Lucene search
K

198 matches found

OSV
OSV
added 2024/12/27 3:15 p.m.6 views

AZL-54815 CVE-2024-56647 affecting package kernel 6.6.126.1-1

In the Linux kernel, the following vulnerability has been resolved: net: Fix icmp host relookup triggering iprtbug arp link failure may trigger iprtbug while xfrm enabled, call trace is: WARNING: CPU: 0 PID: 0 at net/ipv4/route.c:1241 iprtbug+0x14/0x20 Modules linked in: CPU: 0 UID: 0 PID: 0 Comm...

5.5CVSS6.7AI score0.00217EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/12/27 3:2 p.m.8 views

CVE-2024-56647 net: Fix icmp host relookup triggering ip_rt_bug

In the Linux kernel, the following vulnerability has been resolved: net: Fix icmp host relookup triggering iprtbug arp link failure may trigger iprtbug while xfrm enabled, call trace is: WARNING: CPU: 0 PID: 0 at net/ipv4/route.c:1241 iprtbug+0x14/0x20 Modules linked in: CPU: 0 UID: 0 PID: 0 Comm...

7.4AI score0.00217EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/12/27 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an ICMP host relookup in the net subsystem triggering an iprtbug issue...

5.5CVSS6.5AI score0.00217EPSS
Exploits0References2
OSV
OSV
added 2024/12/02 5:15 p.m.2 views

UBUNTU-CVE-2024-53259

quic-go is an implementation of the QUIC protocol in Go. An off-path attacker can inject an ICMP Packet Too Large packet. Since affected quic-go versions used IPPMTUDISCDO, the kernel would then return a "message too large" error on sendmsg, i.e. when quic-go attempts to send a packet that exceed...

6.5CVSS5.8AI score0.00608EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2024/11/30 12:0 a.m.9 views

PT-2024-36956

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.12.0-rc6-00077-g2e1b3cc9d7f7 Description A vulnerability in the Linux kernel has been resolved, which could trigger an ip rt bug when an arp link failure occurs while xfrm is enabled. The issue arises from the...

5.5CVSS5.4AI score0.00217EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2024/11/09 8:0 a.m.3 views

icmp: change the order of rate limits

...

5.5CVSS7.1AI score0.00239EPSS
Exploits0
OSV
OSV
added 2024/10/21 12:15 p.m.6 views

AZL-50716 CVE-2024-47678 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: icmp: change the order of rate limits ICMP messages are ratelimited : After the blamed commits, the two rate limiters are applied in this order: 1 host wide ratelimit icmpglobalallow 2 Per destination ratelimit inetpeer based In...

5.5CVSS6.3AI score0.00239EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/10/21 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an improperly ordered rate limiting of ICMP messages, which could lead to a side-channel attack...

5.5CVSS6.6AI score0.00239EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2024/08/29 12:0 a.m.5 views

PT-2024-32733

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.58 Description The issue concerns the order of rate limits for ICMP messages in the Linux kernel. To avoid side-channel attacks, the per destination check needs to be applied first. The patch changes the orde...

5.5CVSS5.4AI score0.00239EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2024/08/15 7:0 a.m.5 views

In the Linux kernel before 5.1.7 a device can be tracked by an attacker using the IP ID values the kernel produces for connection-less protocols (e.g. UDP and ICMP). When such traffic is sent to multiple destination IP addresses it is possible to obtain hash collisions (of indices to the counter array) and thereby obtain the hashing key (via enumeration). An attack may be conducted by hosting a crafted web page that uses WebRTC or gQUIC to force UDP traffic to attacker-controlled IP addresses.

...

6.5CVSS9AI score0.02571EPSS
Exploits0
CNNVD
CNNVD
added 2024/08/12 12:0 a.m.3 views

FreeBSD 安全漏洞

FreeBSD is a set of Unix-like operating systems from the FreeBSD Foundation. A security vulnerability exists in FreeBSD that stems from ICMPv6 packets that bypass firewall rules...

6.3CVSS6.7AI score0.00462EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2024/07/31 12:54 a.m.7 views

kernel: icmp: prevent possible NULL dereferences from icmp_build_probe()

A flaw was found in the Linux kernel's ICMP protocol. Under some conditions, a NULL pointer dereference can be triggered due to a missing check, causing a system crash and resulting in a denial of service...

5.3CVSS7.2AI score0.00888EPSS
Exploits0References5
OSV
OSV
added 2024/06/17 6:15 p.m.4 views

CVE-2024-37661

TP-LINK TL-7DR5130 v1.0.23 is vulnerable to forged ICMP redirect message attacks. An attacker in the same WLAN as the victim can hijack the traffic between the victim and any remote server by sending out forged ICMP redirect messages...

6.3CVSS5.8AI score0.00283EPSS
Exploits1References1
OSV
OSV
added 2024/06/17 6:15 p.m.5 views

CVE-2024-37663

Redmi router RB03 v1.0.57 is vulnerable to forged ICMP redirect message attacks. An attacker in the same WLAN as the victim can hijack the traffic between the victim and any remote server by sending out forged ICMP redirect messages...

4.1CVSS5.8AI score0.0028EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2024/06/17 12:0 a.m.12 views

PT-2024-27702 · Xiaomi · Redmi Router Rb03

Name of the Vulnerable Software and Affected Versions: Redmi router RB03 version 1.0.57 Description: The issue allows an attacker in the same WLAN as the victim to hijack traffic between the victim and any remote server by sending forged ICMP redirect messages. This can be exploited by an attacke...

4.1CVSS7.2AI score0.0028EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2024/05/21 1:59 a.m.2 views

SUSE CVE-2024-35857

In the Linux kernel, the following vulnerability has been resolved: icmp: prevent possible NULL dereferences from icmpbuildprobe First problem is a double call to indevgetrcu, because the second one could return NULL. if indevgetrcudev && indevgetrcudev-ifalist Second problem is a read from...

5.5CVSS6.1AI score0.00888EPSS
Exploits0References13
BDU FSTEC
BDU FSTEC
added 2024/03/18 12:0 a.m.7 views

The vulnerability of the ICMP and ICMPv6 analysis functions of the protocol generator stack used in uC/OS and uC/TCP-IP allows a attacker to cause service interruptions.

The vulnerability of the ICMP and ICMPv6 analysis functions of the ISN stack generator used in uC/OS and uC/TCP-IP is related to the execution of operations outside the buffer boundaries in memory. Exploiting this vulnerability could allow a remote attacker to cause service failures...

5.9CVSS7.3AI score0.00811EPSS
Exploits1References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/03/18 12:0 a.m.5 views

The vulnerability of the ICMP and ICMPv6 analysis functions of the protocol generator stack used in uC/OS and uC/TCP-IP allows a attacker to cause service interruptions.

The vulnerability of the ICMP and ICMPv6 analysis functions of the ISN stack generator used in uC/OS and uC/TCP-IP is related to the execution of operations outside the buffer boundaries in memory. Exploiting this vulnerability could allow a remote attacker to cause service failures...

5.9CVSS7.3AI score0.00811EPSS
Exploits1References5Affected Software2
CNNVD
CNNVD
added 2024/01/29 12:0 a.m.3 views

SE-elektronic GmbH E-DDC Resource Management Error Vulnerability

The SE-elektronic GmbH E-DDC is a freely configurable building controller from SE-elektronic GmbH, Germany. A resource management error vulnerability exists in SE-elektronic GmbH E-DDC 03.07.03 and earlier versions, which originates from a vulnerability that allows an attacker to interrupt the...

7.5CVSS6.8AI score0.00551EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2024/01/16 12:0 a.m.7 views

PT-2024-1187 · Oracle · Oracle Integrated Lights Out Manager

Name of the Vulnerable Software and Affected Versions: Oracle Integrated Lights Out Manager ILOM versions 3 through 5 Description: The issue is related to insufficient input validation in the System Management component of Oracle Integrated Lights Out Manager ILOM. This easily exploitable...

4.9CVSS4.8AI score0.00312EPSS
Exploits0References6
Rows per page
Query Builder