Lucene search
+L

186 matches found

CVE
CVE
added 2026/03/09 11:27 a.m.58 views

CVE-2025-14558

CVE-2025-14558 affects FreeBSD rtsol(8) and rtsold(8). The issue arises because the domain search list in IPv6 Router Advertisement DNSSL options is not validated; the option body is passed to resolvconf(8) unmodified, and resolvconf(8) is a shell script that does not validate input, allowing she...

7.2CVSS6AI score0.06272EPSS
Exploits7References2Affected Software1
Cvelist
Cvelist
added 2026/03/09 11:27 a.m.33 views

CVE-2025-14558 Remote code execution via ND6 Router Advertisements

The rtsol8 and rtsold8 programs do not validate the domain search list options provided in router advertisement messages; the option body is passed to resolvconf8 unmodified. resolvconf8 is a shell script which does not validate its input. A lack of quoting meant that shell commands pass as input...

0.06272EPSS
Exploits7References1
Vulnrichment
Vulnrichment
added 2026/03/09 11:27 a.m.3 views

CVE-2025-14558 Remote code execution via ND6 Router Advertisements

The rtsol8 and rtsold8 programs do not validate the domain search list options provided in router advertisement messages; the option body is passed to resolvconf8 unmodified. resolvconf8 is a shell script which does not validate its input. A lack of quoting meant that shell commands pass as input...

5.8AI score0.06272EPSS
Exploits7References1
Packet Storm
Packet Storm
added 2026/02/13 12:0 a.m.156 views

📄 FreeBSD rtsold/rtsol DNSSL Command Injection

This Metasploit module exploits a command injection vulnerability CVE-2025-14558 in FreeBSD's rtsol8 and rtsold8 programs. These programs do not validate the domain search list options provided in IPv6 Router Advertisement messages; the option body is passed to resolvconf8 unmodified. resolvconf8...

5.5AI score0.06272EPSS
Exploits7
Packet Storm
Packet Storm
added 2026/01/28 12:0 a.m.160 views

📄 FreeBSD 15.x rtsold DNSSL Command Injection

This Metasploit module targets a command injection vulnerability in the FreeBSD rtsold daemon related to the handling of DNSSL DNS Search List options in IPv6 Router Advertisements. Due to improper validation of domain names, attacker-controlled DNSSL values can inject shell commands via $...

6.1AI score0.06272EPSS
Exploits7
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.4 views

MiracleLinux 7 : containernetworking-plugins-0.8.3-3.el7 (AXSA:2020-186:02)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2020-186:02 advisory. containernetworking/plugins: IPv6 router advertisements allow for MitM attacks on IPv4 clusters CVE-2020-10749 Tenable has extracted the preceding description...

6CVSS7.5AI score0.02428EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.3 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001075)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001075 advisory. The ip6routeadd function in net/ipv6/route.c in the Linux kernel through 3.13.6 does not properly count the addition of routes, which allows remote attackers to caus...

6.1CVSS7.1AI score0.02426EPSS
Exploits2References10
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000991)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000991 advisory. net/ipv6/addrconf.c in the IPv6 stack in the Linux kernel before 4.0 does not validate attempted changes to the MTU value, which allows context-dependent attackers t...

5CVSS6.5AI score0.05059EPSS
Exploits0References18
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.4 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002136)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002136 advisory. net/ipv6/addrconf.c in the IPv6 stack in the Linux kernel before 4.0 does not validate attempted changes to the MTU value, which allows context-dependent attackers t...

5CVSS6.5AI score0.05059EPSS
Exploits0References18
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.2 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002254)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002254 advisory. The ip6routeadd function in net/ipv6/route.c in the Linux kernel through 3.13.6 does not properly count the addition of routes, which allows remote attackers to caus...

6.1CVSS7AI score0.02426EPSS
Exploits2References10
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.4 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001839)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001839 advisory. The fib6addrt2node function in net/ipv6/ip6fib.c in the IPv6 stack in the Linux kernel through 3.10.1 does not properly handle Router Advertisement RA messages in...

5.4CVSS6.5AI score0.04672EPSS
Exploits1References12
Packet Storm
Packet Storm
added 2026/01/07 12:0 a.m.180 views

📄 FreeBSD rtsold 15.x Remote Code Execution

rtsold8 on FreeBSD processes IPv6 Router Advertisement DNSSL options without validating domain names for shell metacharacters. The decoded domains are passed to resolvconf8, a shell script that uses unquoted variable expansion, enabling command injection via substitution. Exploit Title: FreeBSD...

7.5AI score0.06272EPSS
Exploits7
Tenable Nessus
Tenable Nessus
added 2025/12/17 12:0 a.m.2 views

FreeBSD : FreeBSD -- Remote code execution via ND6 Router Advertisements (6c9318c7-dae9-11f0-80b8-bc241121aa0a)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 6c9318c7-dae9-11f0-80b8-bc241121aa0a advisory. The rtsol8 and rtsold8 programs do not validate the domain search list options provided in router...

7.2CVSS6.3AI score0.06272EPSS
Exploits7References2
FreeBSD Advisory
FreeBSD Advisory
added 2025/12/16 12:0 a.m.13 views

FreeBSD-SA-25:12.rtsold

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-25:12.rtsold Security Advisory The FreeBSD Project Topic: Remote code execution via ND6 Router Advertisements Category: core Module: rtsold Announced: 2025-12-1...

7.2CVSS6.5AI score0.06272EPSS
Exploits7
FreeBSD
FreeBSD
added 2025/12/16 12:0 a.m.5 views

FreeBSD -- Remote code execution via ND6 Router Advertisements

Problem Description: The rtsol8 and rtsold8 programs do not validate the domain search list options provided in router advertisement messages; the option body is passed to resolvconf8 unmodified. resolvconf8 is a shell script which does not validate its input. A lack of quoting meant that shell...

7.2CVSS7.7AI score0.06272EPSS
Exploits7
EUVD
EUVD
added 2025/10/07 12:30 a.m.10 views

EUVD-2021-0955

Malware in sbrugna...

5.8CVSS5.7AI score0.0086EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/10/02 12:0 a.m.4 views

Cisco Access Point Software Intermittent IPv6 Gateway Change (cisco-sa-ap-ipv6-gw-tUAzpn9O)

According to its self-reported version, Cisco Access Point Software Intermittent IPv6 Gateway Change is affected by a vulnerability. - A vulnerability in the IPv6 Router Advertisement RA packet processing of Cisco Access Point Software could allow an unauthenticated, adjacent attacker to modify t...

4.3CVSS5.6AI score0.00154EPSS
Exploits0References3
Fedora
Fedora
added 2025/10/01 2:45 p.m.11 views

[SECURITY] Fedora 42 Update: bird-3.1.4-1.fc42

BIRD is a dynamic IP routing daemon supporting both, IPv4 and IPv6, Border Gateway Protocol BGPv4, Routing Information Protocol RIPv2, RIPng, Open Shortest Path First protocol OSPFv2, OSPFv3, Babel Routing Protocol Babel, Bidirectional Forwarding Detection BFD, IPv6 router advertisements, static...

7AI score
Exploits0
Cisco
Cisco
added 2025/09/24 4:0 p.m.9 views

Cisco Access Point Software Intermittent IPv6 Gateway Change Vulnerability

A vulnerability in the IPv6 Router Advertisement RA packet processing of Cisco Access Point Software could allow an unauthenticated, adjacent attacker to modify the IPv6 gateway on an affected device. This vulnerability is due to a logic error in the processing of IPv6 RA packets that are receive...

4.3CVSS6.8AI score0.00154EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/08/19 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2015-0272

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GNOME NetworkManager allows remote attackers to cause a denial of service IPv6 traffic disruption via a crafted MTU value in an IPv6 Router Advertisement RA...

5CVSS6.5AI score0.05059EPSS
Exploits0References2
Rows per page
Query Builder