Lucene search
K

386 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2024-40937

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: gve: Clear napi-skb before devkfreeskbany gverxfreeskb incorrectly leaves napi-skb referenci...

5.5CVSS6.2AI score0.00253EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.15 views

Linux Distros Unpatched Vulnerability : CVE-2024-27415

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - netfilter: bridge: confirm multicast packets before passing them up the stack conntrack nfconfirm logic cannot handle cloned skbs referencing the same nfconn...

4.7CVSS6.5AI score0.00168EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2022-49646

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wifi: mac80211: fix queue selection for mesh/OCB interfaces When using iTXQ, the code assumes that there is only one vif queue for broadcast packets, using the ...

5.5CVSS6.8AI score0.00252EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2022-48911

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - netfilter: nfqueue: fix possible use-after-free Eric Dumazet says: The sockhold side seems suspect, because there is no guarantee that skrefcnt is not already 0...

5.5CVSS6.5AI score0.00207EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2024-27013

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tun: limit printing rate when illegal packet received by tun dev vhostworker will call tun call backs to receive packets. If too many illegal packets arrives,...

5.5CVSS6.8AI score0.00271EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2014-8160

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net/netfilter/nfconntrackprotogeneric.c in the Linux kernel before 3.18 generates incorrect conntrack entries during handling of certain iptables rule sets for...

5CVSS6.7AI score0.05489EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/02/27 3:8 a.m.6 views

SUSE CVE-2022-49369

In the Linux kernel, the following vulnerability has been resolved: amt: fix possible memory leak in amtrcv If an amt receives packets and it finds socket. If it can't find a socket, it should free a received skb. But it doesn't. So, a memory leak would possibly occur...

5.5CVSS6.6AI score0.00243EPSS
Exploits0References3
OSV
OSV
added 2025/02/26 2:10 a.m.8 views

CVE-2022-49340 ip_gre: test csum_start instead of transport header

In the Linux kernel, the following vulnerability has been resolved: ipgre: test csumstart instead of transport header GRE with TUNNELCSUM will apply local checksum offload on CHECKSUMPARTIAL packets. ipgrexmit must validate csumstart after an optional skbpull, else lcocsum may trigger an overflow...

5.5CVSS5AI score0.00267EPSS
Exploits0References10
OSV
OSV
added 2025/02/26 1:55 a.m.9 views

CVE-2022-49160 scsi: qla2xxx: Fix crash during module load unload test

In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix crash during module load unload test During purex packet handling the driver was incorrectly freeing a pre-allocated structure. Fix this by skipping that entry. System crashed with the following stack during a...

5.5CVSS5.3AI score0.00273EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.14 views

Azure Linux 3.0 Security Update: kernel (CVE-2024-27013)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-27013 advisory. - In the Linux kernel, the following vulnerability has been resolved: tun: limit printing rate when illegal...

5.5CVSS6.1AI score0.00271EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/02/06 4:4 a.m.7 views

CVE-2021-40368

A vulnerability has been identified in SIMATIC S7-400 CPU 412-1 DP V7 All versions, SIMATIC S7-400 CPU 412-2 DP V7 All versions, SIMATIC S7-400 CPU 412-2 PN/DP V7 All versions V7.0.3, SIMATIC S7-400 CPU 414-2 DP V7 All versions, SIMATIC S7-400 CPU 414-3 DP V7 All versions, SIMATIC S7-400 CPU 414-...

7.5CVSS6.6AI score0.00965EPSS
Exploits0
CNNVD
CNNVD
added 2025/02/06 12:0 a.m.7 views

2N OS 安全漏洞

2N OS is an operating system for access control systems from 2N. A security vulnerability exists in 2N OS that stems from a specially crafted packet handling flaw. An attacker exploiting the vulnerability could crash the device...

4.6CVSS6.7AI score0.00216EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 5:55 p.m.8 views

CVE-2019-5152

An exploitable information disclosure vulnerability exists in the network packet handling functionality of Shadowsocks-libev 3.3.2. When utilizing a Stream Cipher, a specially crafted set of network packets can cause an outbound connection from the server, resulting in information disclosure. An...

7.4CVSS6.2AI score0.01379EPSS
Exploits1References1
NVD
NVD
added 2025/01/31 12:15 p.m.12 views

CVE-2025-21669

In the Linux kernel, the following vulnerability has been resolved: vsock/virtio: discard packets if the transport changes If the socket has been de-assigned or assigned to another transport, we must discard any packets received because they are not expected and would cause issues when we access...

5.5CVSS0.00214EPSS
Exploits0References9
OSV
OSV
added 2025/01/31 11:25 a.m.12 views

CVE-2025-21669 vsock/virtio: discard packets if the transport changes

In the Linux kernel, the following vulnerability has been resolved: vsock/virtio: discard packets if the transport changes If the socket has been de-assigned or assigned to another transport, we must discard any packets received because they are not expected and would cause issues when we access...

5.5CVSS6.2AI score0.00214EPSS
Exploits0References12
OSV
OSV
added 2025/01/22 12:0 a.m.8 views

CVE-2023-37023

Open5GS MME versions = 2.6.4 contain a reachable assertion in the Uplink NAS Transport packet handler. A packet missing its MMEUES1APID field causes Open5gs to crash; an attacker may repeatedly send such packets to cause denial of service...

8.6CVSS6.7AI score0.00752EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2024/12/30 4:24 p.m.8 views

CVE-2024-56717

In the Linux kernel, the following vulnerability has been resolved: net: mscc: ocelot: fix incorrect IFH SRCPORT field in ocelotifhsetbasic Packets injected by the CPU should have a SRCPORT field equal to the CPU port module index in the Analyzer block ocelot-numphysports. The blamed commit copie...

5.5CVSS6.9AI score0.00202EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/12/27 3:2 p.m.12 views

CVE-2024-56648 net: hsr: avoid potential out-of-bound access in fill_frame_info()

In the Linux kernel, the following vulnerability has been resolved: net: hsr: avoid potential out-of-bound access in fillframeinfo syzbot is able to feed a packet with 14 bytes, pretending it is a vlan one. Since fillframeinfo is relying on skb-maclen already, extend the check to cover this case...

0.00244EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/12/11 4:21 p.m.3 views

kernel: net: avoid potential underflow in qdisc_pkt_len_init() with UFO

In the Linux kernel, the following vulnerability has been resolved: net: avoid potential underflow in qdiscpktleninit with UFO After commit 7c6d2ecbda83 "net: be more gentle about silly gso requests coming from user" virtionethdrtoskb had sanity check to detect malicious attempts from user space ...

5.5CVSS6.4AI score0.00277EPSS
Exploits0References5
OSV
OSV
added 2024/11/07 10:15 a.m.7 views

AZL-52951 CVE-2024-50168 affecting package kernel for versions less than 5.15.173.1-1

In the Linux kernel, the following vulnerability has been resolved: net/sun382586: fix potential memory leak in sun382586sendpacket The sun382586sendpacket returns NETDEVTXOK without freeing skb in case of skb-len being too long, add devkfreeskb to fix it...

5.5CVSS6.8AI score0.00221EPSS
Exploits0References1
Rows per page
Query Builder