[SECURITY] [DSA 6340-1] neutron security update

------------------------------------------------------------------------- Debian Security Advisory DSA-6340-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff June 11, 2026 https://www.debian.org/security/faq -...

CVE-2024-6858

In Arista EOS, CVE-2024-6858 affects multiple EOS releases (EOS 4.31.x, 4.30.x, 4.29.x, 4.28.x) where 802.1X is enabled and a fallback VLAN with an EAPOL-capable device can allow multi-auth unauthenticated hosts access to a switch port. Root cause: improper authentication handling when using dot1...

CVE-2025-59032

ManageSieve AUTHENTICATE command crashes when using literal as SASL initial response. This can be used to crash ManageSieve service repeatedly, making it unavailable for other users. Control access to ManageSieve port, or disable the service if it's not needed. Alternatively upgrade to a fixed...

CVE-2025-59032

ManageSieve AUTHENTICATE command crashes when using literal as SASL initial response. This can be used to crash ManageSieve service repeatedly, making it unavailable for other users. Control access to ManageSieve port, or disable the service if it's not needed. Alternatively upgrade to a fixed...

CVE-2025-59032

ManageSieve AUTHENTICATE command crashes when using literal as SASL initial response. This can be used to crash ManageSieve service repeatedly, making it unavailable for other users. Control access to ManageSieve port, or disable the service if it's not needed. Alternatively upgrade to a fixed...

CVE-2025-59032

ManageSieve AUTHENTICATE command crashes when using literal as SASL initial response. This can be used to crash ManageSieve service repeatedly, making it unavailable for other users. Control access to ManageSieve port, or disable the service if it's not needed. Alternatively upgrade to a fixed...

Arista Networks MultiAccess FPGA Security Vulnerability

Arista Networks MultiAccess FPGA is a multi-access network device based on FPGA technology from Arista Networks, USA. This device is typically used in network equipment such as network switches and routers to utilize the flexibility and programmability of FPGAs to achieve high-performance,...

The vulnerability of the DNS Server component of the Windows operating system, which allows a hacker to disclose protected information

The vulnerability of the DNS Server component of the Windows operating system is related to deficiencies in access control for ports. Exploiting this vulnerability can allow a malicious actor to disclose sensitive information that is protected by security measures...

PT-2022-2865 · Microsoft · Windows Dns Server +1

Name of the Vulnerable Software and Affected Versions: Windows DNS Server affected versions not specified Description: The issue is related to insufficient access control to ports in the Windows DNS Server component, allowing a remote attacker to disclose protected information. This can lead to t...

The vulnerability of Xen hypervisors that run on multiple platforms, related to deficiencies in access control to ports, allows attackers to gain access to confidential data.

The vulnerability of the cross-platform hypervisor Xen is related to deficiencies in access control for ports. Exploiting this vulnerability can allow an attacker to gain access to confidential data...

PT-2021-16569 · Samsung · Smartthings

Name of the Vulnerable Software and Affected Versions: SmartThings versions prior to 1.7.63.6 Description: The issue is related to improper access control of certain ports, which allows for remote temporary denial of service. Recommendations: For versions prior to 1.7.63.6, update to version...

The vulnerability of the Cisco Digital Network Architecture Center’s network management system, related to deficiencies in access control to ports, allows a intruder to gain access to internal services.

The vulnerability of the Cisco Digital Network Architecture DNA Center network management system is related to deficiencies in access control for ports. Exploiting this vulnerability could allow a malicious actor to gain access to internal services...

CVE-2018-14775

tssalloc in sys/arch/i386/i386/gdt.c in OpenBSD 6.2 and 6.3 has a Local Denial of Service system crash due to incorrect I/O port access control on the i386 architecture...

Design/Logic Flaw

tssalloc in sys/arch/i386/i386/gdt.c in OpenBSD 6.2 and 6.3 has a Local Denial of Service system crash due to incorrect I/O port access control on the i386 architecture...

CVE-2018-14775

tssalloc in sys/arch/i386/i386/gdt.c in OpenBSD 6.2 and 6.3 has a Local Denial of Service system crash due to incorrect I/O port access control on the i386 architecture...

CVE-2018-14775

CVE-2018-14775 affects OpenBSD 6.2 and 6.3, where the function tss_alloc in sys/arch/i386/i386/gdt.c mishandles I/O port access control on the i386 architecture. This leads to a Local Denial of Service (system crash). The impact is local, with no information about remote exploitation provided. Pa...

Avocents CCM console server protection bypass

It's possible to bypass port access control...

MRV In-Reach console server: Port Access Control Bypass Vulnerability

Hi, this is another bug I encountered during my research on console servers. Summary: Port Access Control Bypass Vulnerability on MRVs In-Reach console servers. Details: MRV's In-Reach console servers come with feature that enables access to their ports by ssh public keys. As opposed to e.g...

CVE-2002-1972

Unknown vulnerability in Parallel port powerSwitch aka pppowerSwitch 0.1 does not properly enforce access controls, which allows local users to access arbitrary ports...