Out-of-bounds

The buffer obtained from kernel APIs such as cammemgetcpubuf may be readable/writable in userspace after kernel accesses it. In other words, user mode may race and modify the packet header e.g. header.count, causing checks e.g. size checks in kernel code to be invalid. This may lead to...

PT-2023-21825 · Qualcomm · Snapdragon +29

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned. Description: The issue involves kernel APIs, such as cam mem get cpu buf, where a buffer may remain readable and writable in userspace after being accessed by the kernel. This can lead to a race...

SUSE CVE-2015-8741

The dissectppi function in epan/dissectors/packet-ppi.c in the PPI dissector in Wireshark 2.0.x before 2.0.1 does not initialize a packet-header data structure, which allows remote attackers to cause a denial of service application crash via a crafted packet...

SUSE CVE-2016-5358

epan/dissectors/packet-pktap.c in the Ethernet dissector in Wireshark 2.x before 2.0.4 mishandles the packet-header data type, which allows remote attackers to cause a denial of service application crash via a crafted packet...

CVE-2022-20687

Multiple vulnerabilities in the Link Layer Discovery Protocol LLDP functionality of Cisco ATA 190 Series Analog Telephone Adapter firmware could allow an unauthenticated, remote attacker to execute arbitrary code on an affected device and cause the LLDP service to restart. These vulnerabilities a...

National Health Insurance 缓冲区错误漏洞

National Health Insurance NHI is a health insurance program health insurance card in Taiwan, China. A security vulnerability exists in National Health Insurance that stems from insufficient validation of network packet header lengths and a stack-based buffer overflow, which could be exploited by ...

Input validation

A vulnerability has been identified in Capital Embedded AR Classic 431-422 All versions, Capital Embedded AR Classic R20-11 All versions V2303, Nucleus NET All versions, Nucleus ReadyStart V3 All versions V2017.02.4, Nucleus ReadyStart V4 All versions V4.1.0, Nucleus Source Code All versions...

OSV-2020-1383 Container-overflow in grk::T2Decode::read_packet_header

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=24427 Crash type: Container-overflow READ 8 Crash state: grk::T2Decode::readpacketheader grk::T2Decode::decodepacket grk::T2Decode::decodepackets...

Race condition

A vulnerability in the detection engine of Cisco Firepower Threat Defense Software could allow an unauthenticated, remote attacker to cause the unexpected restart of the SNORT detection engine, resulting in a denial of service DoS condition. The vulnerability is due to the incomplete error handli...

Race condition

A vulnerability in the Cisco Discovery Protocol or Link Layer Discovery Protocol LLDP implementation for the Cisco IP Phone 7800 and 8800 Series could allow an unauthenticated, adjacent attacker to cause an affected phone to reload unexpectedly, resulting in a temporary denial of service DoS...

Denial of Service Vulnerability in FXOS Software and NX-OS Software Fabric Services Component for Multiple Cisco Products

Cisco Firepower 4100 Series Next-Generation Firewalls are all products of Cisco Corporation.Cisco Firepower 4100 Series Next-Generation Firewalls is a 4100 series firewall device. Cisco Firepower 4100 Series Next-Generation Firewalls are 4100 series firewalls.MDS 9000 Series Multilayer Switches a...

Unspecified vulnerability in Http-signature

Http-signature is a library that includes client and server components with the Joyent HTTP signature scheme. A security vulnerability exists in Http-signature version 0.9.11 and earlier. An attacker can exploit this vulnerability by intercepting a request and replacing the packet header name and...

Denial of Service Vulnerability in MMS Protocol for Sifang CSI-200EA Measurement and Control Device

CSI-200EA measurement and control device is mainly used in substation automation system of 110kV and above voltage level. A denial of service vulnerability exists in the MMS protocol of the Sifang CSI-200EA measurement and control device. An attacker can exploit the vulnerability to cause a devic...

Android Qualcomm Linux boot information disclosure vulnerability (CNVD-2017-34672)

Android on Google Pixel and Nexus is an open source Linux-based operating system for the Google Pixel and Nexus smartphones developed by Google Inc. and the Open Handheld Alliance OHA.Qualcomm Linux boot is one of the Linux boot programs. Qualcomm Linux boot is one of the Linux boot programs. An...

OpenJPEG Denial of Service Vulnerability (CNVD-2017-28761)

OpenJPEG is a C-based open source JPEG 2000 codec . A security vulnerability exists in the 'bmpreadinfoheader' function in bin/jp2/convertbmp.c in OpenJPEG version 2.2.0, which originates from the program receiving a packet header with a biBitCount of zero. A remote attacker could use this...

GNU Debugger Denial of Service Vulnerability

GNU Debugger GDB is a powerful debugger for debugging C and C++ programs. A security vulnerability exists in GDB 8.0 and earlier versions, which stems from the program's failure to detect an invalid FDE packet header. An attacker can exploit the vulnerability to exhaust the virtual memory of the...

Cisco Wireless LAN Controller 802.11 WME Packet Header Handling DoS (cisco-sa-20170405-wlc)

According to its self-reported version, the Cisco Wireless LAN Controller WLC software running on the remote device is affected by a denial of service vulnerability in the 802.11 Wireless Multimedia Extensions WME action frame processing due to improper validation of of the 802.11 WME packet...

UBUNTU-CVE-2017-6014

In Wireshark 2.2.4 and earlier, a crafted or malformed STANAG 4607 capture file will cause an infinite loop and memory exhaustion. If the packet size field in a packet header is null, the offset to read from will not advance, causing continuous attempts to read the same zero length packet. This...

Cisco Unified Communications Manager IM and Presence Service Information Disclosure Vulnerability

A vulnerability in the web management interface of the Cisco Unified Communications Manager IM and Presence Service could allow an unauthenticated, remote attacker to view information on web pages that should be restricted. The vulnerability is due to a lack of proper input validation performed o...

Buffer overflow

Buffer overflow in the Overlay Transport Virtualization OTV GRE feature in Cisco NX-OS 5.0 through 7.3 on Nexus 7000 and 7700 devices allows remote attackers to execute arbitrary code via long parameters in a packet header, aka Bug ID CSCuy95701...