Lucene search
K

191 matches found

Kitploit
Kitploit
added 2024/05/22 12:30 p.m.91 views

Above - Invisible Network Protocol Sniffer

Invisible protocol sniffer for finding vulnerabilities in the network. Designed for pentesters and security engineers. Above: Invisible network protocol sniffer Designed for pentesters and security engineers Author: Magama Bazarov, Pseudonym: Caster Version: 2.6 Codename: Introvert Disclaimer All...

7.1AI score
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2023/06/16 12:0 a.m.6 views

The vulnerability in the implementation of the Linux operating system’s MACsec security protocol allows a perpetrator to gain access to protected information or compromise the integrity of data.

The vulnerability of the Linux operating system’s MACsec network protocol implementation is related to the re-release of memory allocated in the macsecfreenetdev function, which was previously released in the macsecadddev function within the drivers/net/macsec.c module. Exploiting this...

8CVSS5.5AI score
Exploits0References4Affected Software2
Positive Technologies
Positive Technologies
added 2023/06/09 12:0 a.m.2 views

PT-2023-7049 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to the macsec add dev function in the drivers/net/macsec.c module of the Linux kernel, which is associated with a double-free memory error. This could allow a remo...

6.8CVSS7AI score
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/02/15 4:47 a.m.2 views

SUSE CVE-2017-7477

Heap-based buffer overflow in drivers/net/macsec.c in the MACsec module in the Linux kernel through 4.10.12 allows attackers to cause a denial of service or possibly have unspecified other impact by leveraging the use of a MAXSKBFRAGS+1 size in conjunction with the NETIFFFRAGLIST feature, leading...

7CVSS7.7AI score0.00387EPSS
Exploits0References3
OSV
OSV
added 2022/06/28 6:34 p.m.10 views

GSD-2022-1002992 macsec: fix UAF bug for real_dev

macsec: fix UAF bug for realdev This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.15 by commit 78933cbc143b82d02330e00900d2fd08f2682f4e, it...

7.2AI score
Exploits0
OSV
OSV
added 2022/06/28 6:5 p.m.5 views

GSD-2022-1002648 macsec: fix UAF bug for real_dev

macsec: fix UAF bug for realdev This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.18.3 by commit d130282179aa6051449ac8f8df1115769998a665, it w...

7.2AI score
Exploits0
NVD
NVD
added 2022/05/26 8:15 p.m.30 views

CVE-2021-28509

This advisory documents the impact of an internally found vulnerability in Arista EOS state streaming telemetry agent TerminAttr and OpenConfig transport protocols. The impact of this vulnerability is that, in certain conditions, TerminAttr might leak MACsec sensitive data in clear text in CVP to...

6.1CVSS0.0044EPSS
Exploits1References1
Prion
Prion
added 2022/05/26 8:15 p.m.25 views

Design/Logic Flaw

This advisory documents the impact of an internally found vulnerability in Arista EOS state streaming telemetry agent TerminAttr and OpenConfig transport protocols. The impact of this vulnerability is that, in certain conditions, TerminAttr might leak MACsec sensitive data in clear text in CVP to...

3.6CVSS6.1AI score0.0044EPSS
Exploits1References1Affected Software2
CVE
CVE
added 2022/05/26 7:50 p.m.60 views

CVE-2021-28509

CVE-2021-28509 : Arista EOS TerminAttr and OpenConfig transport can leak MACsec data in clear text to authorized users, enabling potential decryption/modification of MACsec traffic. Affected: EOS devices with Octa and TerminAttr enabled; specific affected versions include EOS 4.23.x–4.27.x trains...

6.1CVSS6.2AI score0.0044EPSS
Exploits1References1Affected Software2
Cvelist
Cvelist
added 2022/05/26 7:50 p.m.33 views

CVE-2021-28509 TerminAttr streams MACsec sensitive data in clear text to other authorized users in CVP

This advisory documents the impact of an internally found vulnerability in Arista EOS state streaming telemetry agent TerminAttr and OpenConfig transport protocols. The impact of this vulnerability is that, in certain conditions, TerminAttr might leak MACsec sensitive data in clear text in CVP to...

6.1CVSS6.3AI score0.0044EPSS
Exploits1References1
Arista
Arista
added 2022/05/25 12:0 a.m.54 views

Security Advisory 0077

Security Advisory 0077 . CSAF PDF Date: May 27th, 2022 Revision | Date | Changes ---|---|--- 1.1 | May 27th 2022 | Update the CVE impact of Octa 1.0 | May 25th 2022 | Initial release CVE-2021-28508 CVSSv3.1 Base Score: 6.8 CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H CWE: CWE-255 Credentials...

6.8CVSS6.3AI score0.00483EPSS
Exploits2Affected Software1
OSV
OSV
added 2022/02/27 3:39 a.m.13 views

GSD-2022-1000673 net: macsec: Fix offload support for NETDEV_UNREGISTER event

net: macsec: Fix offload support for NETDEVUNREGISTER event This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.16.8 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/02/27 3:27 a.m.12 views

GSD-2022-1000588 net: macsec: Fix offload support for NETDEV_UNREGISTER event

net: macsec: Fix offload support for NETDEVUNREGISTER event This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.22 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/02/18 9:58 p.m.12 views

GSD-2022-1000229 net: macsec: Fix offload support for NETDEV_UNREGISTER event

net: macsec: Fix offload support for NETDEVUNREGISTER event This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.99 by commit...

7.2AI score
Exploits0
Positive Technologies
Positive Technologies
added 2022/01/01 12:0 a.m.8 views

PT-2025-8324

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A use-after-free bug has been identified in the Linux kernel's macsec module. This issue occurs when a new macsec device is created without obtaining a reference to the real device,...

7.8CVSS6.2AI score0.00256EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/10/19 12:0 a.m.58 views

openSUSE Security Update : the Linux Kernel (openSUSE-2020-1682)

The openSUSE Leap 15.1 kernel was updated to receive various security and bugfixes. The following security bugs were fixed : - CVE-2020-12351: A type confusion while processing AMP packets could be used by physical close attackers to crash the kernel or potentially execute code was fixed...

8.8CVSS7.3AI score0.07693EPSS
Exploits7References17
OPENSUSE Linux
OPENSUSE Linux
added 2020/10/17 12:0 a.m.80 views

Security update for the Linux Kernel (important)

openSUSE Security Update: Security update for the Linux Kernel Announcement ID: openSUSE-SU-2020:1682-1 Rating: important References: 1065729 1140683 1172538 1174748 1175520 1176381 1176400 1176946 1177340 1177511 1177685 1177724 1177725 Cross-References: CVE-2020-12351 CVE-2020-12352...

8.8CVSS8.2AI score0.07693EPSS
Exploits7References13
Prion
Prion
added 2020/10/16 9:15 p.m.6 views

Information disclosure

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a vulnerability. Notes: The fix resolved an issue when MACsec replay-protect was enabled and the replay-protect-window value was set to zero, Junos OS w...

7AI score
Exploits0
CVE
CVE
added 2020/10/16 8:31 p.m.30 views

CVE-2020-1674

CVE-2020-1674 is rejected/not used per the Initial Description; not a vulnerability.

6.7AI score
Exploits0
Oracle linux
Oracle linux
added 2020/10/06 12:0 a.m.36 views

NetworkManager security and bug fix update

1:1.18.8-1 - Update to 1.18.8 relase - ifcfg-rh: handle '802-1x.,phase2-ca-path' rh 1841397, CVE-2020-10754 - ifcfg-rh: handle 802-1x.pin properties. 1:1.18.6-4 - ip-tunnel: set cloned-mac-address only for layer2 tunnel devices rh 1832170 1:1.18.6-3 - Update translations rh 1796852 1:1.18.6-2 -...

4.3CVSS0.7AI score0.00983EPSS
Exploits0
Rows per page
Query Builder