CVE-2026-43190

A flaw was found in the Linux kernel, specifically within the netfilter: xttcpmss module. A remote attacker could exploit this vulnerability by sending a specially crafted TCP packet. The TCP option parser does not properly validate the remaining option length, which results in an out-of-bounds...

CVE-2026-21918

A Double Free vulnerability in the flow processing daemon flowd of Juniper Networks Junos OS on SRX and MX Series allows an unauthenticated, network-based attacker to cause a Denial-of-Service DoS. On all SRX and MX Series platforms, when during TCP session establishment a specific sequence of...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003475)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003475 advisory. The tcpspliceread function in net/ipv4/tcp.c in the Linux kernel before 4.9.11 allows remote attackers to cause a denial of service infinite loop and soft lockup via...

EUVD-2025-106750

A vulnerability has been identified in LOGO! 12/24RCE 6ED1052-1MD08-0BA2 All versions, LOGO! 12/24RCEo 6ED1052-2MD08-0BA2 All versions, LOGO! 230RCE 6ED1052-1FB08-0BA2 All versions, LOGO! 230RCEo 6ED1052-2FB08-0BA2 All versions, LOGO! 24CE 6ED1052-1CC08-0BA2 All versions, LOGO! 24CEo...

PT-2025-39841

Name of the Vulnerable Software and Affected Versions SunOS Omnios version 5.11 Description An issue allows attackers to cause a Denial of Service DoS by repeatedly sending crafted TCP packets. Recommendations At the moment, there is no information about a newer version that contains a fix for th...

PT-2025-32559 · Undefined · Undefined

🔥CRITICAL: CVE-2025-02749 - RCE in iPerf on OpenSUSE Leap 15.6! Buffer overflow = Remote Code Execution risk. Patch URGENTLY to iperf-2.1.6-bp156.3.3.1. Exploitable via crafted TCP packets. Huge risk! Read more: 👉 https://t.co/SvwhnknSAu Security https://t.co/xU2mftPU9q...

The vulnerability of the Containerized Routing Protocol Daemon (cRPD) in Juniper Networks’ Junos OS and Junos OS Evolved operating systems allows a attacker to cause a service failure.

The vulnerability of the Containerized Routing Protocol Daemon cRPD in Juniper Networks’ Junos OS and Junos OS Evolved operating systems is related to insufficient handling of exceptional states. Exploiting this vulnerability allows a malicious actor to cause service failures by sending specially...

PT-2024-6324 · Juniper Networks · Junos

Name of the Vulnerable Software and Affected Versions: Junos OS versions prior to 21.2R3-S8 Junos OS versions from 21.4 before 21.4R3-S7 Junos OS versions from 22.1 before 22.1R3-S6 Junos OS versions from 22.2 before 22.2R3-S4 Junos OS versions from 22.3 before 22.3R3-S3 Junos OS versions from 22...

Linux kernel code issue vulnerability

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. Linux kernel suffers from a code issue vulnerability that stems from could allow an unauthenticated attacker to send crafted TCP packets, resulting in NULL pointer dereference...

PT-2023-22594 · 4D Server · 4D Server

Name of the Vulnerable Software and Affected Versions: 4D Server software versions v17 through v19 R7 Description: A broken authentication issue allows attackers to send crafted TCP packets containing requests to perform arbitrary actions. Recommendations: For versions v17 through v19 R7, update ...

SUSE CVE-2012-3412

The sfc aka Solarflare Solarstorm driver in the Linux kernel before 3.2.30 allows remote attackers to cause a denial of service DMA descriptor consumption and network-controller outage via crafted TCP packets that trigger a small MSS value...

SUSE CVE-2017-6214

The tcpspliceread function in net/ipv4/tcp.c in the Linux kernel before 4.9.11 allows remote attackers to cause a denial of service infinite loop and soft lockup via vectors involving a TCP packet with the URG flag...

Qualcomm 芯片代码问题漏洞

A Qualcomm chip is a chip from Qualcomm Incorporated USA. A way to miniaturize circuits mainly semiconductor devices, but also passive components, etc. and are often manufactured on the surface of semiconductor wafers. A security vulnerability exists in the Qualcomm Chip modem module that stems...

CVE-2022-31291

An issue in dltconfigfileparser.c of dlt-daemon v2.18.8 allows attackers to cause a double free via crafted TCP packets...

The vulnerability of Cisco Firepower Threat Defense’s microprogramming software, related to uncontrolled resource consumption, allows attackers to trigger service interruptions.

The vulnerability of Cisco Firepower Threat Defense’s microprogramming software is related to an uncontrolled consumption of resources. Exploiting this vulnerability could allow a malicious actor to cause service interruptions by sending a large number of TCP packets to a specific port...

The vulnerability of the traffic filtering component of the Cisco SD-WAN programmable network allows a hacker to bypass the filters at the L2 and L4 levels.

The vulnerability of the Cisco SD-WAN’s programmatically defined traffic filtering component exists due to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to bypass L2 and L4 filters using a specially crafted TCP packet...

Cisco NX-OS Software Cisco Fabric Services Component Input Validation Error Vulnerability

Cisco Nexus 3000 Series Switches are Cisco products.Cisco Nexus 3000 Series Switches is a 3000 series switch.Cisco Nexus 3500 Platform Switches is a 3500 series platform switch.Cisco MDS 9000 Series Multilayer Switches is a MDS 9000 series multilayer switch.Cisco NX-OS Software is a set of data...

kernel: TCP segments with random offsets allow a remote denial of service (SegmentSmack)

A flaw named SegmentSmack was found in the way the Linux kernel handled specially crafted TCP packets. A remote attacker could use this flaw to trigger time and calculation expensive calls to tcpcollapseofoqueue and tcppruneofoqueue functions by sending specially modified packets within ongoing T...

The vulnerability of the microprogramming software of Siemens Simatic S7-1200 programmable logic controllers allows a malicious actor to cause malfunctions during maintenance operations.

The software of the programmable logic controller Simatic S7-1200 contains a vulnerability that causes loss of access to the device during the processing of specific TCP/IP packets...

CSWorks LiveData Service vulnerable to denial-of-service (DoS)

Overview LiveData Service, a server component of CSWorks contains a denial-of-service DoS vulnerability. LiveData Service, a server component of CSWorks, contains an issue when processing TCP packets, which may lead to a denial-of-service DoS. Kuang-Chun Hung of Security Research and Service...