Lucene search
K

30 matches found

OSV
OSV
added 3 days ago3 views

OESA-2026-2808 radvd security update

The router advertisement daemon radvd is run by Linux or BSD systems acting as IPv6 routers. It sends Router Advertisement messages, specified by RFC 2461, to a local Ethernet LAN periodically and when requested by a node sending a Router Solicitation message. These messages are required for IPv6...

8.8CVSS6.2AI score0.00203EPSS
Exploits0References2
OSV
OSV
added 3 days ago3 views

OESA-2026-2807 radvd security update

The router advertisement daemon radvd is run by Linux or BSD systems acting as IPv6 routers. It sends Router Advertisement messages, specified by RFC 2461, to a local Ethernet LAN periodically and when requested by a node sending a Router Solicitation message. These messages are required for IPv6...

8.8CVSS6.2AI score0.00203EPSS
Exploits0References2
AlpineLinux
AlpineLinux
added 2026/06/19 7:18 p.m.8 views

CVE-2026-48715

radvd is a router advertisement daemon for IPv6. Prior to version 2.21, the radvdump utility shipped with radvd contains a stack buffer overflow in the Route Information option parser. When processing a crafted ICMPv6 Router Advertisement, printff copies up to 2032 bytes from attacker-controlled...

8.8CVSS6.1AI score0.00203EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2011-3562

Malware in sbrugna...

4.4CVSS6AI score0.00359EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2011-3560

Malware in sbrugna...

7.5CVSS6AI score0.03962EPSS
Exploits0References5
CVE
CVE
added 2024/05/03 1:56 a.m.319 views

CVE-2023-32154

CVE-2023-32154 affects MikroTik RouterOS and its Router Advertisement Daemon (RADVD). The vulnerability is an out-of-bounds write caused by insufficient validation of user-supplied data, enabling network-adjacent attackers to execute code with root privileges. Exploitation requires no authenticat...

7.5CVSS7.9AI score0.0061EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/05/03 1:56 a.m.41 views

CVE-2023-32154 Mikrotik RouterOS RADVD Out-Of-Bounds Write Remote Code Execution Vulnerability

Mikrotik RouterOS RADVD Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Mikrotik RouterOS. Authentication is not required to exploit this vulnerability. The specific flaw exists...

7.5CVSS7.9AI score0.0061EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/05/03 12:0 a.m.6 views

MikroTik RouterOS 安全漏洞

MikroTik RouterOS is a Linux-based router operating system developed by the Latvian company MikroTik. The system can be deployed in PCs to enable them to provide router functionality. MikroTik RouterOS suffers from a security vulnerability that stems from the presence of an out-of-bounds write to...

7.5CVSS7.7AI score0.0061EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2023/05/26 12:0 a.m.8 views

The vulnerability of the radvd (Router Advertisement Daemon) component of the RouterOS operating system in MikroTik routers allows a hacker to execute arbitrary code.

The vulnerability of the radvd Router Advertisement Daemon component of the RouterOS operating system in MikroTik routers stems from the operation of writing data beyond the buffer in memory when processing data entered by the user. Exploiting this vulnerability allows a remote attacker to execut...

7.5CVSS7.8AI score0.0061EPSS
Exploits0References6Affected Software1
Zero Day Initiative
Zero Day Initiative
added 2023/05/17 12:0 a.m.151 views

(0Day) (Pwn2Own) Mikrotik RouterOS RADVD Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Mikrotik RouterOS. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Router Advertisement Daemon. The issue results from the lack of proper...

7.5CVSS7.3AI score0.0061EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 5:50 a.m.4 views

SUSE CVE-2011-3604

The processra function in the router advertisement daemon radvd before 1.8.2 allows remote attackers to cause a denial of service stack-based buffer over-read and crash via unspecified vectors...

7.5CVSS7AI score0.01552EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/12/09 12:0 a.m.8 views

PT-2022-6614 · Mikrotik · Mikrotik Routeros

Name of the Vulnerable Software and Affected Versions: Mikrotik RouterOS affected versions not specified Description: This issue allows network-adjacent attackers to execute arbitrary code on affected installations of Mikrotik RouterOS. No authentication is required to exploit this vulnerability...

7.5CVSS7.5AI score0.0061EPSS
Exploits0References17
OSV
OSV
added 2014/04/27 9:55 p.m.7 views

CVE-2011-3602

Directory traversal vulnerability in device-linux.c in the router advertisement daemon radvd before 1.8.2 allows local users to overwrite arbitrary files, and remote attackers to overwrite certain files, via a .. dot dot in an interface name. NOTE: this can be leveraged with a symlink to overwrit...

6.3AI score
Exploits0References5
NVD
NVD
added 2014/04/27 9:55 p.m.15 views

CVE-2011-3603

The router advertisement daemon radvd before 1.8.2 does not properly handle errors in the privsepinit function, which causes the radvd daemon to run as root and has an unspecified impact...

4.4CVSS6.3AI score0.00359EPSS
Exploits0References3
OSV
OSV
added 2014/04/27 9:55 p.m.4 views

DEBIAN-CVE-2011-3602

Directory traversal vulnerability in device-linux.c in the router advertisement daemon radvd before 1.8.2 allows local users to overwrite arbitrary files, and remote attackers to overwrite certain files, via a .. dot dot in an interface name. NOTE: this can be leveraged with a symlink to overwrit...

6.4CVSS6.4AI score0.02794EPSS
Exploits0References1
Prion
Prion
added 2014/04/27 9:55 p.m.15 views

Code injection

The router advertisement daemon radvd before 1.8.2 does not properly handle errors in the privsepinit function, which causes the radvd daemon to run as root and has an unspecified impact...

4.4CVSS6.9AI score0.00359EPSS
Exploits0References3Affected Software1
UbuntuCve
UbuntuCve
added 2014/04/27 9:55 p.m.26 views

CVE-2011-3603

The router advertisement daemon radvd before 1.8.2 does not properly handle errors in the privsepinit function, which causes the radvd daemon to run as root and has an unspecified impact...

4.4CVSS5.9AI score0.00359EPSS
Exploits0References2
Cvelist
Cvelist
added 2014/04/27 9:0 p.m.28 views

CVE-2011-3603

The router advertisement daemon radvd before 1.8.2 does not properly handle errors in the privsepinit function, which causes the radvd daemon to run as root and has an unspecified impact...

6.2AI score0.00359EPSS
Exploits0References3
CVE
CVE
added 2014/04/27 9:0 p.m.63 views

CVE-2011-3603

The CVE-2011-3603 issue affects the router advertisement daemon (radvd) prior to version 1.8.2. The root cause is improper error handling in privsep_init, which can cause radvd to run with root privileges, leading to a partial confidentiality/integrity/availability impact as described (and noted ...

4.4CVSS6.3AI score0.00359EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2014/04/27 9:0 p.m.70 views

CVE-2011-3602

CVE-2011-3602 is a directory traversal vulnerability in the router advertisement daemon, radvd, affecting radvd before 1.8.2. An attacker can exploit an interface name containing a “..” to overwrite arbitrary files, and this can be leveraged with a symlink to overwrite additional files. The issue...

6.4CVSS6.3AI score0.02794EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder