Lucene search
+L

499 matches found

cvelist
cvelist
added 2 days ago29 views

CVE-2026-56181 Windows Network Address Translation (NAT) Spoofing Vulnerability

...

8.3CVSS0.00242EPSS
Exploits0References1
cve
cve
added 2 days ago7 views

CVE-2026-56181

CVE-2026-56181 is a Windows Network Address Translation (NAT) spoofing vulnerability caused by an origin-validation error. It enables an adjacent-network attacker to impersonate a user on the NATed network, with high impact (code/privilege implications per report). Microsoft has released updates;...

8.3CVSS6.1AI score0.00242EPSS
Exploits0References1
redhat
redhat
added 2 days ago12 views

kernel: Linux kernel: netfilter: ebtables SNAT target writes to shared memory pages during ARP hardware address rewrite

A flaw was found in the Linux kernel's netfilter bridge ebtables SNAT Source Network Address Translation module. This vulnerability allows a local attacker on a system configured with specific bridge netfilter rules to improperly modify underlying memory pages during an ARP Address Resolution...

8.8CVSS6.1AI score0.00129EPSS
Exploits0References5
ptsecurity
ptsecurity
added 2 days ago5 views

PT-2026-58599

Name of the Vulnerable Software and Affected Versions Windows Network Address Translation NAT affected versions not specified Description An origin validation error allows an unauthorized attacker to perform spoofing over an adjacent network, which can affect the system. Recommendations At the...

8.3CVSS6.1AI score0.00242EPSS
Exploits0References5
redhat
redhat
added 2026/07/08 2:2 p.m.4 views

kernel: Linux kernel: netfilter: ebtables SNAT target writes to shared memory pages during ARP hardware address rewrite

A flaw was found in the Linux kernel's netfilter bridge ebtables SNAT Source Network Address Translation module. This vulnerability allows a local attacker on a system configured with specific bridge netfilter rules to improperly modify underlying memory pages during an ARP Address Resolution...

8.8CVSS5.9AI score0.00129EPSS
Exploits0References5
euvd
euvd
added 2026/06/26 11:0 p.m.14 views

EUVD-2026-36599

Nezha Monitoring: Authenticated users can claim the dashboard Host through NAT and preempt all dashboard routing...

6.5CVSS5.8AI score0.00282EPSS
Exploits0References2
osv
osv
added 2026/06/26 11:0 p.m.4 views

GHSA-X6FG-52VR-HJ4W Nezha Monitoring: Authenticated users can claim the dashboard Host through NAT and preempt all dashboard routing

Summary An authenticated non-admin user who owns any server can create or update a NAT profile whose domain is equal to the dashboard's own HTTP Host for example, dashboard.example:8008. The dashboard's top-level HTTP/gRPC multiplexer checks NATShared.GetNATConfigByDomainr.Host before dispatching...

6.5CVSS5.8AI score0.00282EPSS
Exploits0References3
susecve
susecve
added 2026/06/26 2:7 a.m.8 views

SUSE CVE-2026-53277

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Take the SRCU lock for page table walks in fault injection and AT emulation walks1 and kvmwalknesteds2 expect to be called while holding kvm-srcu to guard against memslot changes. While this is generally the case,...

8.8CVSS5.8AI score0.00114EPSS
Exploits0References3
redhatcve
redhatcve
added 2026/06/25 6:17 p.m.5 views

CVE-2026-53000

A flaw was found in the Linux kernel's netfilter component, specifically within the Network Address Translation NAT subsystem. This vulnerability involves improper memory management when releasing network filter operation structures. This could potentially allow an attacker to cause a system cras...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References4
osv
osv
added 2026/06/25 9:16 a.m.12 views

UBUNTU-CVE-2026-53277

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Take the SRCU lock for page table walks in fault injection and AT emulation walks1 and kvmwalknesteds2 expect to be called while holding kvm-srcu to guard against memslot changes. While this is generally the case,...

8.9CVSS5.7AI score0.00114EPSS
Exploits0References6
euvd
euvd
added 2026/06/25 8:40 a.m.10 views

EUVD-2026-39228

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Take the SRCU lock for page table walks in fault injection and AT emulation walks1 and kvmwalknesteds2 expect to be called while holding kvm-srcu to guard against memslot changes. While this is generally the case,...

5.7AI score0.00114EPSS
Exploits0References3
debiancve
debiancve
added 2026/06/25 8:40 a.m.8 views

CVE-2026-53277

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Take the SRCU lock for page table walks in fault injection and AT emulation walks1 and kvmwalknesteds2 expect to be called while holding kvm-srcu to guard against memslot changes. While this is generally the case,...

8.8CVSS5.6AI score0.00114EPSS
Exploits0
attackerkb
attackerkb
added 2026/06/25 8:40 a.m.7 views

CVE-2026-53277

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Take the SRCU lock for page table walks in fault injection and AT emulation walks1 and kvmwalknesteds2 expect to be called while holding kvm-srcu to guard against memslot changes. While this is generally the case,...

5.6AI score0.00114EPSS
Exploits0References4Affected Software1
cve
cve
added 2026/06/25 8:40 a.m.28 views

CVE-2026-53277

CVE-2026-53277 – Linux kernel (arm64 KVM) : A flaw where certain page-table walk operations (walk_s1 and kvm_walk_nested_s2) did not acquire the Sleepable RCU lock (SRCU) via kvm->srcu, risking memslot changes and potential instability during fault injection and Address Translation emulation. ...

8.8CVSS5.7AI score0.00114EPSS
Exploits0References6Affected Software1
osv
osv
added 2026/06/25 8:40 a.m.4 views

CVE-2026-53277 KVM: arm64: Take the SRCU lock for page table walks in fault injection and AT emulation

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Take the SRCU lock for page table walks in fault injection and AT emulation walks1 and kvmwalknesteds2 expect to be called while holding kvm-srcu to guard against memslot changes. While this is generally the case,...

8.8CVSS5.8AI score0.00114EPSS
Exploits0References9
osv
osv
added 2026/06/24 4:29 p.m.4 views

CVE-2026-53000 netfilter: nat: use kfree_rcu to release ops

In the Linux kernel, the following vulnerability has been resolved: netfilter: nat: use kfreercu to release ops Florian Westphal says: "Historically this is not an issue, even for normal base hooks: the data path doesn't use the original nfhookops that are used to register the callbacks. However,...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References9
astralinux
astralinux
added 2026/06/24 3:11 p.m.9 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Flush dev-IOTLB only when the PCIe device is accessible in scalable mode. The commit 4fc82cd907ac “iommu/vt-d: Do not issue ATS invalidation requests when the device is disconnected” relies on pcidevisdisconnected to...

5.5CVSS6AI score0.00123EPSS
Exploits0References2
nvd
nvd
added 2026/06/12 10:16 p.m.16 views

CVE-2026-53520

Nezha Monitoring is a self-hostable, lightweight, servers and websites monitoring and O&M tool. From version 2.0.14 to before version 2.1.0, authenticated users can claim the dashboard Host through NAT and preempt all dashboard routing. This issue has been patched in version 2.1.0...

6.5CVSS0.00282EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/12 9:3 p.m.11 views

CVE-2026-53520 Nezha Monitoring: Authenticated users can claim the dashboard Host through NAT and preempt all dashboard routing

Nezha Monitoring is a self-hostable, lightweight, servers and websites monitoring and O&M tool. From version 2.0.14 to before version 2.1.0, authenticated users can claim the dashboard Host through NAT and preempt all dashboard routing. This issue has been patched in version 2.1.0...

6.5CVSS5.2AI score0.00282EPSS
Exploits0References1
cvelist
cvelist
added 2026/06/12 9:3 p.m.34 views

CVE-2026-53520 Nezha Monitoring: Authenticated users can claim the dashboard Host through NAT and preempt all dashboard routing

Nezha Monitoring is a self-hostable, lightweight, servers and websites monitoring and O&M tool. From version 2.0.14 to before version 2.1.0, authenticated users can claim the dashboard Host through NAT and preempt all dashboard routing. This issue has been patched in version 2.1.0...

6.5CVSS0.00282EPSS
Exploits0References1
Rows per page
Query Builder