Lucene search
+L

3463 matches found

Vulnrichment
Vulnrichment
added 2018/04/19 8:0 p.m.8 views

CVE-2018-0241

A vulnerability in the UDP broadcast forwarding function of Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition on the affected device. The vulnerability is due to improper handling of UDP broadcast packets that are forwarded to an IP...

7.2AI score0.00856EPSS
Exploits0References3
Cisco
Cisco
added 2018/04/18 4:0 p.m.77 views

Cisco IOS XR Software UDP Broadcast Forwarding Denial of Service Vulnerability

A vulnerability in the UDP broadcast forwarding function of Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition on the affected device. The vulnerability is due to improper handling of UDP broadcast packets that are forwarded to an IP...

7.4CVSS1.9AI score0.00856EPSS
Exploits0References1
NVD
NVD
added 2018/04/05 4:29 p.m.23 views

CVE-2018-3624

Buffer overflow in ETWS processing module Intel XMM71xx, XMM72xx, XMM73xx, XMM74xx and Sofia 3G/R allows remote attacker to potentially execute arbitrary code via an adjacent network...

8.3CVSS8.7AI score0.0134EPSS
Exploits0References3
Prion
Prion
added 2018/04/05 4:29 p.m.16 views

Buffer overflow

Buffer overflow in ETWS processing module Intel XMM71xx, XMM72xx, XMM73xx, XMM74xx and Sofia 3G/R allows remote attacker to potentially execute arbitrary code via an adjacent network...

5.4CVSS8.7AI score0.0134EPSS
Exploits0References3
Cvelist
Cvelist
added 2018/04/05 4:0 p.m.22 views

CVE-2018-3624

Buffer overflow in ETWS processing module Intel XMM71xx, XMM72xx, XMM73xx, XMM74xx and Sofia 3G/R allows remote attacker to potentially execute arbitrary code via an adjacent network...

8.6AI score0.0134EPSS
Exploits0References3
Prion
Prion
added 2018/03/28 10:29 p.m.19 views

Buffer overflow

Multiple Buffer Overflow vulnerabilities in the Link Layer Discovery Protocol LLDP subsystem of Cisco IOS Software, Cisco IOS XE Software, and Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition or execute arbitrary code with elevated...

8.3CVSS9.5AI score0.03421EPSS
Exploits0References6Affected Software3
Prion
Prion
added 2018/03/28 10:29 p.m.28 views

Format string

Format String vulnerability in the Link Layer Discovery Protocol LLDP subsystem of Cisco IOS Software, Cisco IOS XE Software, and Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition or execute arbitrary code with elevated privileges o...

7.9CVSS9AI score0.03547EPSS
Exploits0References6Affected Software3
ATTACKERKB
ATTACKERKB
added 2018/03/28 12:0 a.m.34 views

CVE-2018-0175

Format String vulnerability in the Link Layer Discovery Protocol LLDP subsystem of Cisco IOS Software, Cisco IOS XE Software, and Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition or execute arbitrary code with elevated privileges o...

8CVSS4.6AI score0.03547EPSS
In wildExploits0References7
Positive Technologies
Positive Technologies
added 2018/03/28 12:0 a.m.3 views

PT-2018-3801 · Cisco · Cisco Ios Xr +2

Name of the Vulnerable Software and Affected Versions: Cisco IOS, Cisco IOS XE, and Cisco IOS XR Software affected versions not specified Description: The issue is related to multiple buffer overflow vulnerabilities in the Link Layer Discovery Protocol LLDP subsystem of the affected software. An...

8.8CVSS9.4AI score0.03421EPSS
Exploits0References12
Lenovo
Lenovo
added 2018/03/21 9:29 p.m.12 views

Brocade Fabric OS Vulnerabilities - Lenovo Support US

No description provided...

6.4AI score
Exploits0
ICS
ICS
added 2018/03/20 12:0 a.m.77 views

Siemens SIMATIC, SINUMERIK, and PROFINET IO (Update D)

As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories CERT Services | Services |...

6.5CVSS6.7AI score0.00547EPSS
Exploits0References12
CVE
CVE
added 2018/03/02 1:0 a.m.105 views

CVE-2018-1170

The CVE-2018-1170 issue affects the Volkswagen Customer-Link App (v1.30) and HTC Customer-Link Bridge. The root cause is a failure to implement proper protection against unauthorized firmware updates, allowing adjacent attackers to inject arbitrary CAN messages on vulnerable installations. The vu...

8.8CVSS8.5AI score0.00787EPSS
Exploits0References1Affected Software2
Packet Storm
Packet Storm
added 2018/03/01 12:0 a.m.92 views

HPE System Management 7.6.0.11 Cross Site Scripting

Product: HPE System Management Homepage Versions: 7.6.0.11 and minor versions Vulnerability: JavaScript Injection in file gsearch.php, parameter prod OWASP TOP 10: A1 Injection Type: Javascript Injection Impact: Allows an attacker to perform an XSS Cross-Site Scripting attack, execute arbitrary...

3.5CVSS5.8AI score0.04601EPSS
Exploits2
Prion
Prion
added 2018/01/18 6:29 a.m.22 views

Race condition

A vulnerability in the Pong tool of Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a reload of an affected device, resulting in a denial of service DoS condition. The vulnerability exists because the affected software attempts to free the same area of memory twice...

6.1CVSS7.4AI score0.00793EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2017/12/26 4:29 a.m.27 views

CVE-2017-12736

After initial configuration, the Ruggedcom Discovery Protocol RCDP is still able to write to the device under certain conditions. This could allow an attacker located in the adjacent network of the targeted device to perform unauthorized administrative actions...

8.8CVSS8.5AI score0.00999EPSS
Exploits0References5
OSV
OSV
added 2017/12/26 4:29 a.m.5 views

CVE-2017-12736

After initial configuration, the Ruggedcom Discovery Protocol RCDP is still able to write to the device under certain conditions. This could allow an attacker located in the adjacent network of the targeted device to perform unauthorized administrative actions...

8.8CVSS5.8AI score0.00999EPSS
Exploits0References5
Cvelist
Cvelist
added 2017/12/21 5:0 p.m.24 views

CVE-2017-6134

In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM and WebSafe software version 13.0.0, 12.1.0 - 12.1.2 and 11.5.1 - 11.6.1, an undisclosed sequence of packets, sourced from an adjacent network may cause TMM to crash...

6.5AI score0.00866EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2017/11/09 12:0 a.m.27 views

Cisco APIC-EM 1.x < 1.5 Unauthorized Access (credentialed check)

According to its self-reported version number, the Cisco Application Policy Infrastructure Controller Enterprise Module APIC-EM application running on the remote host is 1.x prior to 1.5. It is, therefore, affected by a vulnerability within the firewall configuration of the Cisco Application Poli...

8.8CVSS8.1AI score0.00781EPSS
Exploits0References2
NVD
NVD
added 2017/11/02 4:29 p.m.17 views

CVE-2017-12283

A vulnerability in the handling of 802.11w Protected Management Frames PAF by Cisco Aironet 3800 Series Access Points could allow an unauthenticated, adjacent attacker to terminate a valid user connection to an affected device, aka Denial of Service. The vulnerability exists because the affected...

6.1CVSS6.2AI score0.00569EPSS
Exploits0References3
Prion
Prion
added 2017/11/02 4:29 p.m.15 views

Race condition

A vulnerability in the packet processing code of Cisco IOS Software for Cisco Aironet Access Points could allow an unauthenticated, adjacent attacker to retrieve content from memory on an affected device, which could lead to the disclosure of confidential information. The vulnerability is due to...

3.3CVSS4.7AI score0.00608EPSS
Exploits0References3
Rows per page
Query Builder