CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2020/08/11 4:15 p.m.•18 views

CVE-2020-16092

In QEMU through 5.0.0, an assertion failure can occur in the network packet processing. This issue affects the e1000e and vmxnet3 network devices. A malicious guest user/process could use this flaw to abort the QEMU process on the host, resulting in a denial of service condition in...

3.8CVSS4.9AI score0.00039EPSS

Exploits0References8

OSV•added 2020/08/11 4:15 p.m.•1 views

DEBIAN-CVE-2020-16092

3.8CVSS6.4AI score0.00039EPSS

OSV•added 2020/08/11 4:15 p.m.•0 views

UBUNTU-CVE-2020-16092

3.8CVSS6.9AI score0.00039EPSS

Exploits0References4

Prion•added 2020/08/11 4:15 p.m.•28 views

Denial of service

2.1CVSS4.6AI score0.00039EPSS

Exploits0References8Affected Software4

UbuntuCve•added 2020/08/11 4:15 p.m.•27 views

CVE-2020-16092

3.8CVSS6.8AI score0.00039EPSS

Cvelist•added 2020/08/11 3:55 p.m.•18 views

CVE-2020-16092

5.2AI score0.00039EPSS

Exploits0References8

Debian CVE•added 2020/08/11 3:55 p.m.•37 views

CVE-2020-16092

3.8CVSS6.4AI score0.00039EPSS

CVE•added 2020/08/11 3:55 p.m.•356 views

CVE-2020-16092

CVE-2020-16092 affects QEMU up to 5.0.0, specifically the network packet processing path. The vulnerability is an assertion failure in net_tx_pkt_add_raw_fragment() within hw/net/net_tx_pkt.c, impacting the e1000e and vmxnet3 devices. A malicious guest user/process could trigger this assertion to...

3.8CVSS5AI score0.00039EPSS

Exploits0References8Affected Software1

AlpineLinux•added 2020/08/11 3:55 p.m.•43 views

CVE-2020-16092

3.8CVSS5.4AI score0.00039EPSS

RedhatCVE•added 2020/07/29 8:8 a.m.•36 views

CVE-2020-16092

An assertion failure flaw was found in QEMU in the network packet processing component. This issue affects the "e1000e" and "vmxnet3" network devices. This flaw allows a malicious guest user or process to abort the QEMU process on the host, resulting in a denial of service...

2.1CVSS3.2AI score0.00039EPSS

OSV•added 2020/06/24 1:51 a.m.•11 views

OSV-2020-177 UNKNOWN in get_ndpi_flow_info6

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=20747 Crash type: UNKNOWN Crash state: getndpiflowinfo6 packetprocessing ndpiworkflowprocesspacket...

7.2AI score

Tenable Nessus•added 2020/06/19 12:0 a.m.•30 views

Cisco Firepower Threat Defense (FTD) DNS Denial of Service (cisco-sa-asaftd-ipv6-67pA658k)

According to its self-reported version, Cisco Firepower Threat Defense FTD Software is affected by a denial of service DoS vulnerability in IPV6 DNS packet processing component due to insufficient validation of user-supplied input. An unauthenticated, remote attacker can exploit this issue, by...

8.6CVSS7.8AI score0.0104EPSS

OSV•added 2020/05/29 8:15 p.m.•0 views

UBUNTU-CVE-2020-11089

In FreeRDP before 2.1.0, there is an out-of-bound read in irp functions parallelprocessirpcreate, serialprocessirpcreate, driveprocessirpwrite, printerprocessirpwrite, rdpeirecvpdu, serialprocessirpwrite. This has been fixed in 2.1.0...

5.5CVSS7.2AI score0.00229EPSS

Fedora•added 2020/05/28 4:15 a.m.•31 views

[SECURITY] Fedora 32 Update: dpdk-19.11.1-2.fc32

The Data Plane Development Kit is a set of libraries and drivers for fast packet processing in the user space...

7.7CVSS3.8AI score0.00606EPSS

OSV•added 2020/05/19 12:0 p.m.•20 views

RUSTSEC-2020-0019 tokio-rustls reads may cause excessive memory usage

tokio-rustls does not call processnewpackets immediately after read, so the expected termination condition wantsread always returns true. As long as new incoming data arrives faster than it is processed and the reader does not return pending, data will be buffered. This may cause DoS...

7.5CVSS7.5AI score0.00334EPSS

Tenable Nessus•added 2020/05/15 12:0 a.m.•39 views

Cisco Adaptive Security Appliance Denial of Service (cisco-sa-fp2100-arp-dos-kLdCK8ks)

A denial of service vulnerability exists in the ARP packet processing component of Cisco Adaptive Security Appliance ASA software due to insufficient validation of ARP data. An unauthenticated, adjacent attacker can exploit this to cause to cause the system to stop responding. Please see the...

7.4CVSS7.3AI score0.00101EPSS

Exploits0References5

CISA•added 2020/04/16 12:0 a.m.•9 views

Cisco Releases Security Updates for Multiple Products

Cisco has released security updates to address vulnerabilities in multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. The Cybersecurity and Infrastructure Security Agency CISA encourages users and administrators to review the...

7.8AI score

Exploits0References9

Cvelist•added 2020/04/15 8:11 p.m.•10 views

CVE-2020-3260 Cisco Aironet Series Access Points Client Packet Processing Denial of Service Vulnerability

A vulnerability in Cisco Aironet Series Access Points Software could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition on an affected device. The vulnerability is due to the improper processing of client packets that are sent to an affected access point AP. An...

7.4CVSS6.5AI score0.00308EPSS

Cvelist•added 2020/04/08 7:25 p.m.•14 views

CVE-2020-1627 Junos OS: vMX and MX150: Denial of Service vulnerability in packet processing

A vulnerability in Juniper Networks Junos OS on vMX and MX150 devices may allow an attacker to cause a Denial of Service DoS by sending specific packets requiring special processing in microcode that the flow cache can't handle, causing the riot forwarding daemon to crash. By continuously sending...

7.5CVSS7.5AI score0.00389EPSS