bug...

7.4AI score0.02471EPSS
Exploits0References4
CNVD
CNVD
added 2016/01/15 12:0 a.m.7 views

Denial of Service Vulnerability in Multiple F5 BIG-IP Products

F5 BIG-IP is an equipment product manufactured by F5 Network for application delivery services, mainly used for load balancing, service acceleration optimization and other purposes. A security vulnerability exists in several F5 BIG-IP products, which allows remote attackers to conduct...

4.3CVSS6.9AI score0.01516EPSS
Exploits0References1
NVD
NVD
added 2016/01/12 8:59 p.m.24 views

CVE-2015-7759

BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, Link Controller, and PEM 12.0.0 before HF1, when the TCP profile for a virtual server is configured with Congestion Metrics Cache enabled, allow remote attackers to cause a denial of service Traffic Management Microkernel TMM restart via crafted ICMP...

4.3CVSS4.3AI score0.01516EPSS
Exploits0References2
Prion
Prion
added 2016/01/12 8:59 p.m.15 views

Design/Logic Flaw

BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, Link Controller, and PEM 12.0.0 before HF1, when the TCP profile for a virtual server is configured with Congestion Metrics Cache enabled, allow remote attackers to cause a denial of service Traffic Management Microkernel TMM restart via crafted ICMP...

4.3CVSS7.2AI score0.01516EPSS
Exploits0References2Affected Software8
Rows per page
Query Builder