Lucene search
K

303 matches found

OSV
OSV
added 2019/04/23 3:29 a.m.3 views

UBUNTU-CVE-2013-7470

cipsov4validate in include/net/cipsoipv4.h in the Linux kernel before 3.11.7, when CONFIGNETLABEL is disabled, allows attackers to cause a denial of service infinite loop and crash, as demonstrated by icmpsic, a different vulnerability than CVE-2013-0310...

5.9CVSS6.8AI score0.02544EPSS
Exploits0References3
OSV
OSV
added 2018/10/05 2:29 p.m.4 views

CVE-2018-0472

A vulnerability in the IPsec driver code of multiple Cisco IOS XE Software platforms and the Cisco ASA 5500-X Series Adaptive Security Appliance ASA could allow an unauthenticated, remote attacker to cause the device to reload. The vulnerability is due to improper processing of malformed IPsec...

8.6CVSS5.8AI score0.16221EPSS
Exploits0References5
OSV
OSV
added 2018/10/02 7:29 p.m.5 views

CVE-2018-9511

In ipSecSetEncapSocketOwner of XfrmController.cpp, there is a possible failure to initialize a security feature due to uninitialized data. This could lead to local denial of service of IPsec on sockets with no additional execution privileges needed. User interaction is not needed for exploitation...

5.5CVSS5.9AI score0.00217EPSS
Exploits0References4
CNVD
CNVD
added 2018/09/28 12:0 a.m.3 views

Cisco IOS XE Software and Cisco ASA 5500-X Series Adaptive Security Appliance IPsec Denial of Service Vulnerability

Cisco IOS XE Software is the operating system for Cisco network appliances, and Cisco ASA 5500-X Series Adaptive Security Appliance IPsec is a security appliance from cisco. A denial of service vulnerability exists in Cisco IOS XE Software and Cisco ASA 5500-X Series Adaptive Security Appliance...

8.6CVSS8.5AI score0.16221EPSS
Exploits0References1
CNVD
CNVD
added 2018/08/17 12:0 a.m.6 views

Huawei Firewall Product IPSEC IKEv1 Denial of Service Vulnerability (CNVD-2018-15518)

USG2205BSR and USG2220BSR are firewall products from Huawei. A denial of service vulnerability exists in Huawei firewall product IPSEC IKEv1. Improper handling of constructed malformed messages leads to an attacker exploiting the vulnerability to construct messages that affect the operation of th...

7.8CVSS7.3AI score0.01082EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2018/08/15 6:29 p.m.2 views

CVE-2018-9129

ZyXEL ZyWALL/USG series devices have a Bleichenbacher vulnerability in their Internet Key Exchange IKE handshake implementation used for IPsec based VPN connections...

5.9CVSS5.5AI score0.00965EPSS
Exploits0References3
CNVD
CNVD
added 2017/10/20 12:0 a.m.4 views

Cisco IOS XE Software Information Disclosure Vulnerability

Cisco IOS XE Software is an operating system developed by Cisco for its network devices. A local information disclosure vulnerability exists in the IPsec feature of Cisco IOS XE Software. An attacker could exploit the vulnerability to obtain sensitive information...

4.4CVSS4.3AI score0.00367EPSS
Exploits0References1
OSV
OSV
added 2017/10/19 8:29 a.m.4 views

CVE-2017-12289

A vulnerability in conditional, verbose debug logging for the IPsec feature of Cisco IOS XE Software could allow an authenticated, local attacker to display sensitive IPsec information in the system log file. The vulnerability is due to incorrect implementation of IPsec conditional, verbose debug...

4.4CVSS5.8AI score0.00367EPSS
Exploits0References3
NVD
NVD
added 2017/09/25 9:29 p.m.17 views

CVE-2011-4667

The encryption library in Cisco IOS Software 15.21T, 15.21T1, and 15.22T, Cisco NX-OS in Cisco MDS 9222i Multiservice Modular Switch, Cisco MDS 9000 18/4-Port Multiservice Module, and Cisco MDS 9000 Storage Services Node module before 5.26, and Cisco IOS in Cisco VPN Services Port Adaptor for...

5.9CVSS5.7AI score0.00688EPSS
Exploits0References2
Cvelist
Cvelist
added 2017/09/25 9:0 p.m.18 views

CVE-2011-4667

The encryption library in Cisco IOS Software 15.21T, 15.21T1, and 15.22T, Cisco NX-OS in Cisco MDS 9222i Multiservice Modular Switch, Cisco MDS 9000 18/4-Port Multiservice Module, and Cisco MDS 9000 Storage Services Node module before 5.26, and Cisco IOS in Cisco VPN Services Port Adaptor for...

5.7AI score0.00688EPSS
Exploits0References2
Citrix
Citrix
added 2017/09/18 12:0 a.m.7 views

NetScaler 10.1, 10.5, 11.0, 11.1 and 12.0 Builds Temporarily Offline

Citrix SD-WAN, formerly NetScaler SD-WAN UPDATE: New builds are now available. Please seehttps://support.citrix.com/article/CTX227928 for more information. Original article text: Due to an issue found in the builds, NetScaler 10.1, 10.5, 11.0, 11.1 and 12.0 builds are not available for download...

7AI score
Exploits0
CNVD
CNVD
added 2017/04/28 12:0 a.m.4 views

Cisco ASA Software Ipsec Denial of Service Vulnerability

Cisco Adaptive Security Appliance ASA Software is the core operating system for the Cisco ASA family. A denial of service vulnerability exists in Cisco ASA Software Ipsec, which can be exploited by an attacker to send malformed IPsec packets to an affected system. causing the affected device to...

7.7CVSS6.8AI score0.02842EPSS
Exploits0References1
OSV
OSV
added 2017/04/20 10:59 p.m.5 views

CVE-2017-6609

A vulnerability in the IPsec code of Cisco ASA Software could allow an authenticated, remote attacker to cause a reload of the affected system. The vulnerability is due to improper parsing of malformed IPsec packets. An attacker could exploit this vulnerability by sending malformed IPsec packets ...

7.7CVSS5.8AI score0.02842EPSS
Exploits0References3
CNVD
CNVD
added 2017/01/22 12:0 a.m.8 views

Cisco ASR 5000 Series Software Denial of Service Vulnerability (CNVD-2017-00903)

Cisco ASR 5000 Series Software is a 5000 series wireless controller product from Cisco USA. A denial of service vulnerability exists in the psecmgr process in Cisco ASR 5000 Series Software. A remote attacker can exploit this vulnerability by submitting specially crafted IKE packets to the target...

5.3CVSS6.8AI score0.02943EPSS
Exploits0References1
OSV
OSV
added 2016/11/19 3:3 a.m.5 views

CVE-2016-6466

A vulnerability in the IPsec component of StarOS for Cisco ASR 5000 Series routers could allow an unauthenticated, remote attacker to terminate all active IPsec VPN tunnels and prevent new tunnels from establishing, resulting in a denial of service DoS condition. This vulnerability affects the...

7.5CVSS5.8AI score0.02585EPSS
Exploits0References3
CERT
CERT
added 2016/09/13 12:0 a.m.55 views

AVer Information EH6108H+ hybrid DVR contains multiple vulnerabilities

Overview AVer Information EH6108H+ hybrid DVR, version X9.03.24.00.07l and possibly earlier, reportedly contains multiple vulnerabilities, including undocumented privileged accounts, authentication bypass, and information exposure. Description AVer Information EH6108H+ hybrid DVR is an IP securit...

10CVSS9.1AI score0.0258EPSS
Exploits2References5
Packet Storm
Packet Storm
added 2016/08/23 12:0 a.m.37 views

VideoIQ Camera Remote File Disclosure

"cli" die$error0; if$argc "; echo"\nExample: php $argv0 localhost 8080"; die; ifisset$argv1 && isset$argv2 $host = $argv1; $port = $argv2; $pack = "GET /%5C../%5C../%5C../%5C../%5C../%5C../%5C../%5C../%5C../%5C../%5C..FILEPATH HTTP/1.0\r\n"; $pack.= "Host: $host\r\n"; $pack.= "Connection:...

0.3AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2016/07/06 12:0 a.m.8 views

The vulnerability of Cisco PIX software allows a malicious individual to trigger a service failure.

The vulnerability in Cisco’s PIX network interface controller, when operating as a VPN client, allows malicious actors to trigger a service failure disabling the IPSec tunnel by sending a phase 1 negotiation request to the external network interface of the PIX...

5CVSS5.5AI score0.01273EPSS
Exploits0References2Affected Software1
CNVD
CNVD
added 2016/05/18 12:0 a.m.3 views

Cisco Adaptive Security Appliance Ipsec Code Denial of Service Vulnerability

Cisco Adaptive Security Appliance ASA, Adaptive Security Appliance is a set of firewall appliances from the American company Cisco Cisco. The appliance also includes IPS Intrusion Prevention System, SSL VPN, IPSec VPN, anti-spam and other features. The Cisco ASA has a security vulnerability in it...

6.8CVSS6.8AI score0.01155EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2016/05/17 12:0 a.m.3 views

PT-2016-4746 · Cisco · Cisco Asa

Name of the Vulnerable Software and Affected Versions: Cisco Adaptive Security Appliance ASA Software versions 9.0 through 9.5.1 Description: The issue is related to the mishandling of IPsec error processing, which can be exploited by remote authenticated users to cause a denial of service memory...

6.8CVSS6.4AI score0.01155EPSS
Exploits0References3
Rows per page
Query Builder