Lucene search
K

23 matches found

OSV
OSV
added 2025/10/15 2:15 p.m.2 views

CVE-2025-58120

When HTTP/2 Ingress is configured, undisclosed traffic can cause the Traffic Management Microkernel TMM to terminate. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

8.7CVSS5.8AI score0.00317EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/15 1:55 p.m.11 views

CVE-2025-58120 BIG-IP Next (CNF, SPK, and Kubernetes) vulnerability

When HTTP/2 Ingress is configured, undisclosed traffic can cause the Traffic Management Microkernel TMM to terminate. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

8.7CVSS0.00317EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/10/15 12:0 a.m.3 views

F5 BIG-IP Next SPK 代码问题漏洞

F5 BIG-IP Next SPK is a cloud-native application traffic management solution from F5 USA. A code issue vulnerability exists in F5 BIG-IP Next SPK, which stems from the possibility that undisclosed traffic in an HTTP/2 Ingress configuration could lead to the termination of the Traffic Management...

8.7CVSS6.7AI score0.00317EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-8804

Malware in sbrugna...

5.9CVSS6AI score0.01674EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-10306

Malware in sbrugna...

7.4CVSS7.5AI score0.00605EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2021-6861

Malicious code in bioql PyPI...

5.3CVSS6.1AI score0.01274EPSS
Exploits0References1
OSV
OSV
added 2025/07/04 2:15 p.m.6 views

DEBIAN-CVE-2025-38192

In the Linux kernel, the following vulnerability has been resolved: net: clear the dst when changing skb protocol A not-so-careful NAT46 BPF program can crash the kernel if it indiscriminately flips ingress packets from v4 to v6: BUG: kernel NULL pointer dereference, address: 0000000000000000...

5.5CVSS5.4AI score0.00148EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/05/27 12:0 a.m.2 views

Arista EOS 安全漏洞

Arista EOS is a fully programmable, highly modular, Linux-based network operating system from Arista Corporation. A security vulnerability exists in Arista EOS that stems from the possibility of incorrectly forwarding Layer 2 port ingress traffic under certain conditions, resulting in a breach of...

6.5CVSS6.6AI score0.00214EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 10:3 a.m.6 views

CVE-2024-20309

A vulnerability in auxiliary asynchronous port AUX functions of Cisco IOS XE Software could allow an authenticated, local attacker to cause an affected device to reload or stop responding. This vulnerability is due to the incorrect handling of specific ingress traffic when flow control hardware i...

5.6CVSS6.8AI score0.00102EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/03/25 3:51 a.m.13 views

CVE-2025-30162

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. For Cilium users who use Gateway API for Ingress for some services and use LB-IPAM or BGP for LB Service implementation and use network policies to block egress traffic from workloads in a namespace to...

3.2CVSS7AI score0.0021EPSS
Exploits0References6
CVE
CVE
added 2024/03/27 5:2 p.m.83 views

CVE-2024-20309

CVE-2024-20309 affects Cisco IOS XE Software AUX port handling. The vulnerability arises from incorrect processing of specific ingress data when flow-control hardware on the AUX port is enabled, allowing an authenticated, local attacker to reverse-telnet to the AUX port and send data to cause a d...

5.6CVSS6.7AI score0.00102EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2024/02/20 11:44 p.m.19 views

GHSA-7496-FGV9-XW82 Unencrypted ingress/health traffic when using Wireguard transparent encryption

Impact For Cilium users who are using CRDs to store Cilium state the default configuration and Wireguard transparent encryption, responses from pods to the Ingress and health endpoints are not encrypted. Traffic from the Ingress and health endpoints to pods is not affected by this issue. The heal...

6.1CVSS5.6AI score0.00184EPSS
Exploits0References5
The Hacker News
The Hacker News
added 2023/03/16 1:39 p.m.40 views

Cryptojacking Group TeamTNT Suspected of Using Decoy Miner to Conceal Data Exfiltration

The cryptojacking group known as TeamTNT is suspected to be behind a previously undiscovered strain of malware used to mine Monero cryptocurrency on compromised systems. That's according to Cado Security, which found the sample after Sysdig detailed a sophisticated attack known as SCARLETEEL aime...

7.2AI score
Exploits0
OSV
OSV
added 2021/03/24 8:15 p.m.3 views

CVE-2021-1394

A vulnerability in the ingress traffic manager of Cisco IOS XE Software for Cisco Network Convergence System NCS 520 Routers could allow an unauthenticated, remote attacker to cause a denial of service DoS condition in the web management interface of an affected device. This vulnerability is due ...

5.3CVSS6.5AI score0.01274EPSS
Exploits0References1
Cisco
Cisco
added 2021/03/24 4:0 p.m.57 views

Cisco IOS XE Software for Network Convergence System 520 Routers Denial of Service Vulnerability

A vulnerability in the ingress traffic manager of Cisco IOS XE Software for Cisco Network Convergence System NCS 520 Routers could allow an unauthenticated, remote attacker to cause a denial of service DoS condition in the web management interface of an affected device. This vulnerability is due ...

5.3CVSS5.5AI score0.01274EPSS
Exploits0References1
OSV
OSV
added 2020/08/04 8:15 p.m.18 views

CVE-2020-16843

In Firecracker 0.20.x before 0.20.1 and 0.21.x before 0.21.2, the network stack can freeze under heavy ingress traffic. This can result in a denial of service on the microVM when it is configured with a single network interface, and an availability problem for the microVM network interface on whi...

5.9CVSS6.8AI score
Exploits0References3
Prion
Prion
added 2020/08/04 8:15 p.m.18 views

Design/Logic Flaw

In Firecracker 0.20.x before 0.20.1 and 0.21.x before 0.21.2, the network stack can freeze under heavy ingress traffic. This can result in a denial of service on the microVM when it is configured with a single network interface, and an availability problem for the microVM network interface on whi...

4.3CVSS5.7AI score0.01674EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2019/03/28 12:29 a.m.15 views

CVE-2019-1749

A vulnerability in the ingress traffic validation of Cisco IOS XE Software for Cisco Aggregation Services Router ASR 900 Route Switch Processor 3 RSP3 could allow an unauthenticated, adjacent attacker to trigger a reload of an affected device, resulting in a denial of service DoS condition. The...

7.4CVSS7.4AI score0.00605EPSS
Exploits0References2
Prion
Prion
added 2019/03/28 12:29 a.m.18 views

Race condition

A vulnerability in the ingress traffic validation of Cisco IOS XE Software for Cisco Aggregation Services Router ASR 900 Route Switch Processor 3 RSP3 could allow an unauthenticated, adjacent attacker to trigger a reload of an affected device, resulting in a denial of service DoS condition. The...

6.1CVSS7.3AI score0.00605EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2018/04/19 8:29 p.m.21 views

Design/Logic Flaw

A vulnerability in the ingress flow creation functionality of Cisco Adaptive Security Appliance ASA could allow an unauthenticated, remote attacker to cause the CPU to increase upwards of 100% utilization, causing a denial of service DoS condition on an affected system. The vulnerability is due t...

7.8CVSS8.4AI score0.03612EPSS
Exploits0References4Affected Software2
Rows per page
Query Builder