Lucene search
K

94 matches found

Cvelist
Cvelist
added 6 days ago32 views

CVE-2026-57029 Junos OS Evolved: QFX Series: When sFlow collector reachability changes evo-pfemand process can crash

A Missing Synchronization vulnerability in the flow collector handler of Juniper Networks Junos OS Evolved on QFX Series allows an adjacent, unauthenticated attacker to cause a Denial-of-Service DoS. When the reachability of an sFlow collector changes, the corresponding next-hop entry is...

6CVSS0.0019EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.6 views

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: ipv6: Fixed out-of-bound access in fib6addrt2node. syzbot reported an out-of-bound read in fib6addrt2node. 0 When an IPv6 route is created with RTANHID, the struct fib6info does not have the trailing struct fib6nh. The referenced...

7.8CVSS5.8AI score0.0012EPSS
Exploits0References2
Arista
Arista
added 2026/06/23 12:0 a.m.10 views

Security Advisory 0142

Security Advisory 0142 PDF Date: June 23, 2026 Revision | Date | Changes ---|---|--- 1.0 | June 23, 2026 | Initial release 1.1 | July 8, 2026 | Updated Resolution and Mitigation sections The CVE-ID tracking this issue: CVE-2026-12546 CVSSv3.1 Base Score: 6.0...

6AI score
Exploits0Affected Software1
OPENSUSE Linux
OPENSUSE Linux
added 2026/06/05 12:0 a.m.6 views

Security update for frr (important)

openSUSE security update: security update for frr ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20898-1 Rating: important References: bsc1261013 bsc1263859 bsc1263863 bsc1263974 Cross-References: CVE-2026-28532 CVE-2026-37457 CVE-2026-37458...

7.5CVSS5.4AI score0.00389EPSS
Exploits0References4
NVD
NVD
added 2026/06/03 6:16 p.m.14 views

CVE-2026-46260

In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix out-of-bound access in fib6addrt2node. syzbot reported out-of-bound read in fib6addrt2node. 0 When IPv6 route is created with RTANHID, struct fib6info does not have the trailing struct fib6nh. The cited commit started t...

7.8CVSS0.0012EPSS
Exploits0References5
EUVD
EUVD
added 2026/06/03 3:49 p.m.10 views

EUVD-2026-34122

In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix out-of-bound access in fib6addrt2node. syzbot reported out-of-bound read in fib6addrt2node. 0 When IPv6 route is created with RTANHID, struct fib6info does not have the trailing struct fib6nh. The cited commit started t...

5.8AI score0.0012EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/06/03 3:49 p.m.9 views

CVE-2026-46260

In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix out-of-bound access in fib6addrt2node. syzbot reported out-of-bound read in fib6addrt2node. 0 When IPv6 route is created with RTANHID, struct fib6info does not have the trailing struct fib6nh. The cited commit started t...

5.7AI score0.0012EPSS
Exploits0References6Affected Software1
CVE
CVE
added 2026/06/03 3:49 p.m.24 views

CVE-2026-46260

The CVE-2026-46260 entry is supported by multiple connected sources detailing a kernel IPv6 out-of-bounds read when creating an IPv6 route with RTA_NH_ID, due to fib6_info not containing trailing fib6_nh and an unsafe read of iter->fib6_nh. The fix adds a check of iter->nh before dereferenc...

7.8CVSS5.8AI score0.0012EPSS
Exploits0References5Affected Software1
Positive Technologies
Positive Technologies
added 2026/06/03 12:0 a.m.18 views

PT-2026-46023

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An out-of-bounds read exists in the IPv6 routing component of the Linux kernel. The issue occurs within the fib6 add rt2node function when an IPv6 route is created using RTA NH ID, as th...

9.8CVSS5.2AI score0.00537EPSS
Exploits4References353
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: Net: Marvell: Pestera: Fixed handling of IPv4 routes with nhid. Fixed the handling of IPv4 routes that reference a nexthop via its id by replacing calls to fibinfonh with fibinfonhc. When attempting to add an IPv4 route that...

5.5CVSS5.9AI score0.00182EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/04/27 7:23 p.m.10 views

CVE-2026-6988

A flaw has been found in Tenda HG10 HG7HG9HG10re300001138enxpon. This issue affects the function formRoute of the file /boaform/formRouting of the component Boa Service. This manipulation of the argument nextHop causes buffer overflow. It is possible to initiate the attack remotely. The exploit h...

9CVSS8.4AI score0.00619EPSS
Exploits1References1
NVD
NVD
added 2026/04/25 6:16 p.m.7 views

CVE-2026-6988

A flaw has been found in Tenda HG10 HG7HG9HG10re300001138enxpon. This issue affects the function formRoute of the file /boaform/formRouting of the component Boa Service. This manipulation of the argument nextHop causes buffer overflow. It is possible to initiate the attack remotely. The exploit h...

9CVSS0.00619EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2026/04/25 5:0 p.m.3 views

CVE-2026-6988

A flaw has been found in Tenda HG10 HG7HG9HG10re300001138enxpon. This issue affects the function formRoute of the file /boaform/formRouting of the component Boa Service. This manipulation of the argument nextHop causes buffer overflow. It is possible to initiate the attack remotely. The exploit h...

9CVSS8.5AI score0.00619EPSS
Exploits1References5
Cvelist
Cvelist
added 2026/04/25 5:0 p.m.37 views

CVE-2026-6988 Tenda HG10 Boa Service formRouting formRoute buffer overflow

A flaw has been found in Tenda HG10 HG7HG9HG10re300001138enxpon. This issue affects the function formRoute of the file /boaform/formRouting of the component Boa Service. This manipulation of the argument nextHop causes buffer overflow. It is possible to initiate the attack remotely. The exploit h...

9CVSS0.00619EPSS
Exploits1References5
EUVD
EUVD
added 2026/04/25 5:0 p.m.5 views

EUVD-2026-25664

A flaw has been found in Tenda HG10 HG7HG9HG10re300001138enxpon. This issue affects the function formRoute of the file /boaform/formRouting of the component Boa Service. This manipulation of the argument nextHop causes buffer overflow. It is possible to initiate the attack remotely. The exploit h...

9CVSS8.5AI score0.00619EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2026/04/25 12:0 a.m.7 views

PT-2026-35159

A flaw has been found in Tenda HG10 HG7 HG9 HG10re 300001138 en xpon. This issue affects the function formRoute of the file /boaform/formRouting of the component Boa Service. This manipulation of the argument nextHop causes buffer overflow. It is possible to initiate the attack remotely. The...

9CVSS8.5AI score0.00619EPSS
Exploits1References6
NVD
NVD
added 2026/04/23 12:17 p.m.6 views

CVE-2026-31531

In the Linux kernel, the following vulnerability has been resolved: ipv4: nexthop: allocate skb dynamically in rtmgetnexthop When querying a nexthop object via RTMGETNEXTHOP, the kernel currently allocates a fixed-size skb using NLMSGGOODSIZE. While sufficient for single nexthops and small...

5.5CVSS0.00164EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.7 views

Unity Linux 20.1050e / 20.1070e Security Update: kernel (UTSA-2026-011394)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011394 advisory. In the Linux kernel, the following vulnerability has been resolved: ipv4: route: Prevent rtbindexception from rebinding stale fnhe The sit driver's packet transmissi...

5.9AI score0.00165EPSS
Exploits0References4
OSV
OSV
added 2026/04/07 2:58 p.m.6 views

GO-2026-4736 GoBGP vulnerable to a denial of service via the NEXT_HOP path attribute in github.com/osrg/gobgp

GoBGP vulnerable to a denial of service via the NEXTHOP path attribute in github.com/osrg/gobgp...

7.5CVSS5.8AI score0.00333EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2026/03/26 3:18 p.m.4 views

CVE-2026-30405

An issue in GoBGP gobgpd v.4.2.0 allows a remote attacker to cause a denial of service via the NEXTHOP path attribute...

7.5CVSS5.8AI score0.00333EPSS
Exploits1References1
Rows per page
Query Builder