Lucene search
K

385 matches found

OSV
OSV
added 2025/10/01 12:15 p.m.3 views

UBUNTU-CVE-2023-53500

In the Linux kernel, the following vulnerability has been resolved: xfrm: fix slab-use-after-free in decodesession6 When the xfrm device is set to the qdisc of the sfb type, the cb field of the sent skb may be modified during enqueuing. Then, slab-use-after-free may occur when the xfrm device sen...

7.8CVSS5.8AI score0.0015EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2025/09/25 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2025-39848

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ax25: properly unshare skbs in ax25kissrcv Bernard Pidoux reported a regression apparently caused by commit c353e8983e0d net: introduce per netns packet chains...

5.5CVSS6.5AI score0.00149EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2025/09/18 11:38 p.m.4 views

SUSE CVE-2023-53384

In the Linux kernel, the following vulnerability has been resolved: wifi: mwifiex: avoid possible NULL skb pointer dereference In 'mwifiexhandleuaprxforward', always check the value returned by 'skbcopy' to avoid potential NULL pointer dereference in 'mwifiexuapqueuebridgedpkt', and drop original...

5.5CVSS6.5AI score0.00139EPSS
Exploits0References20
CVE
CVE
added 2025/09/18 4:4 p.m.24 views

CVE-2023-53432

CVE-2023-53432 : Linux kernel vulnerability in the FireWire net path (firewire: net: fix use after free in fwnet_finish_incoming_packet()). The netif_rx() path frees the skb, so dereferencing skb->len could use freed memory. The incident is reported as resolved in the provided description; no ...

7.8CVSS6.4AI score0.00142EPSS
Exploits0References4Affected Software1
Zero Day Initiative
Zero Day Initiative
added 2025/09/18 12:0 a.m.4 views

Delta Electronics COMMGR Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics COMMGR. An attacker must first obtain the ability to compromise a PLC in order to exploit this vulnerability. The specific flaw exists within the handling of packets received from a...

8.8CVSS7.4AI score0.00376EPSS
Exploits0References1
Ubuntu
Ubuntu
added 2025/09/11 12:41 p.m.5 views

USN-7744-1: QEMU vulnerabilities

It was discovered that QEMU incorrectly handled certain virtio devices. A privileged guest attacker could use this issue to cause QEMU to crash, leading to a denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 22.04 LTS and Ubuntu 24.04 LTS. CVE-2024-3446 It was...

8.2CVSS7.2AI score0.01027EPSS
Exploits2References1
CNNVD
CNNVD
added 2025/09/05 12:0 a.m.9 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a dst reference count leak due to nfreject not properly handling loopback packets...

5.5CVSS6.8AI score0.0016EPSS
Exploits0References7
Microsoft CVE
Microsoft CVE
added 2025/09/04 4:30 a.m.4 views

An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy when parsing a UDP packet due to a net_process_received_packet integer underflow during an *udp_packet_handler call.

...

9.8CVSS7AI score0.02331EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2025/09/02 8:2 p.m.4 views

CVE-2025-8299 Realtek rtl81xx SDK Wi-Fi Driver MgntActSet_TEREDO_SET_RS_PACKET Heap-based Buffer Overflow Local Privilege Escalation Vulnerability

Realtek rtl81xx SDK Wi-Fi Driver MgntActSetTEREDOSETRSPACKET Heap-based Buffer Overflow Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Realtek rtl81xx SDK Wi-Fi driver. An attacker must first obtain the abili...

8.8CVSS7.1AI score0.00137EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/08/14 12:0 a.m.3 views

Cisco多款产品 安全漏洞

Cisco IOS and others are products of Cisco, an American company.Cisco IOS is a set of operating systems developed for its network devices.Cisco Adaptive Security Appliances Software ASA Software is a set of firewall and network security platforms.Cisco IOS XE is Cisco IOS XE is an operating syste...

5.8CVSS6.7AI score0.0063EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/08/06 12:0 a.m.8 views

Qualcomm Chipsets 安全漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that could result in information disclosure when processing packets with invalid header lengths on the BE side of the EAVB...

5.5CVSS6.2AI score0.00079EPSS
Exploits0References2
NVD
NVD
added 2025/07/03 9:15 a.m.5 views

CVE-2025-38146

In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: Fix the dead loop of MPLS parse The unexpected MPLS packet may not end with the bottom label stack. When there are many stacks, The label count value has wrapped around. A dead loop occurs, soft lockup/CPU stuck...

7.8CVSS0.00174EPSS
Exploits0References9
NVD
NVD
added 2025/07/03 9:15 a.m.4 views

CVE-2025-38124

In the Linux kernel, the following vulnerability has been resolved: net: fix udp gso skbsegment after pull from fraglist Commit a1e40ac5b5e9 "net: gso: fix udp gso fraglist segmentation after pull from fraglist" detected invalid geometry in fraglist skbs and redirects them from skbsegmentlist to...

5.5CVSS0.00148EPSS
Exploits0References7
NVD
NVD
added 2025/07/03 9:15 a.m.4 views

CVE-2025-38115

In the Linux kernel, the following vulnerability has been resolved: netsched: schsfq: fix a potential crash on gsoskb handling SFQ has an assumption of always being able to queue at least one packet. However, after the blamed commit, sch-q.len can be inflated by packets in sch-gsoskb, and an...

5.5CVSS0.00172EPSS
Exploits0References10
Cvelist
Cvelist
added 2025/06/21 12:10 a.m.8 views

CVE-2025-5475 Sony XAV-AX8500 Bluetooth Packet Handling Integer Overflow Remote Code Execution Vulnerability

Sony XAV-AX8500 Bluetooth Packet Handling Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected Sony XAV-AX8500 devices. An attacker must first obtain the ability to pair a malicious Bluetooth device with t...

7.5CVSS0.00295EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/06/09 9:13 p.m.18 views

CVE-2025-49140 Pion Interceptor's improper RTP padding handling allows remote crash for SFU users (DoS)

Pion Interceptor is a framework for building RTP/RTCP communication software. Versions v0.1.36 through v0.1.38 contain a bug in a RTP packet factory that can be exploited to trigger a panic with Pion based SFU via crafted RTP packets, This only affect users that use pion/interceptor. Users should...

7.5CVSS0.00415EPSS
Exploits0References4
NVD
NVD
added 2025/05/27 11:15 p.m.24 views

CVE-2025-2826

n affected platforms running Arista EOS, ACL policies may not be enforced. IPv4 ingress ACL, MAC ingress ACL, or IPv6 standard ingress ACL enabled on one or more ethernet or LAG interfaces may result in ACL policies not being enforced for ingress packets. This can cause incoming packets to...

2.6CVSS0.00471EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 5:28 a.m.10 views

CVE-2023-7060

Zephyr OS IP packet handling does not properly drop IP packets arriving on an external interface with a source address equal to 127.0.01 or the destination address...

8.6CVSS6.9AI score0.00492EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:47 p.m.7 views

CVE-2022-29859

component/common/network/dhcp/dhcps.c in ambiot amb1sdk aka SDK for Ameba1 before 2022-03-11 mishandles data structures for DHCP packet data...

9.8CVSS7AI score0.0123EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:5 p.m.9 views

CVE-2021-1956

Improper handling of ASB-U packet with L2CAP channel ID by slave host can lead to interference with piconet in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music...

6.5CVSS7.2AI score0.00233EPSS
Exploits0References1
Rows per page
Query Builder