3917 matches found
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: Netwerk: Ethernet: xscale: Ensure proper check for PTP support. In the ixp4xxgettsinfo function, the ixp46xptpfind function is called unconditionally. This occurs because this feature only exists in ixp46x. This leads to the...
Exploit for OS Command Injection in Sierrawireless Aleos
CVE-2022-46649 PoC exploit for CVE-2022-46649, a command in...
net_exploit_detector
netexploitdetector.py Behavioral network exploit detector f...
CVE-2025-41761
A low‑privileged local attacker who gains access to the UBR service account e.g., via SSH can escalate privileges to obtain full system access. This is due to the service account being permitted to execute certain binaries e.g., tcpdump and ip with sudo...
EUVD-2025-208369
A low‑privileged local attacker who gains access to the UBR service account e.g., via SSH can escalate privileges to obtain full system access. This is due to the service account being permitted to execute certain binaries e.g., tcpdump and ip with sudo...
EUVD-2025-208368
A low‑privileged local attacker who gains access to the UBR service account e.g., via SSH can escalate privileges to obtain full system access. This is due to the service account being permitted to execute certain binaries e.g., tcpdump and ip with sudo...
CVE-2025-41761
A low‑privileged local attacker who gains access to the UBR service account e.g., via SSH can escalate privileges to obtain full system access. This is due to the service account being permitted to execute certain binaries e.g., tcpdump and ip with sudo...
CVE-2025-41761
A low‑privileged local attacker who gains access to the UBR service account e.g., via SSH can escalate privileges to obtain full system access. This is due to the service account being permitted to execute certain binaries e.g., tcpdump and ip with sudo...
CVE-2025-41761
CVE-2025-41761 describes a local privilege escalation where a low-privileged user who accesses the UBR service account (for example via SSH) can gain full system access. The root cause is the service account’s ability to run certain binaries (such as tcpdump and ip) with sudo, enabling elevated p...
CVE-2025-41761 Privilege escalation possible
A low‑privileged local attacker who gains access to the UBR service account e.g., via SSH can escalate privileges to obtain full system access. This is due to the service account being permitted to execute certain binaries e.g., tcpdump and ip with sudo...
CVE-2025-41761
A low‑privileged local attacker who gains access to the UBR service account e.g., via SSH can escalate privileges to obtain full system access. This is due to the service account being permitted to execute certain binaries e.g., tcpdump and ip with sudo...
CVE-2025-41761 Privilege escalation possible
A low‑privileged local attacker who gains access to the UBR service account e.g., via SSH can escalate privileges to obtain full system access. This is due to the service account being permitted to execute certain binaries e.g., tcpdump and ip with sudo...
PT-2026-24031
Name of the Vulnerable Software and Affected Versions UBR affected versions not specified Description A local attacker with limited privileges who gains access to the UBR service account, for example through SSH, can escalate their privileges to achieve full system access. This is possible becaus...
Advisory ROSA-SA-2026-3202
Software: tcpdump 4.9.3 OS: ROSA Virtualization 2.1 unaffected versions = tcpdump-4.9.3-5.rv3 affected versions tcpdump-4.9.3-5.rv3 CVE-ID: CVE-2021-41043 BDU-ID: 2025-16161 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the extractslice function of the network traffic analysis software tcpdump i...
Advisory ROSA-SA-2026-3184
Software: tcpdump 4.9.3 OS: ROSA Virtualization 3.0 unaffected versions = tcpdump-4.9.3-5.rv30 affected versions tcpdump-4.9.3-5.rv30 CVE-ID: CVE-2020-8037 BDU-ID: None CVE-Crit: HIGH CVE-DESC.: A vulnerability in the PPP decoder in tcpdump allows an attacker to cause a large memory allocation...
Advisory ROSA-SA-2026-3164
Software: tcpdump 4.9.3 OS: ROSA Virtualization 3.1 unaffected versions = tcpdump-4.9.3-5.rv31 affected versions tcpdump-4.9.3-5.rv31 CVE-ID: CVE-2020-8037 BDU-ID: None CVE-Crit: HIGH CVE-DESC.: A vulnerability in the PPP decoder in tcpdump allows an attacker to cause a large memory allocation...
MiracleLinux 8 : tcpdump-4.9.3-1.el8 (AXSA:2021-1229:01)
The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2021-1229:01 advisory. tcpdump: SMB data printing mishandled CVE-2018-10103 tcpdump: SMB data printing mishandled CVE-2018-10105 tcpdump: Out of bounds read/write in...
MiracleLinux 8 : tcpdump-4.9.3-3.el8_9.1.ML.1 (AXSA:2024-7514:01)
The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-7514:01 advisory. tcpslice: use-after-free in extractslice CVE-2021-41043 Tenable has extracted the preceding description block directly from the MiracleLinux security advisor...
MiracleLinux 8 : tcpdump-4.9.3-2.el8 (AXSA:2021-2659:02)
The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2021-2659:02 advisory. tcpdump: ppp decapsulator can be convinced to allocate a large amount of memory CVE-2020-8037 Tenable has extracted the preceding description block directly...
MiracleLinux 9 : tcpdump-4.99.0-9.el9 (AXSA:2024-8003:03)
The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-8003:03 advisory. tcpslice: use-after-free in extractslice CVE-2021-41043 Tenable has extracted the preceding description block directly from the MiracleLinux security advisor...