Lucene search
K

24000 matches found

Cvelist
Cvelist
added 2026/05/01 2:15 p.m.30 views

CVE-2026-43009 bpf: Fix incorrect pruning due to atomic fetch precision tracking

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix incorrect pruning due to atomic fetch precision tracking When backtrackinsn encounters a BPFSTX instruction with BPFATOMIC and BPFFETCH, the src register or r0 for BPFCMPXCHG also acts as a destination, thus receiving th...

7.8CVSS0.00134EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/01 1:56 p.m.32 views

CVE-2026-31700 net/packet: fix TOCTOU race on mmap'd vnet_hdr in tpacket_snd()

In the Linux kernel, the following vulnerability has been resolved: net/packet: fix TOCTOU race on mmap'd vnethdr in tpacketsnd In tpacketsnd, when PACKETVNETHDR is enabled, vnethdr points directly into the mmap'd TX ring buffer shared with userspace. The kernel validates the header via...

7.8CVSS0.00103EPSS
Exploits0References8
EUVD
EUVD
added 2026/05/01 1:56 p.m.3 views

EUVD-2026-26509

In the Linux kernel, the following vulnerability has been resolved: net/packet: fix TOCTOU race on mmap'd vnethdr in tpacketsnd In tpacketsnd, when PACKETVNETHDR is enabled, vnethdr points directly into the mmap'd TX ring buffer shared with userspace. The kernel validates the header via...

5.9AI score0.00103EPSS
Exploits0References5
CVE
CVE
added 2026/05/01 1:56 p.m.38 views

CVE-2026-31700

Summary (CVE-2026-31700): In the Linux kernel, a TOCTOU race in tpacket_snd() when PACKET_VNET_HDR is enabled allows a user-space race on vnet_hdr fields between validation and use, bypassing safety checks. The vulnerability affects the mmap’d TX ring buffer where vnet_hdr points into user-contro...

7.8CVSS5.9AI score0.00103EPSS
Exploits0References8Affected Software1
CNNVD
CNNVD
added 2026/05/01 12:0 a.m.8 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an error in the checking of packet pointers by the regsafe function in bpf, which could result in valid pack...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/05/01 12:0 a.m.11 views

Wireshark 2.0.x < 2.0.4 Multiple Vulnerabilities (macOS)

The version of Wireshark installed on the remote macOS / Mac OS X host is prior to 2.0.4. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-2.0.4 advisory. - epan/dissectors/packet-pktap.c in the Ethernet dissector in Wireshark 2.x before 2.0.4 mishandles the...

7.5CVSS7.2AI score0.02776EPSS
Exploits1References27
CVE
CVE
added 2026/05/01 12:0 a.m.9 views

CVE-2025-63548

The CVE-2025-63548 entry concerns Eprosima Micro-XREC-DDS Agent v3.0.1. The issue allows a remote attacker to cause a denial of service by sending a packet with a non-valid value in any Boolean field. The NVD metrics indicate a Network attack vector, low complexity, no privileges, and an Availabi...

7.5CVSS5.8AI score0.00332EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/01 12:0 a.m.4 views

PT-2026-36524

Name of the Vulnerable Software and Affected Versions Eprosima Micro-XREC-DDS Agent version 3.0.1 Description A remote attacker can cause a denial of service by sending a crafted packet to the MTU length field. Recommendations At the moment, there is no information about a newer version that...

7.5CVSS5.8AI score0.00358EPSS
Exploits0References7
Cvelist
Cvelist
added 2026/05/01 12:0 a.m.30 views

CVE-2025-63547

An issue in Eprosima Micro-XREC-DDS Agent v.3.0.1 allows a remote attacker to cause a denial of service via a crafted packet to the MTU length field...

0.00358EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/01 12:0 a.m.37 views

CVE-2025-63548

An issue in Eprosima Micro-XREC-DDS Agent v.3.0.1 allows a remote attacker to cause a denial of service via a packet specially crafted to bear a non-valid value in any Boolean field...

0.00332EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/05/01 12:0 a.m.7 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the bpf backtrace not handling atomic fetch operations correctly, which could lead to path pruning errors...

7.8CVSS5.8AI score0.00134EPSS
Exploits0References1
CVE
CVE
added 2026/05/01 12:0 a.m.12 views

CVE-2025-63547

CVE-2025-63547 concerns Eprosima Micro-XRCE-DDS Agent v3.0.1. The issue allows a remote attacker to cause a denial of service by sending a crafted packet that targets the MTU length field. Affected software is the Micro-XRCE-DDS Agent (v3.0.1) developed by Eprosima; the root cause and exact vulne...

7.5CVSS5.8AI score0.00358EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/01 12:0 a.m.6 views

PT-2026-36426

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the Linux kernel eBPF verifier where the backtrack insn function fails to correctly handle atomic fetch operations. When encountering a BPF STX instruction with BPF...

9.8CVSS5.8AI score0.00409EPSS
Exploits0References267
Positive Technologies
Positive Technologies
added 2026/05/01 12:0 a.m.11 views

PT-2026-36414

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A potential out-of-bounds read exists in the iwl mvm nd match info handler function. The memcpy function assumes the dynamic array notif-matches is at least as large as the number of byt...

8.1CVSS5.3AI score0.00378EPSS
Exploits0References117
Positive Technologies
Positive Technologies
added 2026/05/01 12:0 a.m.12 views

PT-2026-36330

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A Time-of-Check to Time-of-Use TOCTOU race condition exists in the tpacket snd function when PACKET VNET HDR is enabled. The vnet hdr points to a memory-mapped TX ring buffer shared with...

9.8CVSS5.9AI score0.00437EPSS
Exploits2References57
CNNVD
CNNVD
added 2026/05/01 12:0 a.m.8 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the unused skbheaderpointer function in the TCPv4 GSO fragoff check, which results in a direct dereference o...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References1
NVD
NVD
added 2026/04/30 9:16 p.m.10 views

CVE-2026-33450

CVE-2026-33450 is an out of bounds read vulnerability in the Secure Access MacOS client prior to 14.50. Attackers with control of a modified server can send a malformed packet to the client causing a denial of service...

5.5CVSS0.00156EPSS
Exploits0References1
NVD
NVD
added 2026/04/30 8:16 p.m.6 views

CVE-2026-33446

CVE-2026-33446 is a buffer overflow in the authentication sub-system of the Secure Access client prior to 14.50. Attackers with control of a modified server can send a special packet that can overwrite a small portion of memory conceivably leading to memory corruption or a denial of service...

9.8CVSS0.00287EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/30 8:4 p.m.3 views

CVE-2026-33450

CVE-2026-33450 is an out of bounds read vulnerability in the Secure Access MacOS client prior to 14.50. Attackers with control of a modified server can send a malformed packet to the client causing a denial of service...

2.3CVSS5.3AI score0.00156EPSS
Exploits0References2
CVE
CVE
added 2026/04/30 8:4 p.m.13 views

CVE-2026-33450

CVE-2026-33450 is an out-of-bounds read vulnerability affecting the Secure Access MacOS client prior to 14.50. According to Red Hat and PT Security, attackers under control of a modified server can send a malformed packet to the client, causing a denial of service. The PT Security advisory explic...

5.5CVSS5.2AI score0.00156EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder