The vulnerability of the __ip6_make_skb() function in the net/ipv6/ip6_output.c module of the IPv6 protocol implementation in the Linux operating system allows a attacker to cause a service failure.

The vulnerability of the ip6makeskb function in the net/ipv6/ip6output.c module of the Linux operating system’s IPv6 kernel implementation is related to the use of an uninitialized resource. Exploiting this vulnerability could allow a attacker to cause a service failure...

The vulnerability of the ax25_addr_ax25dev() function in the net/ax25/ax25_dev.c module of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the ax25addrax25dev function in the net/ax25/ax25dev.c module of the Linux operating system is related to a resource leak. Exploiting this vulnerability could allow an attacker to cause a service failure...

CVE-2022-49141

In the Linux kernel, the following vulnerability has been resolved: net: dsa: felix: fix possible NULL pointer dereference As the possible failure of the allocation, kzalloc may return NULL pointer. Therefore, it should be better to check the 'sgi' in order to prevent the dereference of NULL...

CVE-2022-49141 net: dsa: felix: fix possible NULL pointer dereference

In the Linux kernel, the following vulnerability has been resolved: net: dsa: felix: fix possible NULL pointer dereference As the possible failure of the allocation, kzalloc may return NULL pointer. Therefore, it should be better to check the 'sgi' in order to prevent the dereference of NULL...

Google Chrome Resource Management Error Vulnerability

Google Chrome is a web browser from Google, an American company. Google Chrome suffers from a resource management error vulnerability that stems from a post-release reuse issue contained in the Network module, which can be exploited by an attacker to submit a special Web request that can be trick...

Google Chrome 资源管理错误漏洞

Google Chrome is a web browser from Google, an American company. Google Chrome suffers from a resource management error vulnerability that stems from a post-release reuse issue contained in the Network module, which can be exploited by an attacker to submit a special Web request that can be trick...

MediaTek Chipsets 代码问题漏洞

MediaTek Chipsets are a variety of chips from China's MediaTek Corporation MediaTek. A code issue vulnerability exists in MediaTek Chipsets, which stems from the network HW module containing an uncaught exception that could cause the system to hang...

SunGrow WiNet-S 安全漏洞

SunGrow WiNet-S is a LAN communication module from SunGrow, China. The SunGrow WiNet-S suffers from a stack buffer overflow vulnerability that can be exploited by an attacker to execute arbitrary code on the system or cause a denial of service...

The software for creating automation projects of Schneider Electric’s Web Designer network modules BMXNOE0110H, BMENOC0311C, BMENOC0321C, and BMXNOR0200H is vulnerable due to incorrect restrictions on XML references to external objects. This vulnerability allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the software used for creating automation projects in Schneider Electric’s Web Designer for network modules BMXNOE0110H, BMENOC0311C, BMENOC0321C, and BMXNOR0200H is related to incorrect restrictions on XML references to external objects. Exploiting this vulnerability allows ...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from improper handling of the SRCPORT field in the ocelotifhsetbasic function in the net:mscc module, which could...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from improper handling of the SRCPORT field in the ocelotifhsetbasic function in the net:mscc module, which could...

The vulnerability of the `io_recvmsg_mshot_prep()` function in the `io_uring/net.c` module of the `io_uring/net` component of the Linux kernel allows a hacker to cause a service failure.

The vulnerability in the iorecvmsgmshotprep function of the iouring/net.c module of the iouring/net component of the Linux kernel is related to integer overflow in the iorecvmsgmshotprep function. Exploitation of this vulnerability can allow an attacker to cause a service failure...

GHSA-CVV5-9H9W-QP2M Systeminformation has command injection vulnerability in getWindowsIEEE8021x (SSID)

Summary The SSID is not sanitized when before it is passed as a parameter to cmd.exe in the getWindowsIEEE8021x function. This means that malicious content in the SSID can be executed as OS commands. Details I have exploited this vulnerability in a Windows service using version 5.22.11 of the...

QSC: A multi-plugin framework used by CloudComputating group in cyberespionage campaigns

Introduction In 2021, we began to investigate an attack on the telecom industry in South Asia. During the investigation, we discovered QSC: a multi-plugin malware framework that loads and runs plugins modules in memory. The framework includes a Loader, a Core module, a Network module, a Command...

Huawei HarmonyOS Conditional Competition Vulnerability

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. Huawei HarmonyOS suffers from a conditional contention vulnerability that stems from a conditional contention in the kernel network module. An attacker could...

CVE-2024-51515

Race condition vulnerability in the kernel network module Impact:Successful exploitation of this vulnerability may affect availability...

CVE-2024-51515

CVE-2024-51515 describes a race condition in the kernel network module of Huawei HarmonyOS. Reports across sources characterize the impact as potentially affecting availability, with no explicit exploitation details provided in the initial documents. Connected materials reinforce the kernel netwo...

CVE-2024-51515

Race condition vulnerability in the kernel network module Impact:Successful exploitation of this vulnerability may affect availability...

CVE-2024-51515

Race condition vulnerability in the kernel network module Impact:Successful exploitation of this vulnerability may affect availability...

Huawei HarmonyOS 安全漏洞

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. Huawei HarmonyOS suffers from a conditional contention vulnerability that stems from a conditional contention in the kernel network module. An attacker could...