2399 matches found
SUSE CVE-2018-7332
In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-reload.c had an infinite loop that was addressed by validating a length...
SUSE CVE-2018-1000808
Python Cryptographic Authority pyopenssl version Before 17.5.0 contains a CWE - 401 : Failure to Release Memory Before Removing Last Reference vulnerability in PKCS 12 Store that can result in Denial of service if memory runs low or is exhausted. This attack appear to be exploitable via Depends...
SUSE CVE-2019-11323
HAProxy before 1.9.7 mishandles a reload with rotated keys, which triggers use of uninitialized, and very predictable, HMAC keys. This is related to an include/types/sslsock.h error...
PT-2023-1436 · Cisco · Cisco Nexus Dashboard
Name of the Vulnerable Software and Affected Versions: Cisco Nexus Dashboard Software affected versions not specified Description: A vulnerability in the DNS functionality could allow an unauthenticated, remote attacker to cause a denial of service DoS condition. This issue is due to the improper...
Malicious code in reload-glob (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3a9d76cc19bc57eec19d1d25f5033ac97363240cb901ec32959baf06e1c1fe3f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2023-744 Malicious code in reload-glob (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3a9d76cc19bc57eec19d1d25f5033ac97363240cb901ec32959baf06e1c1fe3f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-5740 Malicious code in reload-update-cookies-ahref.com (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 376faca1de1f4e86cd9a30d3fc06721ffa353f7e48526e5fc3935840bf7bf839 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in reload-update-cookies-ahref.com (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 376faca1de1f4e86cd9a30d3fc06721ffa353f7e48526e5fc3935840bf7bf839 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
PT-2024-11814 · Linux +3 · Linux Kernel +3
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability has been resolved in the Linux kernel, specifically in the net/mlx5 module. The issue occurs when a command fails while the driver is reloading and cannot accept firmwa...
CVE-2022-20922
Multiple vulnerabilities in the Server Message Block Version 2 SMB2 processor of the Snort detection engine on multiple Cisco products could allow an unauthenticated, remote attacker to bypass the configured policies or cause a denial of service DoS condition on an affected device. These...
GSD-2022-1006857 wifi: mt76: mt7921e: fix rmmod crash in driver reload test
wifi: mt76: mt7921e: fix rmmod crash in driver reload test This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.3 by commit...
EulerOS 2.0 SP9 : gcc (EulerOS-SA-2022-2764)
According to the versions of the gcc packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In gcc, an internal compiler error in matchreload function at lra-constraints.c may cause a crash through a crafted input file. CVE-2020-35536 - In...
PT-2022-35112 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.3 Description: The issue is related to a potential security vulnerability in the Linux Kernel, specifically in the mt76 driver for the mt7921e wifi module. The problem causes a crash during driver reload...
CVE-2022-20922
Multiple vulnerabilities in the Server Message Block Version 2 SMB2 processor of the Snort detection engine on multiple Cisco products could allow an unauthenticated, remote attacker to bypass the configured policies or cause a denial of service DoS condition on an affected device. These...
PT-2022-5809 · Cisco · Cisco Meraki Mx +3
Name of the Vulnerable Software and Affected Versions: Cisco Firepower Threat Defense FTD with Snort 3 configured Cisco Meraki MX with Snort 3 configured Cisco Cyber Vision with Snort 3 configured Cisco Umbrella with Snort 3 configured Description: Multiple vulnerabilities in the Server Message...
PT-2022-6089 · Cisco · Cisco Ftd +1
Name of the Vulnerable Software and Affected Versions: Cisco Adaptive Security Appliance ASA Software affected versions not specified Cisco Firepower Threat Defense FTD Software affected versions not specified Description: A vulnerability in the Simple Network Management Protocol SNMP feature cou...
PT-2022-6087 · Cisco · Cisco Ftd +1
Name of the Vulnerable Software and Affected Versions: Cisco Adaptive Security Appliance ASA Software affected versions not specified Cisco Firepower Threat Defense FTD Software affected versions not specified Description: A vulnerability in the dynamic access policies DAP functionality is due to...
CVE-2022-20920
A vulnerability in the SSH implementation of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacker to cause an affected device to reload. This vulnerability is due to improper handling of resources during an exceptional situation. An attacker could exploit thi...
CVE-2022-20870
A vulnerability in the egress MPLS packet processing function of Cisco IOS XE Software for Cisco Catalyst 3650, Catalyst 3850, and Catalyst 9000 Family Switches could allow an unauthenticated, remote attacker to cause an affected device to reload unexpectedly, resulting in a denial of service DoS...
CVE-2022-20920
A vulnerability in the SSH implementation of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacker to cause an affected device to reload. This vulnerability is due to improper handling of resources during an exceptional situation. An attacker could exploit thi...