Lucene search
+L

24 matches found

OSV
OSV
added 2025/11/21 3:59 p.m.4 views

JLSEC-2025-212 An issue was discovered in Mbed TLS before 2.24.0

An issue was discovered in Mbed TLS before 2.24.0. The verification of X.509 certificates when matching the expected common name the cn argument of mbedtlsx509crtverify with the actual certificate name is mishandled: when the subjecAltName extension is present, the expected name is compared to an...

5.9CVSS6.7AI score0.00832EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-0142

Malware in sbrugna...

7.1CVSS6.5AI score0.01015EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2021-0144

Malware in sbrugna...

9.1CVSS6AI score0.0121EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2021-38598

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OpenStack Neutron before 16.4.1, 17.x before 17.1.3, and 18.0.0 allows hardware address impersonation when the linuxbridge driver with ebtables-nft is used on a...

9.1CVSS6.1AI score0.0121EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/12/02 12:0 a.m.6 views

Snap One OvrC 安全漏洞

Snap One OvrC is a free cloud-based remote management and monitoring platform from US-based Snap One. A security vulnerability exists in Snap One OvrC versions prior to 7.3 that stems from the use of a MAC address as an identifier to provide information upon request, which allows an attacker to...

8.7CVSS6.7AI score0.0048EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/12/12 6:6 p.m.29 views

CVE-2023-20275

A vulnerability in the AnyConnect SSL VPN feature of Cisco Adaptive Security Appliance ASA Software and Cisco Firepower Threat Defense FTD Software could allow an authenticated, remote attacker to send packets with another VPN user's source IP address. This vulnerability is due to improper...

4.1CVSS4.9AI score0.00412EPSS
Exploits0References1
OSV
OSV
added 2022/05/24 7:11 p.m.31 views

GHSA-HVM4-MC7M-22W4 OpenStack Neutron vulnerable to hardware address impersonation

OpenStack Neutron before 16.4.1, 17.x before 17.1.3, and 18.0.0 allows hardware address impersonation when the linuxbridge driver with ebtables-nft is used on a Netfilter-based platform. By sending carefully crafted packets, anyone in control of a server instance connected to the virtual switch c...

9.1CVSS9AI score0.0121EPSS
Exploits1References7
Github Security Blog
Github Security Blog
added 2022/05/24 7:11 p.m.34 views

OpenStack Neutron vulnerable to hardware address impersonation

OpenStack Neutron before 16.4.1, 17.x before 17.1.3, and 18.0.0 allows hardware address impersonation when the linuxbridge driver with ebtables-nft is used on a Netfilter-based platform. By sending carefully crafted packets, anyone in control of a server instance connected to the virtual switch c...

9.1CVSS6.9AI score0.0121EPSS
Exploits1References7Affected Software1
Tenable Nessus
Tenable Nessus
added 2021/10/11 12:0 a.m.34 views

Debian DSA-4983-1 : neutron - security update

The remote Debian 10 / 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-4983 advisory. Pavel Toporkov discovered a vulnerability in Neutron, the OpenStack virtual network service, which allowed a reconfiguration of dnsmasq via crafted...

9.1CVSS6.2AI score0.01815EPSS
Exploits2References11
OSV
OSV
added 2021/08/23 5:15 a.m.26 views

CVE-2021-38598

OpenStack Neutron before 16.4.1, 17.x before 17.1.3, and 18.0.0 allows hardware address impersonation when the linuxbridge driver with ebtables-nft is used on a Netfilter-based platform. By sending carefully crafted packets, anyone in control of a server instance connected to the virtual switch c...

9.1CVSS6.9AI score
Exploits0References1
OSV
OSV
added 2021/08/23 5:15 a.m.3 views

DEBIAN-CVE-2021-38598

OpenStack Neutron before 16.4.1, 17.x before 17.1.3, and 18.0.0 allows hardware address impersonation when the linuxbridge driver with ebtables-nft is used on a Netfilter-based platform. By sending carefully crafted packets, anyone in control of a server instance connected to the virtual switch c...

9.1CVSS6.2AI score0.0121EPSS
Exploits1References1
Prion
Prion
added 2021/08/23 5:15 a.m.26 views

Design/Logic Flaw

OpenStack Neutron before 16.4.1, 17.x before 17.1.3, and 18.0.0 allows hardware address impersonation when the linuxbridge driver with ebtables-nft is used on a Netfilter-based platform. By sending carefully crafted packets, anyone in control of a server instance connected to the virtual switch c...

5.8CVSS9AI score0.0121EPSS
Exploits1References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2021/08/23 5:15 a.m.3 views

CVE-2021-38598

OpenStack Neutron before 16.4.1, 17.x before 17.1.3, and 18.0.0 allows hardware address impersonation when the linuxbridge driver with ebtables-nft is used on a Netfilter-based platform. By sending carefully crafted packets, anyone in control of a server instance connected to the virtual switch c...

9.1CVSS6.6AI score0.0121EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2021/08/23 5:15 a.m.40 views

CVE-2021-38598

OpenStack Neutron before 16.4.1, 17.x before 17.1.3, and 18.0.0 allows hardware address impersonation when the linuxbridge driver with ebtables-nft is used on a Netfilter-based platform. By sending carefully crafted packets, anyone in control of a server instance connected to the virtual switch c...

9.1CVSS6.6AI score0.0121EPSS
Exploits1References4
OSV
OSV
added 2021/08/23 5:15 a.m.28 views

PYSEC-2021-360

OpenStack Neutron before 16.4.1, 17.x before 17.1.3, and 18.0.0 allows hardware address impersonation when the linuxbridge driver with ebtables-nft is used on a Netfilter-based platform. By sending carefully crafted packets, anyone in control of a server instance connected to the virtual switch c...

9.1CVSS4.1AI score0.0121EPSS
Exploits1References2
OSV
OSV
added 2021/08/23 5:15 a.m.4 views

UBUNTU-CVE-2021-38598

OpenStack Neutron before 16.4.1, 17.x before 17.1.3, and 18.0.0 allows hardware address impersonation when the linuxbridge driver with ebtables-nft is used on a Netfilter-based platform. By sending carefully crafted packets, anyone in control of a server instance connected to the virtual switch c...

9.1CVSS6.6AI score0.0121EPSS
Exploits1References5
CVE
CVE
added 2021/08/23 4:17 a.m.104 views

CVE-2021-38598

CVE-2021-38598 affects OpenStack Neutron: OpenStack Neutron before 16.4.1, 17.x before 17.1.3, and 18.0.0 allow hardware address impersonation when the linuxbridge driver with ebtables-nft is used on a Netfilter-based platform. An attacker controlling a server instance connected to the virtual sw...

9.1CVSS8.9AI score0.0121EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2021/08/23 4:17 a.m.30 views

CVE-2021-38598

OpenStack Neutron before 16.4.1, 17.x before 17.1.3, and 18.0.0 allows hardware address impersonation when the linuxbridge driver with ebtables-nft is used on a Netfilter-based platform. By sending carefully crafted packets, anyone in control of a server instance connected to the virtual switch c...

9.3AI score0.0121EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2021/08/23 4:17 a.m.38 views

CVE-2021-38598

OpenStack Neutron before 16.4.1, 17.x before 17.1.3, and 18.0.0 allows hardware address impersonation when the linuxbridge driver with ebtables-nft is used on a Netfilter-based platform. By sending carefully crafted packets, anyone in control of a server instance connected to the virtual switch c...

9.1CVSS9.2AI score0.0121EPSS
Exploits1
OSV
OSV
added 2021/08/23 2:15 a.m.5 views

DEBIAN-CVE-2020-36477

An issue was discovered in Mbed TLS before 2.24.0. The verification of X.509 certificates when matching the expected common name the cn argument of mbedtlsx509crtverify with the actual certificate name is mishandled: when the subjecAltName extension is present, the expected name is compared to an...

5.9CVSS5.9AI score0.00832EPSS
Exploits0References1
Rows per page
Query Builder