Lucene search
K

1170 matches found

OSV
OSV
added 2025/04/02 9:15 p.m.12 views

CVE-2025-2704

OpenVPN version 2.6.1 through 2.6.13 in server mode using TLS-crypt-v2 allows remote attackers to trigger a denial of service by corrupting and replaying network packets in the early handshake phase...

7.5CVSS7.2AI score0.00784EPSS
Exploits0References3
AlpineLinux
AlpineLinux
added 2025/04/02 9:0 p.m.8 views

CVE-2025-2704

OpenVPN version 2.6.1 through 2.6.13 in server mode using TLS-crypt-v2 allows remote attackers to trigger a denial of service by corrupting and replaying network packets in the early handshake phase...

7.5CVSS7.4AI score0.00784EPSS
Exploits0
OSV
OSV
added 2025/04/02 2:15 p.m.4 views

CVE-2024-45064

A buffer overflow vulnerability exists in the FileX Internal RAM interface functionality of STMicroelectronics X-CUBE-AZRTOS-WL 2.0.0. A specially crafted set of network packets can lead to code execution. An attacker can send a sequence of requests to trigger this vulnerability...

9.8CVSS7.8AI score
Exploits0References2
CVE
CVE
added 2025/04/02 1:41 p.m.63 views

CVE-2024-50384

CVE-2024-50384 concerns the STMicroelectronics X-CUBE-AZRTOS-WL 2.0.0 NetX NetX Duo Web Component HTTP server. Talos details reveal a denial-of-service via the HTTP server PUT handling in x-cube-azrtos-f7, where the HTTP server creates a file for writing and, if an error occurs after the file is ...

7.5CVSS6.9AI score0.00677EPSS
Exploits1References2Affected Software10
Cvelist
Cvelist
added 2025/04/02 1:41 p.m.14 views

CVE-2024-50385

A denial of service vulnerability exists in the NetX Component HTTP server functionality of STMicroelectronics X-CUBE-AZRTOS-WL 2.0.0. A specially crafted network packet can lead to denial of service. An attacker can send a malicious packet to trigger this vulnerability.This vulnerability affects...

6.5CVSS0.00677EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/04/02 1:41 p.m.17 views

CVE-2024-50384

A denial of service vulnerability exists in the NetX Component HTTP server functionality of STMicroelectronics X-CUBE-AZRTOS-WL 2.0.0. A specially crafted network packet can lead to denial of service. An attacker can send a malicious packet to trigger this vulnerability.This vulnerability affects...

6.5CVSS0.00677EPSS
Exploits1References1
OSV
OSV
added 2025/03/10 8:29 p.m.6 views

GHSA-G274-C6JJ-H78P PocketMine-MP allows malicious client data to waste server resources due to lack of limits for explode()

Impact Due to lack of limits by default in the explode function, malicious clients were able to abuse some packets to waste server CPU and memory. This is similar to a previous security issue published in https://github.com/pmmp/PocketMine-MP/security/advisories/GHSA-gj94-v4p9-w672, but with a...

5.3CVSS7.3AI score
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/03/06 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2019-5152

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An exploitable information disclosure vulnerability exists in the network packet handling functionality of Shadowsocks-libev 3.3.2. When utilizing a Stream...

7.4CVSS7.2AI score0.01379EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/03/05 1:1 a.m.7 views

CVE-2024-55570

/api/user/users in the web GUI for the Cubro EXA48200 network packet broker build 20231025055018 fixed in V5.0R14.5P4-V3.3R1 allows remote authenticated users of the application to increase their privileges by sending a single HTTP PUT request with rolename=Administrator, aka incorrect access...

5.4CVSS6.6AI score0.00281EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2021-47293

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net/sched: actskbmod: Skip non-Ethernet packets Currently tcfskbmodact assumes that packets use Ethernet as their L2 protocol, which is not always the case. As ...

7.8CVSS6.5AI score0.00234EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2024-40937

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: gve: Clear napi-skb before devkfreeskbany gverxfreeskb incorrectly leaves napi-skb referenci...

5.5CVSS6.2AI score0.00253EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2020-24588

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The 802.11 standard that underpins Wi-Fi Protected Access WPA, WPA2, and WPA3 and Wired Equivalent Privacy WEP doesn't require that the A-MSDU flag in the...

3.5CVSS7.1AI score0.03537EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2015-6815

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The processtxdesc function in hw/net/e1000.c in QEMU before 2.4.0.1 does not properly process transmit descriptor data when sending a network packet, which allo...

3.5CVSS6.3AI score0.00982EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2020-26144

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered on Samsung Galaxy S3 i9305 4.4.4 devices. The WEP, WPA, WPA2, and WPA3 implementations accept plaintext A-MSDU frames as long as the fir...

6.5CVSS7.2AI score0.04913EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/02/26 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel, which stems from the failure to disassociate NAPI when the tun device is destroyed...

5.5CVSS6.2AI score0.00268EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2025/02/13 5:52 p.m.8 views

CVE-2024-28759

A crafted network packet may cause a buffer overrun in Wind River VxWorks 7 through 23.09...

4.3CVSS7AI score0.00249EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/06 1:43 a.m.11 views

CVE-2022-43663

An integer conversion vulnerability exists in the SORBAx64.dll RecvPacket functionality of WellinTech KingHistorian 35.01.00.05. A specially crafted network packet can lead to a buffer overflow. An attacker can send a malicious packet to trigger this vulnerability...

9.8CVSS6.8AI score0.14039EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/02/05 11:52 p.m.12 views

CVE-2022-41004

Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these...

9.8CVSS7.6AI score0.01666EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/02/05 11:52 p.m.11 views

CVE-2022-41022

Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these...

7.2CVSS7.8AI score0.01716EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/02/05 11:51 p.m.11 views

CVE-2022-41013

Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these...

9.8CVSS7.6AI score0.01666EPSS
Exploits1References1
Rows per page
Query Builder