Lucene search
+L

37 matches found

OSV
OSV
added 2023/05/30 7:30 a.m.8 views

SUSE-SU-2023:2313-1 Security update for c-ares

This update for c-ares fixes the following issues: Update to version 1.19.1: - CVE-2023-32067: 0-byte UDP payload causes Denial of Service bsc1211604 - CVE-2023-31147: Insufficient randomness in generation of DNS query IDs bsc1211605 - CVE-2023-31130: Buffer Underwrite in aresinetnetpton bsc12116...

7.5CVSS6AI score0.01577EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2023/05/16 8:56 a.m.2 views

kernel: RDMA/mlx5: Fix mlx5_ib_get_hw_stats when used for device

An out-of-bounds write vulnerability exists in the linux kernel, such that when mlx5ibgethwstats is used forthe device portnum = 0, There is a special handling in order to use the correct counters, but, portnum is being passed down the stack without any change leading to damage in system...

5.5CVSS7.2AI score0.00136EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/05/09 10:4 a.m.3 views

kernel: RDMA/mlx5: Fix mlx5_ib_get_hw_stats when used for device

An out-of-bounds write vulnerability exists in the linux kernel, such that when mlx5ibgethwstats is used forthe device portnum = 0, There is a special handling in order to use the correct counters, but, portnum is being passed down the stack without any change leading to damage in system...

5.5CVSS7.2AI score0.00136EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 6:6 a.m.5 views

SUSE CVE-2008-5081

The originatesfromlocallegacyunicastsocket function avahi-core/server.c in avahi-daemon in Avahi before 0.6.24 allows remote attackers to cause a denial of service crash via a crafted mDNS packet with a source port of 0, which triggers an assertion failure...

5CVSS6.7AI score0.59223EPSS
Exploits7References5
NCSC
NCSC
added 2023/01/13 12:0 a.m.5 views

Vulnerability fixed in OpenBSD

A vulnerability has been fixed in OpenBSD. A malicious person at remote user could potentially exploit the vulnerability to cause a Denial-of-Service by sending a TCP packet with destination port 0. To do this, however, a "divert-to" rule must be included in the pf configuration included in the p...

6.7AI score
Exploits0
Positive Technologies
Positive Technologies
added 2022/01/01 12:0 a.m.5 views

PT-2025-8062

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A issue in the Linux kernel has been identified where the driver does not properly guard against invalid local ports when processing events generated by the device's firmware...

5.5CVSS6.4AI score0.0022EPSS
Exploits0
OSV
OSV
added 2019/11/22 5:15 p.m.4 views

DEBIAN-CVE-2019-18976

An issue was discovered in respjsipt38.c in Sangoma Asterisk through 13.x and Certified Asterisk through 13.21-x. If it receives a re-invite initiating T.38 faxing and has a port of 0 and no c line in the SDP, a NULL pointer dereference and crash will occur. This is different from CVE-2019-18940...

7.5CVSS7.3AI score0.06677EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2019/06/20 3:15 a.m.3 views

CVE-2019-18976

An issue was discovered in respjsipt38.c in Sangoma Asterisk through 13.x and Certified Asterisk through 13.21-x. If it receives a re-invite initiating T.38 faxing and has a port of 0 and no c line in the SDP, a NULL pointer dereference and crash will occur. This is different from CVE-2019-18940...

7.5CVSS7.2AI score0.06677EPSS
Exploits0References7
OSV
OSV
added 2017/12/11 9:29 p.m.0 views

DEBIAN-CVE-2017-1000407

The Linux Kernel 2.6.32 and later are affected by a denial of service, by flooding the diagnostic port 0x80 an exception can be triggered leading to a kernel panic...

7.4CVSS6.7AI score0.01216EPSS
Exploits0References1
OSV
OSV
added 2017/12/11 12:0 a.m.3 views

UBUNTU-CVE-2017-1000407

The Linux Kernel 2.6.32 and later are affected by a denial of service, by flooding the diagnostic port 0x80 an exception can be triggered leading to a kernel panic...

7.4CVSS6.8AI score0.01216EPSS
Exploits0References11
CNVD
CNVD
added 2017/09/08 12:0 a.m.5 views

Cisco IOS and Cisco IOS XE Denial of Service Vulnerabilities

Cisco IOS and IOS XE are both operating systems developed by Cisco for its network devices.UDP processing is one of the UDP User Datagram Protocol protocol handlers. A denial of service vulnerability exists in the UDP processing code in Cisco IOS and IOS XE. A remote attacker could exploit this...

7.5CVSS7.4AI score0.06042EPSS
Exploits0References1
OSV
OSV
added 2017/09/07 9:29 p.m.8 views

CVE-2017-6627

A vulnerability in the UDP processing code of Cisco IOS 15.1, 15.2, and 15.4 and IOS XE 3.14 through 3.18 could allow an unauthenticated, remote attacker to cause the input queue of an affected system to hold UDP packets, causing an interface queue wedge and a denial of service DoS condition. The...

7.5CVSS5.8AI score0.06042EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2015/03/05 7:27 a.m.6 views

qemu: slirp: NULL pointer deref in sosendto()

A NULL pointer dereference flaw was found in the way QEMU handled UDP packets with a source port and address of 0 when QEMU's user networking was in use. A local guest user could use this flaw to crash the guest...

2.1CVSS7.3AI score0.00405EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2009/01/12 2:9 p.m.37 views

avahi: avahi-daemon DoS (application abort) via packet with source port 0

The originatesfromlocallegacyunicastsocket function avahi-core/server.c in avahi-daemon in Avahi before 0.6.24 allows remote attackers to cause a denial of service crash via a crafted mDNS packet with a source port of 0, which triggers an assertion failure...

5CVSS7.4AI score0.59223EPSS
Exploits7References4
OSV
OSV
added 2008/12/17 2:30 a.m.2 views

DEBIAN-CVE-2008-5081

The originatesfromlocallegacyunicastsocket function avahi-core/server.c in avahi-daemon in Avahi before 0.6.24 allows remote attackers to cause a denial of service crash via a crafted mDNS packet with a source port of 0, which triggers an assertion failure...

5CVSS6.7AI score0.59223EPSS
Exploits7References1
NVD
NVD
added 2004/08/06 4:0 a.m.11 views

CVE-2004-0525

HP Integrated Lights-Out iLO 1.10 and other versions before 1.55 allows remote attackers to cause a denial of service hang by accessing iLO using the TCP/IP reserved port zero...

5CVSS6.7AI score0.02665EPSS
Exploits0References3
NVD
NVD
added 1999/08/09 4:0 a.m.22 views

CVE-1999-0675

Check Point FireWall-1 can be subjected to a denial of service via UDP packets that are sent through VPN-1 to port 0 of a host...

5CVSS6.5AI score0.01363EPSS
Exploits0References3
Rows per page
Query Builder