Lucene search
K

91 matches found

NVD
NVD
added 2024/04/15 11:15 a.m.31 views

CVE-2024-23911

Out-of-bounds read vulnerability caused by improper checking of the option length values in IPv6 NDP packets exists in Cente middleware TCP/IP Network Series, which may allow an unauthenticated attacker to stop the device operations by sending a specially crafted packet...

7.5CVSS6.5AI score0.00608EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/04/15 10:48 a.m.20 views

CVE-2024-28957

Generation of predictable identifiers issue exists in Cente middleware TCP/IP Network Series. If this vulnerability is exploited, a remote unauthenticated attacker may interfere communications by predicting some packet header IDs of the device...

7.1AI score0.00761EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/04/15 10:48 a.m.34 views

CVE-2024-28957

Generation of predictable identifiers issue exists in Cente middleware TCP/IP Network Series. If this vulnerability is exploited, a remote unauthenticated attacker may interfere communications by predicting some packet header IDs of the device...

7AI score0.00761EPSS
Exploits0References3
CVE
CVE
added 2024/04/15 10:48 a.m.70 views

CVE-2024-28957

The CVE-2024-28957 vulnerability affects Cente middleware TCP/IP Network Series devices. It is a predictable-IDs issue (CWE-340) where an attacker, remotely and without authentication, could disrupt or interfere communications by guessing packet header IDs. The Red Hat advisory and NVD records de...

5.3CVSS7AI score0.00761EPSS
Exploits0References3Affected Software6
Vulnrichment
Vulnrichment
added 2024/04/15 10:47 a.m.14 views

CVE-2024-28894

Out-of-bounds read vulnerability caused by improper checking of the option length values in IPv6 headers exists in Cente middleware TCP/IP Network Series, which may allow an unauthenticated attacker to stop the device operations by sending a specially crafted packet...

6.8AI score0.00539EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/04/15 10:47 a.m.29 views

CVE-2024-28894

Out-of-bounds read vulnerability caused by improper checking of the option length values in IPv6 headers exists in Cente middleware TCP/IP Network Series, which may allow an unauthenticated attacker to stop the device operations by sending a specially crafted packet...

6.7AI score0.00539EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/04/15 12:0 a.m.5 views

PT-2024-20168 · Unknown · Cente Middleware Tcp/Ip Network Series

Name of the Vulnerable Software and Affected Versions: Cente middleware TCP/IP Network Series affected versions not specified Description: An out-of-bounds read issue exists due to improper checking of the option length values in IPv6 NDP packets. This may allow an unauthenticated attacker to sto...

7.5CVSS6.2AI score0.00608EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2024/04/15 12:0 a.m.5 views

PT-2024-22634 · Unknown · Cente Middleware Tcp/Ip Network Series

Name of the Vulnerable Software and Affected Versions: Cente middleware TCP/IP Network Series affected versions not specified Description: An out-of-bounds read issue exists due to improper checking of the option length values in IPv6 headers. This may allow an unauthenticated attacker to stop...

5.3CVSS6.2AI score0.00539EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2024/04/15 12:0 a.m.6 views

PT-2024-22643 · Unknown · Cente Middleware Tcp/Ip Network Series

Name of the Vulnerable Software and Affected Versions: Cente middleware TCP/IP Network Series affected versions not specified Description: A generation of predictable identifiers issue exists in the Cente middleware TCP/IP Network Series. If this issue is exploited, a remote unauthenticated...

5.3CVSS6.4AI score0.00761EPSS
Exploits0References8
AlmaLinux
AlmaLinux
added 2024/04/12 12:0 a.m.65 views

Important: bind and dhcp security update

The Berkeley Internet Name Domain BIND is an implementation of the Domain Name System DNS protocols. BIND includes a DNS server named; a resolver library routines for applications to use when interfacing with DNS; and tools for verifying that the DNS server is operating correctly. The Dynamic Hos...

7.5CVSS7.2AI score0.99995EPSS
Exploits1References8
Cvelist
Cvelist
added 2024/04/02 11:31 p.m.25 views

CVE-2024-3218 Shibang Communications IP Network Intercom Broadcasting System busyscreenshotpush.php path traversal

A vulnerability classified as critical has been found in Shibang Communications IP Network Intercom Broadcasting System 1.0. This affects an unknown part of the file /php/busyscreenshotpush.php. The manipulation of the argument jsondatacallee/jsondataimagename leads to path traversal: '../filedir...

5.5CVSS5.9AI score0.00651EPSS
Exploits0References4
CVE
CVE
added 2024/04/02 11:31 p.m.48 views

CVE-2024-3218

The CVE-2024-3218 entry affects Shibang Communications IP Network Intercom Broadcasting System v1.0, specifically the /php/busyscreenshotpush.php endpoint. The vulnerability arises from path traversal via manipulation of jsondata[callee]/jsondata[imagename] to escalate outside the intended direct...

5.5CVSS5.6AI score0.00651EPSS
Exploits0References4
Gentoo Linux
Gentoo Linux
added 2024/02/04 12:0 a.m.29 views

NBD Tools: Multiple Vulnerabilities

Background The NBD Tools are the Network Block Device utilities allowing one to use remote block devices over a TCP/IP network. It includes a userland NBD server. Description Multiple vulnerabilities have been discovered in NBD Tools. Please review the CVE identifiers referenced below for details...

9.8CVSS7.8AI score0.0347EPSS
Exploits3
The Hacker News
The Hacker News
added 2024/01/18 9:19 a.m.622 views

PixieFail UEFI Flaws Expose Millions of Computers to RCE, DoS, and Data Theft

Multiple security vulnerabilities have been disclosed in the TCP/IP network protocol stack of an open-source reference implementation of the Unified Extensible Firmware Interface UEFI specification used widely in modern computers. Collectively dubbed PixieFail by Quarkslab, the nine issues reside...

8.8CVSS8.2AI score0.02084EPSS
Exploits1
NVD
NVD
added 2023/12/05 1:15 a.m.19 views

CVE-2023-48316

Azure RTOS NetX Duo is a TCP/IP network stack designed specifically for deeply embedded real-time and IoT applications. An attacker can cause remote code execution due to memory overflow vulnerabilities in Azure RTOS NETX Duo. The affected components include processes/functions related to snmp,...

9.8CVSS0.04332EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/12/05 12:24 a.m.17 views

CVE-2023-48692 Azure RTOS NetX Duo Remote Code Execution Vulnerability

Azure RTOS NetX Duo is a TCP/IP network stack designed specifically for deeply embedded real-time and IoT applications. An attacker can cause remote code execution due to memory overflow vulnerabilities in Azure RTOS NETX Duo. The affected components include processes/functions related to icmp,...

9CVSS10AI score0.03134EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/12/05 12:24 a.m.31 views

CVE-2023-48315 Azure RTOS NetX Duo Remote Code Execution Vulnerability

Azure RTOS NetX Duo is a TCP/IP network stack designed specifically for deeply embedded real-time and IoT applications. An attacker can cause remote code execution due to memory overflow vulnerabilities in Azure RTOS NETX Duo. The affected components include processes/functions related to ftp and...

8.8CVSS10AI score0.03899EPSS
Exploits0References1
OSV
OSV
added 2023/05/16 12:0 a.m.30 views

ALSA-2023:3000 Moderate: dhcp security and bug fix update

The Dynamic Host Configuration Protocol DHCP is a protocol that allows individual devices on an IP network to get their own network configuration information, including an IP address, a subnet mask, and a broadcast address. The dhcp packages provide a relay agent and ISC DHCP service required to...

6.5CVSS7.1AI score0.00664EPSS
Exploits0References6
OSV
OSV
added 2023/05/09 12:0 a.m.21 views

ALSA-2023:2502 Moderate: dhcp security and enhancement update

The Dynamic Host Configuration Protocol DHCP is a protocol that allows individual devices on an IP network to get their own network configuration information, including an IP address, a subnet mask, and a broadcast address. The dhcp packages provide a relay agent and ISC DHCP service required to...

6.5CVSS7.1AI score0.00664EPSS
Exploits0References6
Rockylinux
Rockylinux
added 2022/11/15 6:23 a.m.38 views

dhcp security and enhancement update

An update is available for dhcp. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The Dynamic Host Configuration Protocol DHCP is a protocol that allows individua...

6.8CVSS7.2AI score0.0325EPSS
Exploits0
Rows per page
Query Builder