Lucene search
K

309 matches found

Tenable Nessus
Tenable Nessus
added 2024/04/19 12:0 a.m.51 views

EulerOS Virtualization 2.10.1 : libssh2 (EulerOS-SA-2024-1548)

According to the versions of the libssh2 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attacke...

5.9CVSS7.1AI score0.93305EPSS
Exploits4References2
Redos
Redos
added 2024/04/12 12:0 a.m.31 views

ROS-20240412-02

A vulnerability in the SSH protocol implementation is related to the ability to adjust packet sequence numbers during the connection negotiation process and remove an arbitrary number of SSH service messages. during the connection negotiation process and cause an arbitrary number of SSH service...

5.9CVSS7.5AI score0.93305EPSS
Exploits4
Microsoft CVE
Microsoft CVE
added 2024/04/08 7:0 a.m.5 views

Predictable TCP ISNs in EDK II Network Package

...

7.5CVSS7.8AI score0.00986EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2024/04/04 3:23 p.m.7 views

ssh: Prefix truncation attack on Binary Packet Protocol (BPP)

A flaw was found in the SSH channel integrity. By manipulating sequence numbers during the handshake, an attacker can remove the initial messages on the secure channel without causing a MAC failure. For example, an attacker could disable the ping extension and thus disable the new countermeasure ...

5.9CVSS6.7AI score0.93305EPSS
Exploits4References6
RedHat Linux
RedHat Linux
added 2024/04/04 3:23 p.m.4 views

ssh: Prefix truncation attack on Binary Packet Protocol (BPP)

A flaw was found in the SSH channel integrity. By manipulating sequence numbers during the handshake, an attacker can remove the initial messages on the secure channel without causing a MAC failure. For example, an attacker could disable the ping extension and thus disable the new countermeasure ...

5.9CVSS6.7AI score0.93305EPSS
Exploits4References6
Tenable Nessus
Tenable Nessus
added 2024/03/21 12:0 a.m.40 views

EulerOS Virtualization 2.9.0 : libssh2 (EulerOS-SA-2024-1470)

According to the versions of the libssh2 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attacke...

5.9CVSS7.1AI score0.93305EPSS
Exploits4References2
Tenable Nessus
Tenable Nessus
added 2024/03/21 12:0 a.m.38 views

EulerOS Virtualization 2.9.0 : openssh (EulerOS-SA-2024-1475)

According to the versions of the openssh packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote...

6.5CVSS7.2AI score0.93305EPSS
Exploits12References3
Tenable Nessus
Tenable Nessus
added 2024/03/19 12:0 a.m.33 views

Oracle Linux 7 : openssh (ELSA-2024-12233)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-12233 advisory. 7.4p1-23.0.3fips - Change Epoch from 1 to 10 - Enable fips KDF POST Orabug: 32461750 - Disable diffie-hellman-group-exchange-sha256 KEX FIPS method Orabug:...

5.9CVSS7.1AI score0.93305EPSS
Exploits4References2
OpenVAS
OpenVAS
added 2024/03/13 12:0 a.m.19 views

Huawei EulerOS: Security Advisory for proftpd (EulerOS-SA-2024-1345)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.7AI score0.93305EPSS
Exploits5References2
OpenVAS
OpenVAS
added 2024/03/13 12:0 a.m.12 views

Huawei EulerOS: Security Advisory for openssh (EulerOS-SA-2024-1343)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.7AI score0.93305EPSS
Exploits12References2
Tenable Nessus
Tenable Nessus
added 2024/03/12 12:0 a.m.26 views

EulerOS 2.0 SP10 : proftpd (EulerOS-SA-2024-1323)

According to the versions of the proftpd package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass...

7.5CVSS7.2AI score0.93305EPSS
Exploits5References3
Tenable Nessus
Tenable Nessus
added 2024/03/12 12:0 a.m.37 views

EulerOS 2.0 SP11 : libssh2 (EulerOS-SA-2024-1239)

According to the versions of the libssh2 package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass...

5.9CVSS7.1AI score0.93305EPSS
Exploits4References2
Tenable Nessus
Tenable Nessus
added 2024/03/12 12:0 a.m.38 views

EulerOS 2.0 SP11 : libssh2 (EulerOS-SA-2024-1217)

According to the versions of the libssh2 package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass...

5.9CVSS7.1AI score0.93305EPSS
Exploits4References2
RedHat Linux
RedHat Linux
added 2024/03/06 5:58 p.m.2 views

ssh: Prefix truncation attack on Binary Packet Protocol (BPP)

A flaw was found in the SSH channel integrity. By manipulating sequence numbers during the handshake, an attacker can remove the initial messages on the secure channel without causing a MAC failure. For example, an attacker could disable the ping extension and thus disable the new countermeasure ...

5.9CVSS6.7AI score0.93305EPSS
Exploits4References6
RedHat Linux
RedHat Linux
added 2024/03/05 6:18 p.m.2 views

ssh: Prefix truncation attack on Binary Packet Protocol (BPP)

A flaw was found in the SSH channel integrity. By manipulating sequence numbers during the handshake, an attacker can remove the initial messages on the secure channel without causing a MAC failure. For example, an attacker could disable the ping extension and thus disable the new countermeasure ...

5.9CVSS6.6AI score0.93305EPSS
Exploits4References6
Positive Technologies
Positive Technologies
added 2024/03/04 12:0 a.m.7 views

PT-2024-12411 · Wlan Host +1 · Wlan Host +1

Name of the Vulnerable Software and Affected Versions: WLAN Host and Firmware affected versions not specified Description: The issue is related to a transient Denial of Service DOS in WLAN Host and Firmware. This occurs when a large number of open authentication frames are sent with an invalid...

7.5CVSS7.1AI score0.0075EPSS
Exploits1References5
CNNVD
CNNVD
added 2024/03/04 12:0 a.m.6 views

Qualcomm Chipsets Security Vulnerability

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that stems from a denial of service in the WLAN host and firmware when a large number of open authentication frames with invalid transaction sequence numbers are sent...

7.5CVSS6.9AI score0.0075EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2024/02/27 10:34 p.m.6 views

ssh: Prefix truncation attack on Binary Packet Protocol (BPP)

A flaw was found in the SSH channel integrity. By manipulating sequence numbers during the handshake, an attacker can remove the initial messages on the secure channel without causing a MAC failure. For example, an attacker could disable the ping extension and thus disable the new countermeasure ...

5.9CVSS6.6AI score0.93305EPSS
Exploits4References6
Veracode
Veracode
added 2024/02/21 7:29 a.m.20 views

Denial Of Service (DoS)

github.com/cosmos/cosmos-sdk is vulnerable to Denial Of Service. The vulnerability is due to the handling of non-sequential sequence numbers by the default PrepareProposalHandler and SenderNonceMempool, potentially allowing invalid blocks to be proposed under certain conditions...

7AI score
Exploits0
NVD
NVD
added 2024/02/13 9:15 a.m.33 views

CVE-2023-51440

A vulnerability has been identified in SIMATIC CP 343-1 6GK7343-1EX30-0XE0 All versions, SIMATIC CP 343-1 Lean 6GK7343-1CX10-0XE0 All versions, SIPLUS NET CP 343-1 6AG1343-1EX30-7XE0 All versions, SIPLUS NET CP 343-1 Lean 6AG1343-1CX10-2XE0 All versions. Affected products incorrectly validate TCP...

7.5CVSS7.5AI score0.00597EPSS
Exploits0References1
Rows per page
Query Builder