Lucene search
K

182 matches found

CVE
CVE
added 2019/10/01 1:11 p.m.149 views

CVE-2019-17052

CVE-2019-17052 affects Linux kernel 3.16–5.3.2 where several AF_NET_RAW-bound protocols (AX.25) do not enforce CAP_NET_RAW in socket creation, allowing unprivileged users to create raw sockets. Related entries mention additional interfaces (IEEE802.154, Appletalk, ISDN, NFC) with the same CAP_NET...

3.3CVSS6AI score0.00635EPSS
Exploits0References13Affected Software1
Cvelist
Cvelist
added 2019/10/01 1:11 p.m.30 views

CVE-2019-17053

ieee802154create in net/ieee802154/socket.c in the AFIEEE802154 network module in the Linux kernel through 5.3.2 does not enforce CAPNETRAW, which means that unprivileged users can create a raw socket, aka CID-e69dbd4619e7...

6.4AI score0.00511EPSS
Exploits0References12
CVE
CVE
added 2019/10/01 1:11 p.m.351 views

CVE-2019-17053

CVE-2019-17053 affects the Linux kernel's ieee802154_create in net/ieee802154/socket.c (AF_IEEE802154) up to version 5.3.2, where CAP_NET_RAW is not enforced. This allows unprivileged users to create a raw socket (local, low complexity). The connected documents reiterate the same description but ...

3.3CVSS6.3AI score0.00511EPSS
Exploits0References12Affected Software1
Debian CVE
Debian CVE
added 2019/10/01 1:11 p.m.44 views

CVE-2019-17053

ieee802154create in net/ieee802154/socket.c in the AFIEEE802154 network module in the Linux kernel through 5.3.2 does not enforce CAPNETRAW, which means that unprivileged users can create a raw socket, aka CID-e69dbd4619e7...

3.3CVSS6.4AI score0.00511EPSS
Exploits0
Cvelist
Cvelist
added 2019/10/01 1:11 p.m.28 views

CVE-2019-17054

atalkcreate in net/appletalk/ddp.c in the AFAPPLETALK network module in the Linux kernel through 5.3.2 does not enforce CAPNETRAW, which means that unprivileged users can create a raw socket, aka CID-6cc03e8aa36c...

6.1AI score0.00514EPSS
Exploits0References12
Debian CVE
Debian CVE
added 2019/10/01 1:11 p.m.47 views

CVE-2019-17054

atalkcreate in net/appletalk/ddp.c in the AFAPPLETALK network module in the Linux kernel through 5.3.2 does not enforce CAPNETRAW, which means that unprivileged users can create a raw socket, aka CID-6cc03e8aa36c...

3.3CVSS6.7AI score0.00514EPSS
Exploits0
CVE
CVE
added 2019/10/01 1:10 p.m.449 views

CVE-2019-17055

CVE-2019-17055 affects the Linux kernel up to 5.3.2, where base_sock_create in drivers/isdn/mISDN/socket.c did not enforce CAP_NET_RAW, allowing unprivileged users to create a raw socket via AF_ISDN. The issue is tracked with CID CID-b91ee4aa2a21 and was addressed in upstream kernel commits 0edc3...

3.3CVSS6.5AI score0.00542EPSS
Exploits0References15Affected Software1
Cvelist
Cvelist
added 2019/10/01 1:10 p.m.29 views

CVE-2019-17055

basesockcreate in drivers/isdn/mISDN/socket.c in the AFISDN network module in the Linux kernel through 5.3.2 does not enforce CAPNETRAW, which means that unprivileged users can create a raw socket, aka CID-b91ee4aa2a21...

6.7AI score0.00542EPSS
Exploits0References15
Debian CVE
Debian CVE
added 2019/10/01 1:10 p.m.42 views

CVE-2019-17056

llcpsockcreate in net/nfc/llcpsock.c in the AFNFC network module in the Linux kernel through 5.3.2 does not enforce CAPNETRAW, which means that unprivileged users can create a raw socket, aka CID-3a359798b176...

3.3CVSS6.4AI score0.00567EPSS
Exploits0
Cvelist
Cvelist
added 2019/10/01 1:10 p.m.27 views

CVE-2019-17056

llcpsockcreate in net/nfc/llcpsock.c in the AFNFC network module in the Linux kernel through 5.3.2 does not enforce CAPNETRAW, which means that unprivileged users can create a raw socket, aka CID-3a359798b176...

6.3AI score0.00567EPSS
Exploits0References14
CNVD
CNVD
added 2019/09/27 12:0 a.m.3 views

Cisco ASR 900 Cisco IOS XE Input Validation Error Vulnerability

The Cisco ASR 900 is a 900-series aggregation services router from Cisco, Inc.Cisco IOS XE is an operating system developed for Cisco network devices. An input validation error vulnerability exists in the Raw Socket Transport feature of Cisco IOS XE version 16.9 in the Cisco ASR 900 series, which...

8.6CVSS6.8AI score0.01984EPSS
Exploits0References1
OSV
OSV
added 2019/09/25 9:15 p.m.4 views

CVE-2019-12653

A vulnerability in the Raw Socket Transport feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to trigger a reload of an affected device, resulting in a denial of service DoS condition. The vulnerability is due to improper parsing of Raw Socket Transport payloads. An...

7.5CVSS7.1AI score0.01984EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/09/25 8:15 p.m.28 views

CVE-2019-12653 Cisco IOS XE Software Raw Socket Transport Denial of Service Vulnerability

A vulnerability in the Raw Socket Transport feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to trigger a reload of an affected device, resulting in a denial of service DoS condition. The vulnerability is due to improper parsing of Raw Socket Transport payloads. An...

8.6CVSS7.5AI score0.01984EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2019/09/25 8:15 p.m.15 views

CVE-2019-12653 Cisco IOS XE Software Raw Socket Transport Denial of Service Vulnerability

A vulnerability in the Raw Socket Transport feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to trigger a reload of an affected device, resulting in a denial of service DoS condition. The vulnerability is due to improper parsing of Raw Socket Transport payloads. An...

8.6CVSS7.4AI score0.01984EPSS
Exploits0References1
Cisco
Cisco
added 2019/09/25 4:0 p.m.110 views

Cisco IOS XE Software Raw Socket Transport Denial of Service Vulnerability

A vulnerability in the Raw Socket Transport feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to trigger a reload of an affected device, resulting in a denial of service DoS condition. The vulnerability is due to improper parsing of Raw Socket Transport payloads. An...

8.6CVSS7.7AI score0.01984EPSS
Exploits0References1
Veracode
Veracode
added 2019/05/16 1:48 a.m.39 views

Denial Of Service (DoS)

Linux kernel is vulnerable to denial of serviceDoS attacks. The vulnerability exists in the ip6find1stfragopt function in net/ipv6/outputcore.c. A remote attacker could cause integer overflows by leveraging the ability to open a raw socket which results in application crash...

5.5CVSS5.9AI score0.00454EPSS
Exploits0References16Affected Software2
BDU FSTEC
BDU FSTEC
added 2019/03/12 12:0 a.m.8 views

The vulnerability of the Linux kernel’s RAW-socket handler AF_PACKET allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the Linux kernel’s RAW-socket handler AFPACKET is related to synchronization errors when using shared resources „Race Conditions“. Exploiting this vulnerability can allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected informatio...

8.1CVSS6.6AI score0.02612EPSS
Exploits1References10Affected Software1
Kitploit
Kitploit
added 2018/02/28 1:17 p.m.28 views

Ninja Shell - Port Knocking Technique With AES256-GCM

Raw socket shell with AES256-GCM, using Port Knocking technique https://en.wikipedia.org/wiki/Portknocking using specific tcp flags ,FIN,URG and PSH. Raw socket ? Raw mode is basically there to allow you to bypass some of the way that your computer handles TCP/IP. Rather than going through the...

7.3AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2018/02/23 12:0 a.m.53 views

Ubuntu 17.10 : linux-raspi2 vulnerabilities (USN-3581-3)

Mohamed Ghannam discovered that the IPv4 raw socket implementation in the Linux kernel contained a race condition leading to uninitialized pointer usage. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. CVE-2017-17712 ChunYu Wang discovered that a...

7.8CVSS6.9AI score0.01344EPSS
Exploits5References4
exploitpack
exploitpack
added 2017/12/11 12:0 a.m.8 views

MikroTik 6.40.5 ICMP - Denial of Service

MikroTik 6.40.5 ICMP - Denial of Service include include include include include include include include define handlei htonsi define cicmp 32 define aicmp aflags & cicmp define sendingp if sendtorawsock,&packet,sizeof packet,0,struct sockaddr &victim,sizeof victim srcep || dstsp != 0...

0.4AI score
Exploits0
Rows per page
Query Builder