67 matches found
The vulnerability of the decode_deliver_report() function in the OFono mobile phone stack allows a hacker to execute arbitrary code.
The vulnerability of the decodedeliverreport function in the OFono mobile phone stack is related to the execution of an operation outside the buffer in memory when sending SMS messages in the PDU format. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
CVE-2024-4791
A vulnerability classified as critical was found in Contemporary Control System BASrouter BACnet BASRT-B 2.7.2. This vulnerability affects unknown code of the component Application Protocol Data Unit. The manipulation leads to denial of service. The attack can be initiated remotely. The exploit h...
Contemporary Controls BASrouter BACnet BASRT-B 安全漏洞
Contemporary Controls BASrouter BACnet BASRT-B is a router from Contemporary Controls. A security vulnerability exists in Contemporary Controls BASrouter BACnet BASRT-B version 2.7.2, which originates from the component Application Protocol Data Unit that causes a denial of service...
CVE-2024-4791 Contemporary Control System BASrouter BACnet BASRT-B Application Protocol Data Unit denial of service
A vulnerability classified as critical was found in Contemporary Control System BASrouter BACnet BASRT-B 2.7.2. This vulnerability affects unknown code of the component Application Protocol Data Unit. The manipulation leads to denial of service. The attack can be initiated remotely. The exploit h...
The vulnerability of the `nvmet_tcp_build_pdu_iovec()` function in the `drivers/nvme/target/tcp.c` file of the Linux NVMe kernel driver allows a attacker to cause a service failure.
The vulnerability of the nvmettcpbuildpduiovec function in the drivers/nvme/target/tcp.c file of the Linux NVMe kernel driver is related to the assignment of a null pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...
Qualcomm Chipsets Security Vulnerability
Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that results from a denial of service when processing a PDU Release command with an out-of-range parameter PDU ID...
PT-2025-32119 · Unknown · Lte Network
Name of the Vulnerable Software and Affected Versions: LTE network affected versions not specified Description: A transient Denial-of-Service DoS condition can occur while processing a random-access response RAR containing an invalid Protocol Data Unit PDU length on an LTE network. A PDU is a uni...
SUSE CVE-2023-41910
An issue was discovered in lldpd before 1.0.17. By crafting a CDP PDU packet with specific CDPTLVADDRESSES TLVs, a malicious actor can remotely force the lldpd daemon to perform an out-of-bounds read on heap memory. This occurs in cdpdecode in daemon/protocols/cdp.c...
SUSE CVE-2023-38431
An issue was discovered in the Linux kernel before 6.3.8. fs/smb/server/connection.c in ksmbd does not validate the relationship between the NetBIOS header's length field and the SMB header sizes, via pdusize in ksmbdconnhandlerloop, leading to an out-of-bounds read...
DEBIAN-CVE-2023-30362
Buffer Overflow vulnerability in coapsend function in libcoap library 4.3.1-103-g52cfd56 fixed in 4.3.1-120-ge242200 allows attackers to obtain sensitive information via malformed pdu...
PT-2023-7997
Name of the Vulnerable Software and Affected Versions oFono affected versions not specified Description A flaw in oFono, an Open Source Telephony on Linux, is related to a stack overflow bug triggered within the decode submit report function during SMS decoding in PDU format. This issue may allow...
kernel: nvmet-tcp: add bounds check on Transfer Tag
In the Linux kernel, the following vulnerability has been resolved: nvmet-tcp: add bounds check on Transfer Tag ttag is used as an index to get cmd in nvmettcphandleh2cdatapdu, add a bounds check to avoid out-of-bounds access...
SUSE CVE-2015-5621
The snmppduparse function in snmpapi.c in net-snmp 5.7.2 and earlier does not remove the varBind variable in a netsnmpvariablelist item when parsing of the SNMP PDU fails, which allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted packet...
SAMSUNG Mobile devices 缓冲区错误漏洞
SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, etc., from South Korea's Samsung SAMSUNG. A security vulnerability exists in SAMSUNG Mobile devices SMR Nov-2022 Release 1, which stems from an input validation vulnerability in the processing of the SIB...
The vulnerability of the Junos operating system arises from insufficient validation of input data in the Routing Protocol Data Unit (RPD). This allows attackers to trigger a service failure.
The vulnerability of the Junos operating system exists due to insufficient validation of input data in the routing protocol daemon rpd. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...
CVE-2019-15265 Cisco Aironet Access Points Bridge Protocol Data Unit Port Disable Denial of Service Vulnerability
A vulnerability in the bridge protocol data unit BPDU forwarding functionality of Cisco Aironet Access Points APs could allow an unauthenticated, adjacent attacker to cause an AP port to go into an error disabled state. The vulnerability occurs because BPDUs received from specific wireless client...
UBUNTU-CVE-2019-15919
An issue was discovered in the Linux kernel before 5.0.10. SMB2write in fs/cifs/smb2pdu.c has a use-after-free...
DEBIAN-CVE-2018-10244
Suricata version 4.0.4 incorrectly handles the parsing of an EtherNet/IP PDU. A malformed PDU can cause the parsing code to read beyond the allocated data because DecodeENIPPDU in app-layer-enip-commmon.c has an integer overflow during a length check...
PT-2019-8750 · Open Information Security Foundation · Suricata
Name of the Vulnerable Software and Affected Versions: Suricata version 4.0.4 Description: The issue arises from incorrect handling of EtherNet/IP PDU parsing, which can lead to the parsing code reading beyond the allocated data due to an integer overflow during a length check in the DecodeENIPPD...
DEBIAN-CVE-2018-14780
An out-of-bounds read issue was discovered in the Yubico-Piv 1.5.0 smartcard driver. The file lib/ykpiv.c contains the following code in the function ykpivfetchobject: % highlight c % ifsw == SWSUCCESS sizet outlen; int offs = ykpivgetlengthdata + 1, &outlen; ifoffs == 0 return YKPIVSIZEERROR;...