281 matches found
CVE-2024-29018
Moby is an open source container framework that is a key component of Docker Engine, Docker Desktop, and other distributions of container tooling or runtimes. Moby's networking implementation allows for many networks, each with their own IP address range and gateway, to be defined. This feature i...
CVE-2024-26634 net: fix removing a namespace with conflicting altnames
In the Linux kernel, the following vulnerability has been resolved: net: fix removing a namespace with conflicting altnames Mark reports a BUG when a net namespace is removed. kernel BUG at net/core/dev.c:11520! Physical interfaces moved outside of initnet get "refunded" to initnet when that...
The vulnerability of SMB microprogramming software for network interfaces and Zyxel USG and Zyxel VPN devices allows a perpetrator to cause service failures.
The vulnerability of SMB microprogramming services for network interfaces and Zyxel USG and Zyxel VPN devices relates to the execution of operations beyond the buffer in memory. Exploiting this vulnerability can allow a malicious actor to cause service failures...
The vulnerability of the proactor1.2 service (/usr/sbin/proactor1.2/pro), a microprogramming software for network interfaces and VPN devices from Zyxel, allows attackers to circumvent existing security restrictions.
The vulnerability of the proactor1.2 service /usr/sbin/proactor1.2/pro, a microprogrammed software for network interfaces and VPN devices from Zyxel, is related to insufficient checking of incoming requests. Exploiting this vulnerability can allow an attacker to bypass existing security...
Remote Code Execution
wrangler is vulnerable to Remote Code Execution. The vulnerability is caused due to V8 inspector intentionally allowing arbitrary code execution within Workers sandbox for debugging purpose. The wrangler dev server starts an inspector listening on all network interfaces. This allows an attacker t...
Design/Logic Flaw
Sending specially crafted HTTP requests to Miniflare's server could result in arbitrary HTTP and WebSocket requests being sent from the server. If Miniflare was configured to listen on external network interfaces as was the default in wrangler until 3.19.0, an attacker on the local network could...
CVE-2023-7078
CVE-2023-7078 describes a server-side request forgery in Miniflare’s server. Sending specially crafted HTTP requests could cause the server to emit arbitrary HTTP and WebSocket requests, potentially enabling an attacker on the local network to reach other local services if Miniflare listened on e...
MacMaster - MAC Address Changer
MacMaster is a versatile command line tool designed to change the MAC address of network interfaces on your system. It provides a simple yet powerful solution for network anonymity and testing. Features Custom MAC Address: Set a specific MAC address to your network interface. Random MAC Address:...
Moderate: containernetworking-plugins security update
The Container Network Interface CNI project consists of a specification and libraries for writing plug-ins for configuring network interfaces in Linux containers, along with a number of supported plug-ins. CNI concerns itself only with network connectivity of containers and removing allocated...
The vulnerability of the TLS implementation in Cisco Firepower Threat Defense’s micro-programming network interface devices allows attackers to induce a service failure.
The vulnerability of the TLS protocol implementation in Cisco Firepower Threat Defense’s microprogramming network interfaces is related to improper memory allocation. Exploiting this vulnerability could allow a malicious actor to cause a service failure by triggering a reboot of the Snort intrusi...
What Is Multi-Homing?
Decoding the Term: Deciphering the Significance of Multi-Homing? The term multi-homing, in the realm of computer networking, finds itself surrounded by considerable confusion owing to its multifaceted technical nuances. Nevertheless, it stands as a pillar of network security and dependability...
CVE-2023-28970
Technical details about CVE-2023-28970 are not publicly available in the provided connected documents. Monitor for updates; no new information on affected versions, root cause specifics, exploitation status, or remediation is present here.
SUSE CVE-2016-5390
Foreman before 1.11.4 and 1.12.x before 1.12.1 allow remote authenticated users with the viewhosts permission containing a filter to obtain sensitive network interface information via a request to API routes beneath "hosts," as demonstrated by a GET request to api/v2/hosts/secrethost/interfaces...
SUSE CVE-2021-37987
Use after free in Network APIs in Google Chrome prior to 95.0.4638.54 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...
The vulnerability of the implementations of TLS and SSL protocols in the microprogramming-based network interface controllers of Cisco Adaptive Security Appliances (ASA) and Firepower Threat Defense (FTD) from the ASA 5500-X Series, Firepower 4100 Series, and Firepower 9300 Series allows attackers to induce service interruptions.
The vulnerability of the implementations of TLS and SSL protocols in microprogrammable network interface devices from Cisco Adaptive Security Appliances ASA and Firepower Threat Defense FTD of the ASA 5500-X Series, Firepower 4100 Series, and Firepower 9300 Series is related to the copying of...
CVE-2022-27584
Password recovery vulnerability in SICK SIM2000ST Partnumber 1080579 allows an unprivileged remote attacker to gain access to the userlevel defined as RecoverableUserLevel by invocating the password recovery mechanism method. This leads to an increase in their privileges on the system and thereby...
CVE-2022-27582
Password recovery vulnerability in SICK SIM4000 PPC Partnumber 1078787 allows an unprivileged remote attacker to gain access to the userlevel defined as RecoverableUserLevel by invocating the password recovery mechanism method. This leads to an increase in their privileges on the system and there...
CVE-2021-40024
Implementation of the WLAN module interfaces has the information disclosure vulnerability. Successful exploitation of this vulnerability may affect data confidentiality...
DEBIAN-CVE-2022-1651
A memory leak flaw was found in the Linux kernel in acrndevioctl in the drivers/virt/acrn/hsm.c function in how the ACRN Device Model emulates virtual NICs in VM. This flaw allows a local privileged attacker to leak unauthorized kernel information, causing a denial of service...
The vulnerability of the command-line interface (CLI) of Zyxell USG FLEX, ATP, and VPN network interfaces allows a hacker to execute arbitrary commands with root privileges.
The vulnerability of the command-line interface CLI of Zyxell USG FLEX, ATP, and VPN network interfaces relates to the possibility of rewriting files with arbitrary content. Exploiting this vulnerability allows an attacker to execute arbitrary commands with root privileges...