Lucene search
+L

115 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 2:33 a.m.7 views

CVE-2023-1458

A vulnerability has been found in Ubiquiti EdgeRouter X 2.0.9-hotfix.6 and classified as critical. Affected by this vulnerability is an unknown functionality of the component OSPF Handler. The manipulation of the argument area leads to command injection. The attack can be launched remotely. The...

9.8CVSS7.7AI score0.03275EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2024/11/18 12:0 a.m.10 views

The vulnerability of the OSPFv2 network protocol implementation in the Cisco IOS XE operating system allows a attacker to cause a service failure.

The vulnerability of the OSPFv2 network protocol implementation in Cisco IOS XE operating systems is related to improper cleaning or release of resources. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

6.5CVSS5.4AI score0.00256EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2024/05/28 3:29 p.m.3 views

USN-6794-1 frr vulnerabilities

It was discovered that FRR incorrectly handled certain malformed BGP and OSPF packets. A remote attacker could use this issue to cause FRR to crash, resulting in a denial of service, or possibly execute arbitrary code...

7.5CVSS7.5AI score0.00825EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2024/05/03 2:9 a.m.5 views

SUSE CVE-2024-34088

In FRRouting FRR through 9.1, it is possible for the getedge function in ospfte.c in the OSPF daemon to return a NULL pointer. In cases where calling functions do not handle the returned NULL value, the OSPF daemon crashes, leading to denial of service...

7.5CVSS6.8AI score0.00689EPSS
Exploits0References5
OSV
OSV
added 2024/04/30 7:15 p.m.1 views

DEBIAN-CVE-2024-34088

In FRRouting FRR through 9.1, it is possible for the getedge function in ospfte.c in the OSPF daemon to return a NULL pointer. In cases where calling functions do not handle the returned NULL value, the OSPF daemon crashes, leading to denial of service...

7.5CVSS7.6AI score0.00689EPSS
Exploits0References1
OSV
OSV
added 2024/04/07 9:15 p.m.12 views

UBUNTU-CVE-2024-31950

In FRRouting FRR through 9.1, there can be a buffer overflow and daemon crash in ospfteparseri for OSPF LSA packets during an attempt to read Segment Routing subTLVs their size is not validated...

6.5CVSS7.5AI score0.00509EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/04/07 12:0 a.m.4 views

PT-2024-6035 · Frrouting +5 · Frrouting +5

Name of the Vulnerable Software and Affected Versions: FRRouting versions through 9.1 Description: The issue is related to the get edge function in the ospf te.c file of the OSPF daemon component in FRRouting, which can return a NULL pointer. If calling functions do not handle this NULL value, th...

9.8CVSS7.5AI score0.02152EPSS
Exploits3References98
OSV
OSV
added 2024/03/06 12:51 p.m.4 views

USN-6679-1 frr vulnerability

It was discovered that FRR incorrectly handled certain malformed OSPF LSA packets. A remote attacker could possibly use this issue to cause FRR to crash, resulting in a denial of service...

6.5CVSS7.3AI score0.0032EPSS
Exploits0References2
OSV
OSV
added 2024/02/28 7:15 a.m.2 views

DEBIAN-CVE-2024-27913

ospfteparsete in ospfd/ospfte.c in FRRouting FRR through 9.1 allows remote attackers to cause a denial of service ospfd daemon crash via a malformed OSPF LSA packet, because of an attempted access to a missing attribute field...

6.5CVSS6.8AI score0.0032EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/02/27 12:0 a.m.5 views

PT-2024-22130 · Frrouting +4 · Frrouting +4

Name of the Vulnerable Software and Affected Versions: FRRouting FRR versions through 9.1 Description: The issue allows remote attackers to cause a denial of service, resulting in the ospfd daemon crash, via a malformed OSPF LSA packet. This occurs because of an attempted access to a missing...

9.8CVSS7.6AI score0.02152EPSS
Exploits3References91
Positive Technologies
Positive Technologies
added 2023/03/25 12:0 a.m.7 views

PT-2023-7474 · Ubiquiti · Ubiquiti Edgerouter X

Name of the Vulnerable Software and Affected Versions: Ubiquiti EdgeRouter X version 2.0.9-hotfix.6 Description: A critical issue has been found in the OSPF Handler component of the software, potentially allowing for command injection through the manipulation of the argument area. This can be...

10CVSS7.8AI score0.03275EPSS
Exploits1References8
SUSE CVE
SUSE CVE
added 2023/02/15 4:25 a.m.3 views

SUSE CVE-2018-14880

The OSPFv3 parser in tcpdump before 4.9.3 has a buffer over-read in print-ospf6.c:ospf6printlshdr...

5.3CVSS7.5AI score0.05342EPSS
Exploits0References8
OSV
OSV
added 2023/01/13 12:15 a.m.6 views

CVE-2023-22406

A Missing Release of Memory after Effective Lifetime vulnerability in the kernel of Juniper Networks Junos OS and Junos OS Evolved allows an adjacent, unauthenticated attacker to cause a Denial of Service DoS. In a segment-routing scenario with OSPF as IGP, when a peer interface continuously flap...

6.5CVSS6.6AI score0.00309EPSS
Exploits0References1
OSV
OSV
added 2022/10/18 3:15 a.m.5 views

CVE-2022-22230

An Improper Input Validation vulnerability in the Routing Protocol Daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows an adjacent unauthenticated attacker to cause DoS Denial of Service. If another router generates more than one specific valid OSPFv3 LSA then rpd will crash while...

6.5CVSS5.8AI score0.00302EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/08/24 11:0 p.m.5 views

CVE-2022-20823

A vulnerability in the OSPF version 3 OSPFv3 feature of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to incomplete input validation of specific OSPFv3 packets. An attacker could...

8.6CVSS7.3AI score0.01022EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/08/24 12:0 a.m.6 views

Cisco NX-OS Software 缓冲区错误漏洞

Cisco NX-OS Software is a suite of data center-grade operating system software for switches from Cisco. A security vulnerability exists in Cisco NX-OS Software OSPFv3, which stems from incomplete validation of inputs to specific OSPFv3 messages allowing an unauthenticated, remote attacker to...

8.6CVSS5.7AI score0.01022EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2022/07/06 12:0 a.m.6 views

The vulnerability of the OSPF network protocol implementation in the microcomputer-based switching devices SCALANCE of the XM-400 and XR-500 series allows a intruder to trigger a service failure.

The vulnerability of the OSPF network protocol implementation in the microcomputer-based switching devices SCALANCE models XM-400 and XR-500 is related to the lack of integrity checks. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

7.8CVSS7.1AI score0.00588EPSS
Exploits0References2Affected Software7
OSV
OSV
added 2022/01/19 1:15 a.m.5 views

CVE-2022-22169

An Improper Initialization vulnerability in the routing protocol daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows an attacker who sends specific packets in certain orders and at specific timings to force OSPFv3 to unexpectedly enter graceful-restart GR helper mode even though...

5.9CVSS5.8AI score0.00827EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/01/12 5:0 p.m.9 views

CVE-2022-22169

An Improper Initialization vulnerability in the routing protocol daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows an attacker who sends specific packets in certain orders and at specific timings to force OSPFv3 to unexpectedly enter graceful-restart GR helper mode even though...

5.9CVSS6.2AI score0.00827EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/11/10 12:0 a.m.9 views

The vulnerability of the implementation of the OSPFv2 protocol in microprogrammed network interface devices from Cisco Adaptive Security Appliances and Cisco Firepower Threat Defense allows a attacker to induce a service failure.

The vulnerability of the OSPFv2 protocol implementation in Cisco Adaptive Security Appliances and Cisco Firepower Threat Defense software involves an uncontrolled consumption of resources. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

8.6CVSS7.2AI score0.01433EPSS
Exploits0References3Affected Software2
Rows per page
Query Builder