Rockwell Automation Stratix 5900 Exposure of Sensitive Information to an Unauthorized Actor (CVE-2016-6415)

A vulnerability in Internet Key Exchange version 1 IKEv1 packet processing code in Cisco IOS, Cisco IOS XE, and Cisco IOS XR Software could allow an unauthenticated, remote attacker to retrieve memory contents, which could lead to the disclosure of confidential information. The vulnerability is d...

PT-2023-35584 · Git +1 · Ntopng

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: A heap-buffer-overflow READ 1 crash has been reported. The crash occurs in the IEC104Stats::processPacket function, which is called by...

kernel: wifi: ath11k: fix monitor mode bringup crash

A null pointer dereference vulnerability was found in the ath11k wireless driver in the Linux kernel. When an interface is brought up in monitor mode, the driver attempts to extract packet type from RAW monitor ring packets, which lack the expected structure. This causes a kernel crash due to...

CVE-2023-20244

A vulnerability in the internal packet processing of Cisco Firepower Threat Defense FTD Software for Cisco Firepower 2100 Series Firewalls could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to improper handli...

Design/Logic Flaw

A vulnerability in the internal packet processing of Cisco Firepower Threat Defense FTD Software for Cisco Firepower 2100 Series Firewalls could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to improper handli...

PT-2023-7572 · Cisco · Cisco Ftd

Name of the Vulnerable Software and Affected Versions: Cisco Firepower Threat Defense FTD Software for Cisco Firepower 2100 Series Firewalls affected versions not specified Description: A vulnerability in the internal packet processing of Cisco Firepower Threat Defense FTD Software could allow an...

Cisco Firepower Threat Defense Security Vulnerability

Cisco Firepower Threat Defense FTD is a suite of unified software from Cisco that provides next-generation firewall services. A security vulnerability in Cisco Firepower Threat Defense for Cisco Firepower 2100 Series Firewalls arises from a flaw in internal packet processing that could allow an...

Juniper Networks Junos OS Security Vulnerability

Juniper Networks Junos OS is a Juniper Networks network operating system for the company's hardware devices. The OS provides a secure programming interface and the Junos SDK. A security vulnerability exists in Juniper Networks Junos OS that stems from a misauthorization vulnerability in CP packet...

Design/Logic Flaw

TouchLink packets processed after timeout or out of range due to Operation on a Resource after Expiration and Missing Release of Resource after Effective Lifetime may allow a device to be added outside of valid TouchLink range or pairing duration This issue affects Ember ZNet 7.1.x from 7.1.3...

Cisco Access Point Software Uncontrolled Resource Consumption (cisco-sa-ap-dos-capwap-DDMCZS4m)

According to its self-reported version, Cisco Access Point Software Uncontrolled Resource Consumption is affected by a vulnerability. - A vulnerability in the packet processing functionality of Cisco access point AP software could allow an unauthenticated, adjacent attacker to exhaust resources o...

CVE-2023-20268

A vulnerability in the packet processing functionality of Cisco access point AP software could allow an unauthenticated, adjacent attacker to exhaust resources on an affected device. This vulnerability is due to insufficient management of resources when handling certain types of traffic. An...

CVE-2023-20268

Cisco CVE-2023-20268 affects Cisco Access Point (AP) software where the packet processing path can be abused by an unauthenticated, adjacent attacker sending specific wireless traffic to exhaust device resources. The vulnerability can disrupt CAPWAP tunnels and cause intermittent wireless client ...

ROS-20230913-03

A vulnerability in libreswan software is related to a null pointer dereferencing error in the IKEv1 fast mode packets. Exploitation of the vulnerability could allow an attacker, remotely send specially crafted packets to the system and perform a denial-of-service attack. denial-of-service attack...

CVE-2023-37459 Out-of-bounds read when processing a received IPv6 packet

Contiki-NG is an operating system for internet-of-things devices. In versions 4.9 and prior, when a packet is received, the Contiki-NG network stack attempts to start the periodic TCP timer if it is a TCP packet with the SYN flag set. But the implementation does not first verify that a full TCP...

FreeBSD : FreeBSD -- pf incorrectly handles multiple IPv6 fragment headers (d35373ae-4d34-11ee-8e38-002590c1f29c)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the d35373ae-4d34-11ee-8e38-002590c1f29c advisory. - In pf packet processing with a 'scrub fragment reassemble' rule, a packet containing multiple IPv6...

CVE-2023-4809

In pf packet processing with a 'scrub fragment reassemble' rule, a packet containing multiple IPv6 fragment headers would be reassembled, and then immediately processed. That is, a packet with multiple fragment extension headers would not be recognized as the correct ultimate payload. Instead a...

CVE-2023-4809 pf incorrectly handles multiple IPv6 fragment headers

In pf packet processing with a 'scrub fragment reassemble' rule, a packet containing multiple IPv6 fragment headers would be reassembled, and then immediately processed. That is, a packet with multiple fragment extension headers would not be recognized as the correct ultimate payload. Instead a...

CVE-2023-4809

The CVE-2023-4809 issue affects FreeBSD pf: in a scrub fragment reassemble scenario, a packet carrying multiple IPv6 fragment headers can be reassembled and then misinterpreted as its payload, allowing IPv6 fragments to bypass pf rules that assume reassembly. Impact: fragmented packets may be for...

Memory corruption

Memory corruption in Graphics while processing user packets for command submission...

PT-2023-35985 · Git +1 · Ntopng

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: A heap-buffer-overflow READ 4 crash has been reported. The crash occurs in the ICMPinfo::dissectICMP function, which is called by...