Lucene search
K

20 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2010-2953

Malware in sbrugna...

5CVSS6AI score0.03377EPSS
Exploits0References27
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-17150

Malware in sbrugna...

7.1CVSS7.5AI score0.74599EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-17152

Malware in sbrugna...

4.3CVSS6.9AI score0.15107EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2018-5380

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Quagga BGP daemon bgpd prior to version 1.2.3 can overrun internal BGP code-to-string conversion tables used for debug by 1 pointer value, based on input...

4.3CVSS6.7AI score0.15107EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2018-5381

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Quagga BGP daemon bgpd prior to version 1.2.3 has a bug in its parsing of Capabilities in BGP OPEN messages, in the bgppacket.c:bgpcapabilitymsgparse...

7.5CVSS7.5AI score0.30665EPSS
Exploits0References2
F5 Networks
F5 Networks
added 2023/02/21 6:53 p.m.56 views

K62789814: Quagga bgpd vulnerabilities CVE-2018-5378, CVE-2018-5379, CVE-2018-5380, and CVE-2018-5381

Security Advisory Description CVE-2018-5378 The Quagga BGP daemon bgpd prior to version 1.2.3 does not properly bounds check the data sent with a NOTIFY to a peer, if an attribute length is invalid. Arbitrary data from the bgpd process may be sent over the network to a peer and/or bgpd may crash...

9.8CVSS7.8AI score0.74599EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 6:15 a.m.1 views

SUSE CVE-2006-2276

bgpd in Quagga 0.98 and 0.99 before 20060504 allows local users to cause a denial of service CPU consumption via a certain sh ip bgp command entered in the telnet interface...

4.9CVSS6.6AI score0.00528EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:31 a.m.3 views

SUSE CVE-2018-5378

The Quagga BGP daemon bgpd prior to version 1.2.3 does not properly bounds check the data sent with a NOTIFY to a peer, if an attribute length is invalid. Arbitrary data from the bgpd process may be sent over the network to a peer and/or bgpd may crash...

5.9CVSS6.9AI score0.74599EPSS
Exploits0References8
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.24 views

SUSE: Security Advisory (SUSE-SU-2018:0457-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.3AI score0.74599EPSS
Exploits0References9
Check Point Advisories
Check Point Advisories
added 2019/02/18 12:0 a.m.2 views

Quagga BGP Daemon bgp_update_receive Double Free (CVE-2018-5379)

A double free vulnerability has been reported in Quagga BGP Daemon. The vulnerability is due to improper handling of cluster list and unknown attributes. A remote attacker can exploit this vulnerability by sending a crafted BGP UPDATE message to the target server...

7.5CVSS2.4AI score0.39045EPSS
Exploits0
CNVD
CNVD
added 2018/03/02 12:0 a.m.0 views

Quagga BGP Backend Program UPDATE Message Released Twice Vulnerability

Quagga is an open source routing software. A two release vulnerability exists in the Quagga BGP backend program processing UPDATE messages, which allows remote attackers to exploit the vulnerability to submit a special request, conduct a denial of service attack or execute arbitrary code...

9.8CVSS7.4AI score0.39045EPSS
Exploits0References1
Prion
Prion
added 2018/02/19 1:29 p.m.24 views

Out-of-bounds

The Quagga BGP daemon bgpd prior to version 1.2.3 does not properly bounds check the data sent with a NOTIFY to a peer, if an attribute length is invalid. Arbitrary data from the bgpd process may be sent over the network to a peer and/or bgpd may crash...

4.9CVSS7.3AI score0.74599EPSS
Exploits0References6Affected Software3
Prion
Prion
added 2018/02/19 1:29 p.m.23 views

Design/Logic Flaw

The Quagga BGP daemon bgpd prior to version 1.2.3 has a bug in its parsing of "Capabilities" in BGP OPEN messages, in the bgppacket.c:bgpcapabilitymsgparse function. The parser can enter an infinite loop on invalid capabilities if a Multi-Protocol capability does not have a recognized AFI/SAFI,...

5CVSS8.2AI score0.30665EPSS
Exploits0References8Affected Software4
Debian CVE
Debian CVE
added 2018/02/19 1:0 p.m.28 views

CVE-2018-5381

Removed by vendor...

7.5CVSS8AI score0.30665EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2018/02/13 12:0 a.m.35 views

CVE-2018-5381

The Quagga BGP daemon bgpd prior to version 1.2.3 has a bug in its parsing of "Capabilities" in BGP OPEN messages, in the bgppacket.c:bgpcapabilitymsgparse function. The parser can enter an infinite loop on invalid capabilities if a Multi-Protocol capability does not have a recognized AFI/SAFI,...

7.5CVSS6.9AI score0.30665EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2018/02/13 12:0 a.m.26 views

CVE-2018-5378

The Quagga BGP daemon bgpd prior to version 1.2.3 does not properly bounds check the data sent with a NOTIFY to a peer, if an attribute length is invalid. Arbitrary data from the bgpd process may be sent over the network to a peer and/or bgpd may crash...

7.1CVSS6.8AI score0.74599EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2018/02/13 12:0 a.m.27 views

CVE-2018-5379

The Quagga BGP daemon bgpd prior to version 1.2.3 can double-free memory when processing certain forms of UPDATE message, containing cluster-list and/or unknown attributes. A successful attack could cause a denial of service or potentially allow an attacker to execute arbitrary code...

9.8CVSS7.1AI score0.39045EPSS
Exploits0References3
OSV
OSV
added 2018/02/13 12:0 a.m.2 views

UBUNTU-CVE-2018-5379

The Quagga BGP daemon bgpd prior to version 1.2.3 can double-free memory when processing certain forms of UPDATE message, containing cluster-list and/or unknown attributes. A successful attack could cause a denial of service or potentially allow an attacker to execute arbitrary code...

9.8CVSS7.2AI score0.39045EPSS
Exploits0References4
Debian
Debian
added 2016/08/26 4:3 a.m.26 views

[SECURITY] [DSA 3654-1] quagga security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3654-1 [email protected] https://www.debian.org/security/ Sebastien Delafond August 26, 2016 https://www.debian.org/security/faq -...

7.5CVSS7.3AI score0.04642EPSS
Exploits0
securityvulns
securityvulns
added 2010/09/12 12:0 a.m.47 views

quagga BGP daemon DoS

Few DoS conditions on BGP traffic parsing...

6.5CVSS2.9AI score0.04041EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder