Lucene search
+L

2803 matches found

CVE
CVE
added 2026/02/25 4:18 p.m.32 views

CVE-2026-20010

Cisco NX-OS LLDP processing is vulnerable to an unauthenticated adjacent attacker who can craft LLDP frames to restart the LLDP process and cause a device reload, resulting in DoS. The issue stems from improper handling of specific LLDP frame fields; exploitation requires direct Layer 2 access to...

7.4CVSS5.5AI score0.00167EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/25 4:14 p.m.4 views

CVE-2026-20051

A vulnerability with the Ethernet VPN EVPN Layer 2 ingress packet processing of Cisco Nexus 3600 Platform Switches and Cisco Nexus 9500-R Series Switching Platforms could allow an unauthenticated, adjacent attacker to trigger a Layer 2 traffic loop. This vulnerability is due to a logic error when...

7.4CVSS5.6AI score0.00156EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/02/25 12:0 a.m.15 views

PT-2026-21939

Name of the Vulnerable Software and Affected Versions Cisco Nexus 3600 Platform Switches affected versions not specified Cisco Nexus 9500-R Series Switching Platforms affected versions not specified Description A flaw exists in the Ethernet VPN EVPN Layer 2 ingress packet processing of Cisco Nexu...

7.4CVSS6AI score0.00156EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/02/24 3:7 p.m.5 views

CVE-2026-27519 Binardat 10G08-0800GSM Network Switch Hard-coded RC4 Encryption Key

Binardat 10G08-0800GSM network switch firmware version V300SP10260209 and prior use RC4 with a hard-coded key embedded in client-side JavaScript. Because the key is static and exposed, an attacker can decrypt protected values and defeat confidentiality protections...

8.7CVSS5.9AI score0.00186EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/02/24 3:7 p.m.26 views

CVE-2026-27519 Binardat 10G08-0800GSM Network Switch Hard-coded RC4 Encryption Key

Binardat 10G08-0800GSM network switch firmware version V300SP10260209 and prior use RC4 with a hard-coded key embedded in client-side JavaScript. Because the key is static and exposed, an attacker can decrypt protected values and defeat confidentiality protections...

8.7CVSS0.00186EPSS
Exploits0References2
CVE
CVE
added 2026/02/24 3:7 p.m.26 views

CVE-2026-27519

Binardat 10G08-0800GSM network switch firmware up to version V300SP10260209 uses RC4 with a hard-coded key embedded in client-side JavaScript. The static key enables an attacker to decrypt protected values, defeating confidentiality protections. Affected component: firmware (vulnerable RC4 implem...

8.7CVSS5.4AI score0.00186EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/02/24 3:4 p.m.2 views

CVE-2026-27515

Binardat 10G08-0800GSM network switch firmware versions prior to V300SP10260209 generate predictable numeric session identifiers in the web management interface. An attacker can guess valid session IDs and hijack authenticated sessions...

9.3CVSS6AI score0.00321EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/02/24 3:4 p.m.4 views

CVE-2026-27507 Binardat 10G08-0800GSM Network Switch Hard-coded Credentials

Binardat 10G08-0800GSM network switch firmware version V300SP10260209 and prior contain hard-coded administrative credentials that cannot be changed by users. Knowledge of these credentials allows full administrative access to the device...

9.8CVSS5.9AI score0.00365EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/02/24 3:3 p.m.4 views

CVE-2026-23678 Binardat 10G08-0800GSM Network Switch Traceroute CLI Command Injection

Binardat 10G08-0800GSM network switch firmware version V300SP10260209 and prior contain a command injection vulnerability in the traceroute diagnostic function of the affected device web management interface. By injecting the %1a character into the hostname parameter, an authenticated attacker wi...

8.8CVSS6.2AI score0.01224EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/02/09 12:0 a.m.12 views

WAGO Industrial-Managed-Switch 0852-1322和WAGO Industrial-Managed-Switch 0852-1328 安全漏洞

WAGO Industrial-Managed-Switch 0852-1322 and WAGO Industrial-Managed-Switch 0852-1328 are industrial-grade managed Ethernet switches from the German company WAGO. Both devices have security vulnerabilities. These vulnerabilities stem from the use of hardcoded keys for AES-ECB encryption, which...

9.8CVSS5.9AI score0.00328EPSS
Exploits0References2
Packet Storm News
Packet Storm News
added 2026/02/01 12:0 a.m.7 views

Sleep Reveals the Nonce: Breaking ECDSA Using Sleep-Based Power Side-Channel Vulnerability

Security of Elliptic Curve Digital Signature Algorithm ECDSA depends on the secrecy of the per-signature nonce. Even partial nonce leakage can expose the long-term private key through lattice-based cryptanalysis. In this paper, we introduce a previously unexplored power side-channel vulnerability...

5.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.7 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004653)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004653 advisory. The fix for the Linux kernel in Ubuntu 18.04 LTS for CVE-2019-14615 The Linux kernel did not properly clear data structures on context switches for certain Intel...

5.5CVSS6.7AI score0.01447EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.6 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001132)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001132 advisory. The fix for the Linux kernel in Ubuntu 18.04 LTS for CVE-2019-14615 The Linux kernel did not properly clear data structures on context switches for certain Intel...

5.5CVSS6.7AI score0.01447EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2026/01/09 12:51 p.m.18 views

CVE-2014-4190

Multiple heap-based buffer overflows in Huawei Campus Series Switches S3700HI, S5700, S6700, S3300HI, S5300, S6300, S9300, S7700, and LSW S9700 with software V200R001 before V200R001SPH013; S5700, S6700, S5300, and S6300 with software V200R002 before V200R002SPH005; S7700, S9300, S9300E, S5300,...

7.8CVSS7.1AI score0.01497EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 11:36 a.m.13 views

CVE-2021-41003

Multiple unauthenticated command injection vulnerabilities were discovered in the AOS-CX API interface in Aruba CX 6200F Switch Series, Aruba 6300 Switch Series, Aruba 6400 Switch Series, Aruba 8320 Switch Series, Aruba 8325 Switch Series, Aruba 8400 Switch Series, Aruba CX 8360 Switch Series...

6.1CVSS8.1AI score0.00795EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:54 a.m.12 views

CVE-2022-23688

Multiple vulnerabilities exist in the processing of packet data by the LLDP service of AOS-CX. Successful exploitation of these vulnerabilities may allow an attacker to impact the availability of the AOS-CX LLDP service and/or the management plane of the switch in ArubaOS-CX Switches versions:...

4.3CVSS7.3AI score0.00298EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 8:42 a.m.13 views

CVE-2022-37932

A potential security vulnerability has been identified in Hewlett Packard Enterprise OfficeConnect 1820, 1850, and 1920S Network switches. The vulnerability could be remotely exploited to allow authentication bypass. HPE has made the following software updates to resolve the vulnerability in...

9.8CVSS7AI score0.02641EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:53 a.m.12 views

CVE-2013-6852

Cross-site request forgery CSRF vulnerability in html/json.html on HP 2620 switches allows remote attackers to hijack the authentication of administrators for requests that change an administrative password via the setPassword method...

6.8CVSS7.7AI score0.01507EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:28 a.m.11 views

CVE-2019-12495

An issue was discovered in Tiny C Compiler aka TinyCC or TCC 0.9.27. Compiling a crafted source file leads to a one-byte out-of-bounds write in the gsymaddr function in x8664-gen.c. This occurs because tccasm.c mishandles section switches...

5.5CVSS6.8AI score0.01218EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/12/10 12:0 a.m.4 views

WAGO Indsutrial-Managed-Switches 安全漏洞

WAGO Indsutrial-Managed-Switches is a series of high-performance network devices from WAGO, Germany. A security vulnerability exists in WAGO Indsutrial-Managed-Switches, which stems from an unsafe sscanf call in the checkcookie function, which could lead to full control of the device...

9.8CVSS6.7AI score0.00376EPSS
Exploits0References1
Rows per page
Query Builder