Lucene search
+L

383 matches found

NVD
NVD
added 2026/04/29 8:16 p.m.15 views

CVE-2026-7425

Insufficient option length validation in the IPv6 Router Advertisement parser in FreeRTOS-Plus-TCP before V4.2.6 and V4.4.1 allows an adjacent network actor to cause a denial of service device crash by sending a crafted Router Advertisement with a truncated PREFIXINFORMATION option that is smalle...

6.5CVSS0.00233EPSS
Exploits0References4
NVD
NVD
added 2026/04/29 8:16 p.m.5 views

CVE-2026-7426

Insufficient validation of the prefix length field in IPv6 Router Advertisement processing in FreeRTOS-Plus-TCP before V4.2.6 and V4.4.1 allows an adjacent network actor to cause memory corruption by sending a crafted Router Advertisement with a prefix length value exceeding the maximum valid...

8.1CVSS0.00246EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/04/29 6:53 p.m.35 views

CVE-2026-7426 Out-of-Bounds Write via Unsanitized Prefix Length in Router Advertisement Processing in FreeRTOS-Plus-TCP

Insufficient validation of the prefix length field in IPv6 Router Advertisement processing in FreeRTOS-Plus-TCP before V4.2.6 and V4.4.1 allows an adjacent network actor to cause memory corruption by sending a crafted Router Advertisement with a prefix length value exceeding the maximum valid...

8.1CVSS0.00246EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/04/29 6:53 p.m.5 views

CVE-2026-7426 Out-of-Bounds Write via Unsanitized Prefix Length in Router Advertisement Processing in FreeRTOS-Plus-TCP

Insufficient validation of the prefix length field in IPv6 Router Advertisement processing in FreeRTOS-Plus-TCP before V4.2.6 and V4.4.1 allows an adjacent network actor to cause memory corruption by sending a crafted Router Advertisement with a prefix length value exceeding the maximum valid...

8.1CVSS5.9AI score0.00246EPSS
Exploits0References4
CVE
CVE
added 2026/04/29 6:53 p.m.14 views

CVE-2026-7426

The CVE-2026-7426 entry concerns the IPv6 Router Advertisement handling in FreeRTOS-Plus-TCP. Insufficient validation of the prefix length field in Router Advertisement processing allows memory corruption (heap buffer overflow) on the affected stack when processing RA messages. Affected versions ...

8.1CVSS5.9AI score0.00246EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2026/04/29 6:53 p.m.3 views

CVE-2026-7426 Out-of-Bounds Write via Unsanitized Prefix Length in Router Advertisement Processing in FreeRTOS-Plus-TCP

Insufficient validation of the prefix length field in IPv6 Router Advertisement processing in FreeRTOS-Plus-TCP before V4.2.6 and V4.4.1 allows an adjacent network actor to cause memory corruption by sending a crafted Router Advertisement with a prefix length value exceeding the maximum valid...

6.1CVSS6.4AI score0.00246EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2026/04/29 6:52 p.m.5 views

CVE-2026-7425 Out-of-Bounds Read in Router Advertisement Option Parser in FreeRTOS-Plus-TCP

Insufficient option length validation in the IPv6 Router Advertisement parser in FreeRTOS-Plus-TCP before V4.2.6 and V4.4.1 allows an adjacent network actor to cause a denial of service device crash by sending a crafted Router Advertisement with a truncated PREFIXINFORMATION option that is smalle...

6.5CVSS5.3AI score0.00233EPSS
Exploits0References4
EUVD
EUVD
added 2026/04/29 6:52 p.m.10 views

EUVD-2026-26283

Insufficient option length validation in the IPv6 Router Advertisement parser in FreeRTOS-Plus-TCP before V4.2.6 and V4.4.1 allows an adjacent network actor to cause a denial of service device crash by sending a crafted Router Advertisement with a truncated PREFIXINFORMATION option that is smalle...

6.5CVSS5.3AI score0.00233EPSS
Exploits0References3
CVE
CVE
added 2026/04/29 6:52 p.m.23 views

CVE-2026-7425

The CVE-2026-7425 issue affects FreeRTOS-Plus-TCP’s IPv6 Router Advertisement parser. In versions prior to V4.2.6 and V4.4.1, insufficient option length validation allows a crafted Router Advertisement with a truncated PREFIX_INFORMATION option to cause a device crash (DoS). The vulnerability is ...

6.5CVSS5.3AI score0.00233EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2026/04/29 6:52 p.m.41 views

CVE-2026-7425 Out-of-Bounds Read in Router Advertisement Option Parser in FreeRTOS-Plus-TCP

Insufficient option length validation in the IPv6 Router Advertisement parser in FreeRTOS-Plus-TCP before V4.2.6 and V4.4.1 allows an adjacent network actor to cause a denial of service device crash by sending a crafted Router Advertisement with a truncated PREFIXINFORMATION option that is smalle...

6.5CVSS0.00233EPSS
Exploits0References4
OSV
OSV
added 2026/04/29 6:52 p.m.3 views

CVE-2026-7425 Out-of-Bounds Read in Router Advertisement Option Parser in FreeRTOS-Plus-TCP

Insufficient option length validation in the IPv6 Router Advertisement parser in FreeRTOS-Plus-TCP before V4.2.6 and V4.4.1 allows an adjacent network actor to cause a denial of service device crash by sending a crafted Router Advertisement with a truncated PREFIXINFORMATION option that is smalle...

6CVSS6AI score0.00233EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2026/04/29 12:0 a.m.9 views

PT-2026-35979

Insufficient option length validation in the IPv6 Router Advertisement parser in FreeRTOS-Plus-TCP before V4.2.6 and V4.4.1 allows an adjacent network actor to cause a denial of service device crash by sending a crafted Router Advertisement with a truncated PREFIX INFORMATION option that is small...

6.5CVSS5.3AI score0.00233EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/04/29 12:0 a.m.10 views

FreeRTOS-Plus-TCP 缓冲区错误漏洞

FreeRTOS-Plus-TCP is an extensible, open-source TCP/IP stack designed for use with FreeRTOS. Versions prior to V4.2.6 and V4.4.1 of FreeRTOS-Plus-TCP contained a buffer error vulnerability. This vulnerability stemmed from insufficient option length validation in the IPv6 router advertisement...

6.5CVSS6AI score0.00233EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/04/29 12:0 a.m.14 views

FreeRTOS-Plus-TCP 缓冲区错误漏洞

FreeRTOS-Plus-TCP is an extensible, open-source TCP/IP stack designed for use with FreeRTOS. Versions prior to V4.2.6 and V4.4.1 of FreeRTOS-Plus-TCP contained a buffer error vulnerability. This vulnerability stemmed from insufficient validation of the prefix length field during IPv6 router...

8.1CVSS6AI score0.00246EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/28 8:0 a.m.5 views

CVE-2026-7243

A vulnerability was identified in Totolink A8000RU 7.1cu.643b20200521. The affected element is the function setRadvdCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipulation of the argument maxRtrAdvInterval leads to os command injection. It is possible to initiate the...

10CVSS5.3AI score0.02448EPSS
Exploits0References5Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/28 12:0 a.m.6 views

PT-2026-35692

A vulnerability was identified in Totolink A8000RU 7.1cu.643 b20200521. The affected element is the function setRadvdCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipulation of the argument maxRtrAdvInterval leads to os command injection. It is possible to initiate the...

10CVSS8.4AI score0.02448EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/04/12 2:45 a.m.2 views

CVE-2026-6112

A weakness has been identified in Totolink A7100RU 7.4cu.2313b20191024. Affected is the function setRadvdCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. This manipulation of the argument maxRtrAdvInterval causes os command injection. The attack can be initiated remotely. The...

10CVSS7AI score0.01766EPSS
Exploits0References5Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/02/16 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2026-23124

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ipv6: annotate data-race in ndiscrouterdiscovery syzbot found that ndiscrouterdiscovery could read and write in6dev-ramtu without holding a lock 1 This looks...

5.5CVSS6.2AI score0.00114EPSS
Exploits0References3
OSV
OSV
added 2026/02/14 3:16 p.m.8 views

UBUNTU-CVE-2026-23124

In the Linux kernel, the following vulnerability has been resolved: ipv6: annotate data-race in ndiscrouterdiscovery syzbot found that ndiscrouterdiscovery could read and write in6dev-ramtu without holding a lock 1 This looks fine, IFLAINET6RAMTU is best effort. Add READONCE/WRITEONCE to document...

5.5CVSS5.7AI score0.00114EPSS
Exploits0References31
Vulnrichment
Vulnrichment
added 2026/02/14 3:9 p.m.5 views

CVE-2026-23124 ipv6: annotate data-race in ndisc_router_discovery()

In the Linux kernel, the following vulnerability has been resolved: ipv6: annotate data-race in ndiscrouterdiscovery syzbot found that ndiscrouterdiscovery could read and write in6dev-ramtu without holding a lock 1 This looks fine, IFLAINET6RAMTU is best effort. Add READONCE/WRITEONCE to document...

5.7AI score0.00114EPSS
Exploits0References6
Rows per page
Query Builder