Lucene search
K

584 matches found

Metasploit
Metasploit
added 2026/04/02 7:2 p.m.156 views

HTTP Fetch, Windows Upload/Execute, Reverse UDP Stager with UUID Support

Fetch and execute an x86 payload from an HTTP server. Uploads an executable and runs it staged. Connect back to the attacker with UUID Support Module Options msf use payload/cmd/windows/http/x86/upexec/reverseudp msf payloadreverseudp show actions ...actions... msf payloadreverseudp set ACTION ms...

6AI score
Exploits0
EUVD
EUVD
added 2026/04/01 3:31 p.m.3 views

EUVD-2026-17881

A flaw was found in Corosync. An integer overflow vulnerability in Corosync's join message sanity validation allows a remote, unauthenticated attacker to send crafted User Datagram Protocol UDP packets. This can cause the service to crash, leading to a denial of service. This vulnerability...

7.5CVSS5.9AI score0.00994EPSS
Exploits1References4
NVD
NVD
added 2026/04/01 2:16 p.m.4 views

CVE-2026-35091

A flaw was found in Corosync. A remote unauthenticated attacker can exploit a wrong return value vulnerability in the Corosync membership commit token sanity check by sending a specially crafted User Datagram Protocol UDP packet. This can lead to an out-of-bounds read, causing a denial of service...

8.2CVSS0.00867EPSS
Exploits1References17
OSV
OSV
added 2026/04/01 2:16 p.m.2 views

DEBIAN-CVE-2026-35091

A flaw was found in Corosync. A remote unauthenticated attacker can exploit a wrong return value vulnerability in the Corosync membership commit token sanity check by sending a specially crafted User Datagram Protocol UDP packet. This can lead to an out-of-bounds read, causing a denial of service...

8.2CVSS5.8AI score0.00867EPSS
Exploits1References1
OSV
OSV
added 2026/04/01 2:16 p.m.3 views

DEBIAN-CVE-2026-35092

A flaw was found in Corosync. An integer overflow vulnerability in Corosync's join message sanity validation allows a remote, unauthenticated attacker to send crafted User Datagram Protocol UDP packets. This can cause the service to crash, leading to a denial of service. This vulnerability...

7.5CVSS5.3AI score0.00994EPSS
Exploits1References1
OSV
OSV
added 2026/04/01 2:16 p.m.4 views

UBUNTU-CVE-2026-35091

A flaw was found in Corosync. A remote unauthenticated attacker can exploit a wrong return value vulnerability in the Corosync membership commit token sanity check by sending a specially crafted User Datagram Protocol UDP packet. This can lead to an out-of-bounds read, causing a denial of service...

8.2CVSS5.8AI score0.00867EPSS
Exploits1References3
Debian CVE
Debian CVE
added 2026/04/01 1:18 p.m.7 views

CVE-2026-35092

A flaw was found in Corosync. An integer overflow vulnerability in Corosync's join message sanity validation allows a remote, unauthenticated attacker to send crafted User Datagram Protocol UDP packets. This can cause the service to crash, leading to a denial of service. This vulnerability...

7.5CVSS5.3AI score0.00994EPSS
Exploits1
CVE
CVE
added 2026/04/01 1:18 p.m.51 views

CVE-2026-35092

Corosync: A vulnerability in the join message sanity validation causes an integer overflow when using totemudp/totemudpu mode. Remote, unauthenticated attackers can send crafted UDP packets to crash the service, resulting in an availability impact (DoS). No remediation details are provided in the...

7.5CVSS5.9AI score0.00994EPSS
Exploits1References17Affected Software3
Vulnrichment
Vulnrichment
added 2026/04/01 1:18 p.m.3 views

CVE-2026-35091 Corosync: corosync: denial of service and information disclosure via crafted udp packet

A flaw was found in Corosync. A remote unauthenticated attacker can exploit a wrong return value vulnerability in the Corosync membership commit token sanity check by sending a specially crafted User Datagram Protocol UDP packet. This can lead to an out-of-bounds read, causing a denial of service...

8.2CVSS5.8AI score0.00867EPSS
Exploits1References17
Cvelist
Cvelist
added 2026/04/01 1:18 p.m.51 views

CVE-2026-35091 Corosync: corosync: denial of service and information disclosure via crafted udp packet

A flaw was found in Corosync. A remote unauthenticated attacker can exploit a wrong return value vulnerability in the Corosync membership commit token sanity check by sending a specially crafted User Datagram Protocol UDP packet. This can lead to an out-of-bounds read, causing a denial of service...

8.2CVSS0.00867EPSS
Exploits1References17
ATTACKERKB
ATTACKERKB
added 2026/04/01 1:18 p.m.2 views

CVE-2026-35091

A flaw was found in Corosync. A remote unauthenticated attacker can exploit a wrong return value vulnerability in the Corosync membership commit token sanity check by sending a specially crafted User Datagram Protocol UDP packet. This can lead to an out-of-bounds read, causing a denial of service...

8.2CVSS5.8AI score0.00867EPSS
Exploits1References18
Debian CVE
Debian CVE
added 2026/04/01 1:18 p.m.5 views

CVE-2026-35091

A flaw was found in Corosync. A remote unauthenticated attacker can exploit a wrong return value vulnerability in the Corosync membership commit token sanity check by sending a specially crafted User Datagram Protocol UDP packet. This can lead to an out-of-bounds read, causing a denial of service...

8.2CVSS5.8AI score0.00867EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2026/04/01 12:0 a.m.6 views

PT-2026-29517

Name of the Vulnerable Software and Affected Versions Corosync affected versions not specified Description A flaw exists in Corosync where an integer overflow in the join message sanity validation can be triggered by sending crafted User Datagram Protocol UDP packets. This allows a remote,...

8.2CVSS5.8AI score0.00994EPSS
Exploits2References67
Tenable Nessus
Tenable Nessus
added 2026/03/28 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-23331

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - udp: Unhash auto-bound connected sk from 4-tuple hash table when disconnected. Let's say we bind an UDP socket to the wildcard address with a non-zero port,...

5.5CVSS6.2AI score0.00121EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/03/25 5:20 p.m.7 views

CVE-2026-23331

A flaw was found in the Linux kernel's handling of User Datagram Protocol UDP sockets. When an auto-bound UDP socket is connected and subsequently disconnected, it may not be properly unhashed from the 4-tuple hash table. This oversight can lead to the accumulation of stale entries, potentially...

3.3CVSS5.7AI score0.00121EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/03/25 4:56 p.m.9 views

SUSE CVE-2026-23302

In the Linux kernel, the following vulnerability has been resolved: net: annotate data-races around sk-skdataready,writespace skmsg and probably other layers are changing these pointers while other cpus might read them concurrently. Add corresponding READONCE/WRITEONCE annotations for UDP, TCP an...

4.7CVSS5.7AI score0.00089EPSS
Exploits0References3
EUVD
EUVD
added 2026/03/25 12:30 p.m.5 views

EUVD-2026-15238

In the Linux kernel, the following vulnerability has been resolved: net: annotate data-races around sk-skdataready,writespace skmsg and probably other layers are changing these pointers while other cpus might read them concurrently. Add corresponding READONCE/WRITEONCE annotations for UDP, TCP an...

5.7AI score0.00089EPSS
Exploits0References4
NVD
NVD
added 2026/03/25 11:16 a.m.4 views

CVE-2026-23331

In the Linux kernel, the following vulnerability has been resolved: udp: Unhash auto-bound connected sk from 4-tuple hash table when disconnected. Let's say we bind an UDP socket to the wildcard address with a non-zero port, connect it to an address, and disconnect it from the address. bind sets...

5.5CVSS0.00121EPSS
Exploits0References3
NVD
NVD
added 2026/03/25 11:16 a.m.3 views

CVE-2026-23302

In the Linux kernel, the following vulnerability has been resolved: net: annotate data-races around sk-skdataready,writespace skmsg and probably other layers are changing these pointers while other cpus might read them concurrently. Add corresponding READONCE/WRITEONCE annotations for UDP, TCP an...

4.7CVSS0.00089EPSS
Exploits0References6
OSV
OSV
added 2026/03/25 11:16 a.m.5 views

UBUNTU-CVE-2026-23302

In the Linux kernel, the following vulnerability has been resolved: net: annotate data-races around sk-skdataready,writespace skmsg and probably other layers are changing these pointers while other cpus might read them concurrently. Add corresponding READONCE/WRITEONCE annotations for UDP, TCP an...

4.7CVSS5.7AI score0.00089EPSS
Exploits0References6
Rows per page
Query Builder