Lucene search
K

33 matches found

Tenable Nessus
Tenable Nessus
added 6 days ago3 views

Linux Distros Unpatched Vulnerability : CVE-2026-14258

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in dhcpcd's IPv6 Neighbor Discovery Router Advertisement processing. A specially crafted IPv6 Router Advertisement containing a zero-length...

6.5CVSS5.9AI score0.00248EPSS
Exploits0References4
NVD
NVD
added last week10 views

CVE-2026-14258

A flaw was found in dhcpcd's IPv6 Neighbor Discovery Router Advertisement processing. A specially crafted IPv6 Router Advertisement containing a zero-length Neighbor Discovery option can bypass validation during packet storage and later be reparsed without adequate validation, causing the parser ...

6.5CVSS0.00248EPSS
Exploits0References4
NVD
NVD
added 2026/04/29 8:16 p.m.13 views

CVE-2026-7425

Insufficient option length validation in the IPv6 Router Advertisement parser in FreeRTOS-Plus-TCP before V4.2.6 and V4.4.1 allows an adjacent network actor to cause a denial of service device crash by sending a crafted Router Advertisement with a truncated PREFIXINFORMATION option that is smalle...

6.5CVSS0.00233EPSS
Exploits0References4
CVE
CVE
added 2026/04/29 6:53 p.m.12 views

CVE-2026-7426

The CVE-2026-7426 entry concerns the IPv6 Router Advertisement handling in FreeRTOS-Plus-TCP. Insufficient validation of the prefix length field in Router Advertisement processing allows memory corruption (heap buffer overflow) on the affected stack when processing RA messages. Affected versions ...

8.1CVSS5.9AI score0.00246EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/29 6:53 p.m.5 views

CVE-2026-7426 Out-of-Bounds Write via Unsanitized Prefix Length in Router Advertisement Processing in FreeRTOS-Plus-TCP

Insufficient validation of the prefix length field in IPv6 Router Advertisement processing in FreeRTOS-Plus-TCP before V4.2.6 and V4.4.1 allows an adjacent network actor to cause memory corruption by sending a crafted Router Advertisement with a prefix length value exceeding the maximum valid...

8.1CVSS5.9AI score0.00246EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/04/29 12:0 a.m.10 views

FreeRTOS-Plus-TCP 缓冲区错误漏洞

FreeRTOS-Plus-TCP is an extensible, open-source TCP/IP stack designed for use with FreeRTOS. Versions prior to V4.2.6 and V4.4.1 of FreeRTOS-Plus-TCP contained a buffer error vulnerability. This vulnerability stemmed from insufficient option length validation in the IPv6 router advertisement...

6.5CVSS6AI score0.00233EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/04/29 12:0 a.m.12 views

FreeRTOS-Plus-TCP 缓冲区错误漏洞

FreeRTOS-Plus-TCP is an extensible, open-source TCP/IP stack designed for use with FreeRTOS. Versions prior to V4.2.6 and V4.4.1 of FreeRTOS-Plus-TCP contained a buffer error vulnerability. This vulnerability stemmed from insufficient validation of the prefix length field during IPv6 router...

8.1CVSS6AI score0.00246EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.5 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001099)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001099 advisory. The fib6addrt2node function in net/ipv6/ip6fib.c in the IPv6 stack in the Linux kernel through 3.10.1 does not properly handle Router Advertisement RA messages in...

5.4CVSS6.5AI score0.04672EPSS
Exploits1References12
RedhatCVE
RedhatCVE
added 2026/01/07 9:49 a.m.10 views

CVE-2022-27882

slaacd in OpenBSD 6.9 and 7.0 before 2022-03-22 has an integer signedness error and resultant heap-based buffer overflow triggerable by a crafted IPv6 router advertisement. NOTE: privilege separation and pledge can prevent exploitation...

7.5CVSS7.5AI score0.01877EPSS
Exploits1References1
Exploit DB
Exploit DB
added 2025/12/25 12:0 a.m.182 views

FreeBSD rtsold 15.x - Remote Code Execution via DNSSL

Exploit Title: FreeBSD rtsold 15.x - Remote Code Execution via DNSSL Date: 2025-12-16 Exploit Author: Lukas Johannes Möller Vendor Homepage: https://www.freebsd.org/ Version: FreeBSD 13.x, 14.x, 15.x before 2025-12-16 patches Tested on: FreeBSD 14.1-RELEASE CVE: CVE-2025-14558 Description: rtsold...

7.2CVSS7AI score0.06272EPSS
Exploits7
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2015-0286

Malware in sbrugna...

5CVSS7AI score0.05059EPSS
Exploits0References17
Positive Technologies
Positive Technologies
added 2025/09/24 12:0 a.m.4 views

PT-2025-39292

Name of the Vulnerable Software and Affected Versions Cisco Access Point Software affected versions not specified Description A flaw exists in the IPv6 Router Advertisement RA packet processing that could allow an unauthenticated, adjacent attacker to modify the IPv6 gateway on an affected device...

4.3CVSS6.2AI score0.00154EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.6 views

TencentOS Server 2: libndp (TSSA-2024:0377)

The version of Tencent Linux installed on the remote TencentOS Server 2 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0377 advisory. Package updates are available for TencentOS Server 2 that fix the following vulnerabilities:...

8.1CVSS7.3AI score0.01165EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 10:39 p.m.15 views

CVE-2022-27881

engine.c in slaacd in OpenBSD 6.9 and 7.0 before 2022-02-21 has a buffer overflow triggerable by an IPv6 router advertisement with more than seven nameservers. NOTE: privilege separation and pledge can prevent exploitation...

7.5CVSS7.6AI score0.01869EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2025/04/29 12:0 a.m.16 views

Amazon Linux 2 : docker (ALASDOCKER-2025-062)

The version of docker installed on the remote host is prior to 19.03.6ce-4. It is, therefore, affected by a vulnerability as referenced in the ALAS2DOCKER-2025-062 advisory. A flaw was found in Docker when it creates network bridges that accept IPv6 router advertisements by default. This flaw...

6CVSS7.1AI score0.02839EPSS
Exploits0References4
Amazon
Amazon
added 2025/04/29 12:0 a.m.4 views

Medium: docker

Issue Overview: A flaw was found in Docker when it creates network bridges that accept IPv6 router advertisements by default. This flaw allows an attacker who can execute code in a container to possibly spoof rogue IPv6 router advertisements to perform a man-in-the-middle MitM attack against the...

6CVSS7.1AI score0.02839EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/04/29 12:0 a.m.17 views

Amazon Linux 2 : docker (ALASECS-2025-063)

The version of docker installed on the remote host is prior to 19.03.6ce-4. It is, therefore, affected by a vulnerability as referenced in the ALAS2ECS-2025-063 advisory. A flaw was found in Docker when it creates network bridges that accept IPv6 router advertisements by default. This flaw allows...

6CVSS7.1AI score0.02839EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2022/09/27 12:0 a.m.5 views

PT-2022-9876 · Ieee +1 · 802.2 +3

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned. Description: The issue allows Layer 2 network filtering capabilities, such as IPv6 RA guard, to be bypassed. This can be achieved by using specific combinations of VLAN 0 headers, LLC/SNAP...

4.7CVSS4.5AI score0.00658EPSS
Exploits0References8
CNNVD
CNNVD
added 2022/09/27 12:0 a.m.16 views

多款Cisco产品安全漏洞

Cisco NX-OS Software and others are products of Cisco Corporation.Cisco NX-OS Software is a set of data center-grade operating system software used by switches.Cisco IOS is an operating system developed for its network devices.Cisco IOS XE Software is an operating system.Cisco IOS XE Software is...

4.7CVSS5.5AI score0.00578EPSS
Exploits0References8
CNNVD
CNNVD
added 2022/09/27 12:0 a.m.16 views

多款Cisco产品安全漏洞

Cisco NX-OS Software and others are products of Cisco Corporation.Cisco NX-OS Software is a set of data center-grade operating system software used by switches.Cisco IOS is an operating system developed for its network devices.Cisco IOS XE Software is an operating system.Cisco IOS XE Software is...

4.7CVSS5.5AI score0.00634EPSS
Exploits0References8
Rows per page
Query Builder