Lucene search
K

892 matches found

Positive Technologies
Positive Technologies
added 2025/07/22 12:0 a.m.7 views

PT-2025-30431 · Bloomberg · Bloomberg Comdb2

Name of the Vulnerable Software and Affected Versions: Bloomberg Comdb2 version 8.1 Description: A null pointer dereference vulnerability exists in the net connectmsg Protocol Buffer Message functionality. Receiving specially crafted network packets can lead to a denial of service. An attacker ca...

7.5CVSS6.1AI score0.00908EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/07/10 8:19 p.m.11 views

CVE-2025-3947 Integer underflow during processing of short network packets in CDA FTEB responder

The Honeywell Experion PKS contains an Integer Underflow vulnerability in the component Control Data Access CDA. An attacker could potentially exploit this vulnerability, leading to Input Data Manipulation, which could result in improper integer data value checking during subtraction leading to a...

8.2CVSS0.00315EPSS
Exploits0References1
OSV
OSV
added 2025/06/10 5:21 p.m.3 views

CVE-2025-22251

An improper restriction of communication channel to intended endpoints vulnerability CWE-923 in FortiOS 7.6.0, 7.4.0 through 7.4.5, 7.2 all versions, 7.0 all versions, 6.4 all versions may allow an unauthenticated attacker to inject unauthorized sessions via crafted FGSP session synchronization...

5.3CVSS5.8AI score0.00337EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/06/03 12:0 a.m.8 views

Qualcomm Chipsets 安全漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm, Inc. A security vulnerability exists in Qualcomm Chipsets that stems from a possible information disclosure when processing network goodbye RTCP packets...

8.2CVSS6AI score0.00202EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/23 3:55 a.m.9 views

CVE-2023-34435

A firmware update vulnerability exists in the boa formUpload functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted network packets can lead to arbitrary firmware update. An attacker can provide a malicious file to trigger this vulnerability...

7.2CVSS7AI score0.00471EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 3:36 a.m.11 views

CVE-2023-28391

A memory corruption vulnerability exists in the HTTP Server header parsing functionality of Weston Embedded uC-HTTP v3.01.01. Specially crafted network packets can lead to code execution. An attacker can send a malicious packet to trigger this vulnerability...

9.8CVSS7.3AI score0.01475EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:25 a.m.10 views

CVE-2023-32275

An information disclosure vulnerability exists in the CtEnumCa functionality of SoftEther VPN 4.41-9782-beta and 5.01.9674. Specially crafted network packets can lead to a disclosure of sensitive information. An attacker can send packets to trigger this vulnerability...

5.5CVSS6.2AI score0.00392EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:24 a.m.10 views

CVE-2023-25181

A heap-based buffer overflow vulnerability exists in the HTTP Server functionality of Weston Embedded uC-HTTP v3.01.01. A specially crafted set of network packets can lead to arbitrary code execution. An attacker can send a malicious packet to trigger this vulnerability...

9.8CVSS7.8AI score0.01688EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:14 a.m.4 views

CVE-2023-22365

An OS command injection vulnerability exists in the ysthirdparty checksystemuser functionality of Milesight UR32L v32.3.0.5. A specially crafted set of network packets can lead to command execution. An attacker can send a network request to trigger this vulnerability...

7.2CVSS7.8AI score0.02184EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:37 a.m.3 views

CVE-2023-23581

A denial-of-service vulnerability exists in the vpnserver EnSafeHttpHeaderValueStr functionality of SoftEther VPN 5.01.9674 and 5.02. A specially crafted network packet can lead to denial of service...

7.5CVSS6.8AI score0.00834EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:8 p.m.11 views

CVE-2022-22723

A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists that could lead to a buffer overflow causing program crashes and arbitrary code execution when specially crafted packets are sent to the device over the network. Protection functions and tripping function via GOOSE can be...

8.8CVSS8.1AI score0.02822EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:53 p.m.16 views

CVE-2022-46377

An out-of-bounds read vulnerability exists in the PORT command parameter extraction functionality of Weston Embedded uC-FTPs v 1.98.00. A specially-crafted set of network packets can lead to denial of service. An attacker can send packets to trigger this vulnerability.This vulnerability occurs wh...

7.5CVSS6.8AI score0.0148EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:30 p.m.13 views

CVE-2021-21952

An authentication bypass vulnerability exists in the CMDDEVICEGETRSAKEYREQUEST functionality of the homesecurity binary of Anker Eufy Homebase 2 2.1.6.9h. A specially-crafted set of network packets can lead to increased privileges...

9.8CVSS7.1AI score0.01271EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:37 p.m.4 views

CVE-2021-35522

A Buffer Overflow in Thrift command handlers in IDEMIA Morpho Wave Compact and VisionPass devices before 2.6.2, Sigma devices before 4.9.4, and MA VP MD devices before 4.9.7 allows remote attackers to achieve code execution, denial of services, and information disclosure via TCP/IP packets...

9.8CVSS7.3AI score0.03657EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:9 a.m.7 views

CVE-2019-15134

RIOT through 2019.07 contains a memory leak in the TCP implementation gnrctcp, allowing an attacker to consume all memory available for network packets and thus effectively stopping all network threads from working. This is related to receive in sys/net/gnrc/transportlayer/tcp/gnrctcpeventloop.c...

7.8CVSS6.9AI score0.01512EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:58 a.m.13 views

CVE-2018-16559

A vulnerability has been identified in SIMATIC S7-1500 CPU All versions = V2.0 and V2.5, SIMATIC S7-1500 CPU All versions = V1.8.5. Specially crafted network packets sent to port 80/tcp or 443/tcp could allow an unauthenticated remote attacker to cause a Denial-of-Service condition of the device...

7.8CVSS7AI score0.01986EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:52 a.m.7 views

CVE-2019-10953

ABB, Phoenix Contact, Schneider Electric, Siemens, WAGO - Programmable Logic Controllers, multiple versions. Researchers have found some controllers are susceptible to a denial-of-service attack due to a flood of network packets...

7.5CVSS6.8AI score0.03671EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/05/22 12:0 a.m.4 views

Ocuco Innovation 安全漏洞

Ocuco Innovation is an integrated Laboratory Management System LMS from Ocuco Ireland, designed for laboratories performing edge grinding, freeform and conventional lens processing. A security vulnerability exists in Ocuco Innovation version 2.10.24.51, which stems from a modification of TCP...

7.8CVSS6.9AI score0.00179EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/05/14 12:0 a.m.6 views

SAMSUNG多款产品 缓冲区错误漏洞

SAMSUNG Exynos 1080 and others are products of Samsung South Korea.SAMSUNG Exynos 1080 is a processor used in mobile devices.SAMSUNG Exynos 1280 is a processor used in mobile devices.SAMSUNG Exynos 1480 is a processor used in cell phone chips. A buffer error vulnerability exists in various SAMSUN...

9.1CVSS6.8AI score0.00398EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/04/04 2:38 p.m.14 views

CVE-2024-45064

A buffer overflow vulnerability exists in the FileX Internal RAM interface functionality of STMicroelectronics X-CUBE-AZRTOS-WL 2.0.0. A specially crafted set of network packets can lead to code execution. An attacker can send a sequence of requests to trigger this vulnerability...

8.5CVSS8AI score0.00989EPSS
Exploits1References1
Rows per page
Query Builder