186 matches found
CVE-2025-14558
CVE-2025-14558 affects FreeBSD rtsol(8) and rtsold(8). The issue arises because the domain search list in IPv6 Router Advertisement DNSSL options is not validated; the option body is passed to resolvconf(8) unmodified, and resolvconf(8) is a shell script that does not validate input, allowing she...
CVE-2025-14558 Remote code execution via ND6 Router Advertisements
The rtsol8 and rtsold8 programs do not validate the domain search list options provided in router advertisement messages; the option body is passed to resolvconf8 unmodified. resolvconf8 is a shell script which does not validate its input. A lack of quoting meant that shell commands pass as input...
CVE-2025-14558 Remote code execution via ND6 Router Advertisements
The rtsol8 and rtsold8 programs do not validate the domain search list options provided in router advertisement messages; the option body is passed to resolvconf8 unmodified. resolvconf8 is a shell script which does not validate its input. A lack of quoting meant that shell commands pass as input...
📄 FreeBSD rtsold/rtsol DNSSL Command Injection
This Metasploit module exploits a command injection vulnerability CVE-2025-14558 in FreeBSD's rtsol8 and rtsold8 programs. These programs do not validate the domain search list options provided in IPv6 Router Advertisement messages; the option body is passed to resolvconf8 unmodified. resolvconf8...
📄 FreeBSD 15.x rtsold DNSSL Command Injection
This Metasploit module targets a command injection vulnerability in the FreeBSD rtsold daemon related to the handling of DNSSL DNS Search List options in IPv6 Router Advertisements. Due to improper validation of domain names, attacker-controlled DNSSL values can inject shell commands via $...
MiracleLinux 7 : containernetworking-plugins-0.8.3-3.el7 (AXSA:2020-186:02)
The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2020-186:02 advisory. containernetworking/plugins: IPv6 router advertisements allow for MitM attacks on IPv4 clusters CVE-2020-10749 Tenable has extracted the preceding description...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001075)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001075 advisory. The ip6routeadd function in net/ipv6/route.c in the Linux kernel through 3.13.6 does not properly count the addition of routes, which allows remote attackers to caus...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000991)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000991 advisory. net/ipv6/addrconf.c in the IPv6 stack in the Linux kernel before 4.0 does not validate attempted changes to the MTU value, which allows context-dependent attackers t...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002136)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002136 advisory. net/ipv6/addrconf.c in the IPv6 stack in the Linux kernel before 4.0 does not validate attempted changes to the MTU value, which allows context-dependent attackers t...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002254)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002254 advisory. The ip6routeadd function in net/ipv6/route.c in the Linux kernel through 3.13.6 does not properly count the addition of routes, which allows remote attackers to caus...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001839)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001839 advisory. The fib6addrt2node function in net/ipv6/ip6fib.c in the IPv6 stack in the Linux kernel through 3.10.1 does not properly handle Router Advertisement RA messages in...
📄 FreeBSD rtsold 15.x Remote Code Execution
rtsold8 on FreeBSD processes IPv6 Router Advertisement DNSSL options without validating domain names for shell metacharacters. The decoded domains are passed to resolvconf8, a shell script that uses unquoted variable expansion, enabling command injection via substitution. Exploit Title: FreeBSD...
FreeBSD : FreeBSD -- Remote code execution via ND6 Router Advertisements (6c9318c7-dae9-11f0-80b8-bc241121aa0a)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 6c9318c7-dae9-11f0-80b8-bc241121aa0a advisory. The rtsol8 and rtsold8 programs do not validate the domain search list options provided in router...
FreeBSD-SA-25:12.rtsold
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-25:12.rtsold Security Advisory The FreeBSD Project Topic: Remote code execution via ND6 Router Advertisements Category: core Module: rtsold Announced: 2025-12-1...
FreeBSD -- Remote code execution via ND6 Router Advertisements
Problem Description: The rtsol8 and rtsold8 programs do not validate the domain search list options provided in router advertisement messages; the option body is passed to resolvconf8 unmodified. resolvconf8 is a shell script which does not validate its input. A lack of quoting meant that shell...
EUVD-2021-0955
Malware in sbrugna...
Cisco Access Point Software Intermittent IPv6 Gateway Change (cisco-sa-ap-ipv6-gw-tUAzpn9O)
According to its self-reported version, Cisco Access Point Software Intermittent IPv6 Gateway Change is affected by a vulnerability. - A vulnerability in the IPv6 Router Advertisement RA packet processing of Cisco Access Point Software could allow an unauthenticated, adjacent attacker to modify t...
[SECURITY] Fedora 42 Update: bird-3.1.4-1.fc42
BIRD is a dynamic IP routing daemon supporting both, IPv4 and IPv6, Border Gateway Protocol BGPv4, Routing Information Protocol RIPv2, RIPng, Open Shortest Path First protocol OSPFv2, OSPFv3, Babel Routing Protocol Babel, Bidirectional Forwarding Detection BFD, IPv6 router advertisements, static...
Cisco Access Point Software Intermittent IPv6 Gateway Change Vulnerability
A vulnerability in the IPv6 Router Advertisement RA packet processing of Cisco Access Point Software could allow an unauthenticated, adjacent attacker to modify the IPv6 gateway on an affected device. This vulnerability is due to a logic error in the processing of IPv6 RA packets that are receive...
Linux Distros Unpatched Vulnerability : CVE-2015-0272
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GNOME NetworkManager allows remote attackers to cause a denial of service IPv6 traffic disruption via a crafted MTU value in an IPv6 Router Advertisement RA...