Oracle Linux 7 : kernel (ELSA-2020-4060)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-4060 advisory. - vfio vfio/pci: Fix SR-IOV VF handling with MMIO blocking Alex Williamson 1820632 CVE-2020-12888 - x86 mm: Fix mremap not considering huge pmd devmap...

CVE-2023-0861

NetModule NSRW web administration interface executes an OS command constructed with unsanitized user input. A successful exploit could allow an authenticated user to execute arbitrary commands with elevated privileges. This issue affects NSRW: from 4.3.0.0 before 4.3.0.119, from 4.4.0.0 before...

SUSE CVE-2019-12381

An issue was discovered in ipracontrol in net/ipv4/ipsockglue.c in the Linux kernel through 5.1.5. There is an unchecked kmalloc of newra, which might allow an attacker to cause a denial of service NULL pointer dereference and system crash. NOTE: this is disputed because newra is never used if it...

PT-2022-36595 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v4.9.334 Description: The issue is related to a potential security problem in the net/x25 module, specifically in the x25 lapb receive frame function, where a skb leak is fixed. The actual impact and attack...

CVE-2022-37006

Permission control vulnerability in the network module. Successful exploitation of this vulnerability may affect service availability...

CVE-2022-37006

Permission control vulnerability in the network module. Successful exploitation of this vulnerability may affect service availability...

Design/Logic Flaw

Permission control vulnerability in the network module. Successful exploitation of this vulnerability may affect service availability...

CVE-2022-37006

Permission control vulnerability in the network module. Successful exploitation of this vulnerability may affect service availability...

HUAWEI EMUI 安全漏洞

HUAWEI EMUI is an Android-based mobile operating system developed by China's Huawei HUAWEI. A security vulnerability exists in HUAWEI EMUI version 12.0.0, which stems from a permission control issue in the network module causing an attacker to impact service availability after successful...

CVE-2022-37006

Permission control vulnerability in the network module. Successful exploitation of this vulnerability may affect service availability...

CVE-2022-37006

Technical details (affected products, versions, root cause, or explicit fixes) are not publicly available in the provided connected documents. Monitor for updates from vendors and security advisories.

PT-2022-23751 · Huawei · Emui +1

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned. Description: A permission control vulnerability exists in the network module. Successful exploitation of this issue may affect service availability. Recommendations: At the moment, there is no...

rsyslog: Heap-based overflow in TCP syslog server

A flaw was found in rsyslog's reception TCP modules. This flaw allows an attacker to craft a malicious message leading to a heap-based buffer overflow. This issue allows the attacker to corrupt or access data stored in memory, leading to a denial of service in the rsyslog or possible remote code...

CVE-2021-39290

Certain NetModule devices allow Limited Session Fixation via PHPSESSID. These models with firmware before 4.3.0.113, 4.4.0.111, and 4.5.0.105 are affected: NB800, NB1600, NB1601, NB1800, NB1810, NB2700, NB2710, NB2800, NB2810, NB3700, NB3701, NB3710, NB3711, NB3720, and NB3800...

Phoenix Contact Classic Line Controllers ILC1x0 and ILC1x1 安全漏洞

The Phoenix Contact Classic Line Controllers ILC1x0 and ILC1x1 are industrial control devices from Phoenix Contact, Germany. The protocol configuration for device management and communication does not include authentication measures. Phoenix Contact Classic Line Controllers versions ILC1x0 and...

OPENSUSE-SU-2021:0899-1 Security update for salt

This update for salt fixes the following issues: Update to Salt release version 3002.2 jscECO-3212, jscSLE-18033, jscSLE-18028 - Check if dpkgnotify is executable bsc1186674 - Drop support for Python2. Obsoletes python2-salt package jscSLE-18028 - virt module updates network: handle missing ipv4...

SUSE-SU-2021:1690-1 Security Beta update for Salt

This update fixes the following issues: salt: - Update to Salt release version 3002.2 jscECO-3212 - Drop support for Python2. Obsoletes 'python2-salt' package - Virt module updates network: handle missing ipv4 netmask attribute more network support PCI/USB host devices passthrough support - Set...

NewStart CGSL CORE 5.04 / MAIN 5.04 : kernel Multiple Vulnerabilities (NS-SA-2021-0025)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has kernel packages installed that are affected by multiple vulnerabilities: - An issue was discovered in the Linux kernel before 5.2.3. There is a NULL pointer dereference caused by a malicious USB device in the...

SUSE: Security Advisory (SUSE-SU-2019:2953-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2021-29083

Improper neutralization of special elements used in an OS command in SYNO.Core.Network.PPPoE in Synology DiskStation Manager DSM before 6.2.3-25426-3 allows remote authenticated users to execute arbitrary code via realname parameter...