Lucene search
K

589 matches found

Oracle linux
Oracle linux
added 2024/11/19 12:0 a.m.41 views

kernel security update

5.14.0-503.14.15.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...

7CVSS7.2AI score0.00257EPSS
Exploits0
NVD
NVD
added 2024/10/11 4:15 p.m.13 views

CVE-2024-47490

An Improper Restriction of Communication Channel to Intended Endpoints vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS Evolved on ACX 7000 Series allows an unauthenticated, network based attacker to cause increased consumption of resources, ultimately resulting in a...

8.2CVSS0.0056EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/11 3:22 p.m.14 views

CVE-2024-47490 Junos OS Evolved: ACX 7000 Series: Receipt of specific transit MPLS packets causes resources to be exhausted

An Improper Restriction of Communication Channel to Intended Endpoints vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS Evolved on ACX 7000 Series allows an unauthenticated, network based attacker to cause increased consumption of resources, ultimately resulting in a...

8.2CVSS0.0056EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/10/11 3:22 p.m.16 views

CVE-2024-47490 Junos OS Evolved: ACX 7000 Series: Receipt of specific transit MPLS packets causes resources to be exhausted

An Improper Restriction of Communication Channel to Intended Endpoints vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS Evolved on ACX 7000 Series allows an unauthenticated, network based attacker to cause increased consumption of resources, ultimately resulting in a...

8.2CVSS7AI score0.0056EPSS
Exploits0References1
CVE
CVE
added 2024/10/11 3:22 p.m.48 views

CVE-2024-47490

The CVE-2024-47490 issue affects Junos OS Evolved ACX 7000 Series. Affected are all versions before: 21.4R3-S9-EVO, 22.2-EVO before 22.2R3-S4-EVO, 22.3-EVO before 22.3R3-S3-EVO, 22.4-EVO before 22.4R3-S2-EVO, 23.2-EVO before 23.2R2-EVO, and 23.4-EVO before 23.4R1-S1-EVO / 23.4R2-EVO. The vulnerab...

8.2CVSS8.2AI score0.0056EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/09/25 12:0 a.m.6 views

PT-2024-7143

Name of the Vulnerable Software and Affected Versions Junos OS Evolved versions prior to 21.4R3-S9-EVO Junos OS Evolved version 22.2-EVO prior to 22.2R3-S4-EVO Junos OS Evolved version 22.3-EVO prior to 22.3R3-S3-EVO Junos OS Evolved version 22.4-EVO prior to 22.4R3-S2-EVO Junos OS Evolved versio...

8.5CVSS5.9AI score0.0056EPSS
Exploits0References15
SUSE CVE
SUSE CVE
added 2024/08/22 3:14 a.m.2 views

SUSE CVE-2023-52906

In the Linux kernel, the following vulnerability has been resolved: net/sched: actmpls: Fix warning during failed attribute validation The 'TCAMPLSLABEL' attribute is of 'NLAU32' type, but has a validation type of 'NLAVALIDATEFUNCTION'. This is an invalid combination according to the comment abov...

5.5CVSS6.3AI score0.00248EPSS
Exploits0References6
OSV
OSV
added 2024/08/21 7:15 a.m.1 views

DEBIAN-CVE-2023-52906

In the Linux kernel, the following vulnerability has been resolved: net/sched: actmpls: Fix warning during failed attribute validation The 'TCAMPLSLABEL' attribute is of 'NLAU32' type, but has a validation type of 'NLAVALIDATEFUNCTION'. This is an invalid combination according to the comment abov...

7.8CVSS5.4AI score0.00248EPSS
Exploits0References1
OSV
OSV
added 2024/08/21 7:15 a.m.11 views

UBUNTU-CVE-2023-52906

In the Linux kernel, the following vulnerability has been resolved: net/sched: actmpls: Fix warning during failed attribute validation The 'TCAMPLSLABEL' attribute is of 'NLAU32' type, but has a validation type of 'NLAVALIDATEFUNCTION'. This is an invalid combination according to the comment abov...

7.8CVSS5.9AI score0.00248EPSS
Exploits0References8
Vulnrichment
Vulnrichment
added 2024/08/21 6:10 a.m.18 views

CVE-2023-52906 net/sched: act_mpls: Fix warning during failed attribute validation

In the Linux kernel, the following vulnerability has been resolved: net/sched: actmpls: Fix warning during failed attribute validation The 'TCAMPLSLABEL' attribute is of 'NLAU32' type, but has a validation type of 'NLAVALIDATEFUNCTION'. This is an invalid combination according to the comment abov...

6.7AI score0.00248EPSS
Exploits0References5
Cvelist
Cvelist
added 2024/08/21 6:10 a.m.20 views

CVE-2023-52906 net/sched: act_mpls: Fix warning during failed attribute validation

In the Linux kernel, the following vulnerability has been resolved: net/sched: actmpls: Fix warning during failed attribute validation The 'TCAMPLSLABEL' attribute is of 'NLAU32' type, but has a validation type of 'NLAVALIDATEFUNCTION'. This is an invalid combination according to the comment abov...

0.00248EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2024/08/21 6:10 a.m.20 views

CVE-2023-52906

In the Linux kernel, the following vulnerability has been resolved: net/sched: actmpls: Fix warning during failed attribute validation The 'TCAMPLSLABEL' attribute is of 'NLAU32' type, but has a validation type of 'NLAVALIDATEFUNCTION'. This is an invalid combination according to the comment abov...

7.8CVSS5.4AI score0.00248EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/08/21 12:0 a.m.13 views

Cisco IOS XR Software MPLS Pseudowire Interfaces Access Control List Bypass (CSCwf99658)

According to its self-reported version, Cisco IOS XR is affected by a vulnerability. - A vulnerability in the access control list ACL processing on MPLS interfaces in the ingress direction of Cisco IOS XR Software could allow an unauthenticated, remote attacker to bypass a configured ACL. This...

5.8CVSS6.1AI score0.00519EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/07/11 3:55 p.m.19 views

CVE-2024-39519 Junos OS Evolved: ACX 7000 Series: Multicast traffic is looped in a multihoming EVPN MPLS scenario

An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS Evolved on ACX7000 Series allows an unauthenticated, adjacent attacker to cause a Denial-of-Service DoS. On all ACX 7000 Series platforms running Junos OS Evolved...

7.1CVSS6.9AI score0.00246EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/07/11 3:55 p.m.27 views

CVE-2024-39519 Junos OS Evolved: ACX 7000 Series: Multicast traffic is looped in a multihoming EVPN MPLS scenario

An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS Evolved on ACX7000 Series allows an unauthenticated, adjacent attacker to cause a Denial-of-Service DoS. On all ACX 7000 Series platforms running Junos OS Evolved...

7.1CVSS0.00246EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/07/05 12:0 a.m.10 views

Juniper Junos OS Vulnerability (JSA75732)

The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA75732 advisory. - An Improper Check or Handling of Exceptional Conditions vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS and Junos OS Evolved allows an...

7.1CVSS5.7AI score0.00295EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2024/06/03 12:34 p.m.21 views

CVE-2024-36933

In the Linux kernel, the following vulnerability has been resolved: nsh: Restore skb-protocol,data,macheader for outer header in nshgsosegment. syzbot triggered various splats see 0 and links by a crafted GSO packet of VIRTIONETHDRGSOUDP layering the following protocols: ETHP8021AD + ETHPNSH +...

5.9CVSS6.5AI score0.00285EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/05/30 3:29 p.m.27 views

CVE-2024-36933 nsh: Restore skb->{protocol,data,mac_header} for outer header in nsh_gso_segment().

In the Linux kernel, the following vulnerability has been resolved: nsh: Restore skb-protocol,data,macheader for outer header in nshgsosegment. syzbot triggered various splats see 0 and links by a crafted GSO packet of VIRTIONETHDRGSOUDP layering the following protocols: ETHP8021AD + ETHPNSH +...

7.4AI score0.00285EPSS
Exploits0References8
CVE
CVE
added 2024/05/30 3:29 p.m.174 views

CVE-2024-36933

CVE-2024-36933: In the Linux kernel, the nsh_gso_segment() path could mishandle outer headers when NSH encapsulates other protocols, leading to outer header corruption after GSO segmentation. The fix restores the outer header position by computing outer header placement relative to the inner head...

5.5CVSS6.6AI score0.00285EPSS
Exploits0References11Affected Software1
SUSE CVE
SUSE CVE
added 2024/05/23 3:4 a.m.4 views

SUSE CVE-2021-47309

In the Linux kernel, the following vulnerability has been resolved: net: validate lwtstate-data before returning from skbtunnelinfo skbtunnelinfo returns pointer of lwtstate-data as iptunnelinfo type without validation. lwtstate-data can have various types such as mplsiptunnelencap, etc and these...

5.5CVSS6.3AI score0.00247EPSS
Exploits0References6
Rows per page
Query Builder