Lucene search
K

114 matches found

OSV
OSV
added 2025/06/10 5:17 p.m.8 views

GO-2025-3743 CoreDNS Vulnerable to DoQ Memory Exhaustion via Stream Amplification in github.com/coredns/coredns

CoreDNS Vulnerable to DoQ Memory Exhaustion via Stream Amplification in github.com/coredns/coredns...

7.5CVSS7.1AI score0.01132EPSS
Exploits0References5
OSV
OSV
added 2025/01/27 6:15 p.m.2 views

DEBIAN-CVE-2025-24356

fastd is a VPN daemon which tunnels IP packets and Ethernet frames over UDP. When receiving a data packet from an unknown IP address/port combination, fastd will assume that one of its connected peers has moved to a new address and initiate a reconnect by sending a handshake packet. This "fast...

7.5CVSS5.4AI score0.0065EPSS
Exploits0References1
CVE
CVE
added 2025/01/27 5:31 p.m.96 views

CVE-2025-24356

The CVE-2025-24356 affects the fastd VPN daemon. When fastd receives a data packet from an unknown IP/port, it may assume a peer moved and trigger a fast-reconnect handshake (~150 bytes of UDP payload), creating an amplification factor of about 12–13 for UDP traffic. This can be exploited by spoo...

7.5CVSS6.8AI score0.0065EPSS
Exploits0References8Affected Software1
OSV
OSV
added 2024/11/04 11:0 p.m.9 views

CVE-2024-51500 Failure to check for packets from the broadcast address allows potential DDoS amplification attack in Meshtastic firmware

Meshtastic firmware is a device firmware for the Meshtastic project. The Meshtastic firmware does not check for packets claiming to be from the special broadcast address 0xFFFFFFFF which could result in unexpected behavior and potential for DDoS attacks on the network. A malicious actor could cra...

5.3CVSS6.8AI score0.00401EPSS
Exploits0References3
OSV
OSV
added 2024/10/04 5:15 a.m.9 views

AZL-53837 CVE-2024-47850 affecting package cups for versions less than 1.28.17-3

CUPS cups-browsed before 2.5b1 will send an HTTP POST request to an arbitrary destination and port in response to a single IPP UDP packet requesting a printer to be added, a different vulnerability than CVE-2024-47176. The request is meant to probe the new printer but can be used to create DDoS...

7.5CVSS5.9AI score0.00859EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2024/10/02 6:21 p.m.8 views

cups-browsed: cups-filters: cups-browsed vulnerable to DDoS amplification attack

A flaw was found in cups-browsed. This vulnerability allows an attacker to launch DDoS amplification attacks via an HTTP POST request to an arbitrary destination and port in response to a single IPP UDP packet requesting a printer to be added...

7.5CVSS5.8AI score0.00859EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2024/10/02 12:0 p.m.15 views

cups-browsed: cups-filters: cups-browsed vulnerable to DDoS amplification attack

A flaw was found in cups-browsed. This vulnerability allows an attacker to launch DDoS amplification attacks via an HTTP POST request to an arbitrary destination and port in response to a single IPP UDP packet requesting a printer to be added...

7.5CVSS5.8AI score0.00859EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2024/10/02 11:38 a.m.5 views

cups-browsed: cups-filters: cups-browsed vulnerable to DDoS amplification attack

A flaw was found in cups-browsed. This vulnerability allows an attacker to launch DDoS amplification attacks via an HTTP POST request to an arbitrary destination and port in response to a single IPP UDP packet requesting a printer to be added...

7.5CVSS5.8AI score0.00859EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2024/10/02 12:0 a.m.21 views

Ubuntu: Security Advisory (USN-7047-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.2AI score0.02619EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2024/10/01 6:38 p.m.4 views

cups-browsed: cups-filters: cups-browsed vulnerable to DDoS amplification attack

A flaw was found in cups-browsed. This vulnerability allows an attacker to launch DDoS amplification attacks via an HTTP POST request to an arbitrary destination and port in response to a single IPP UDP packet requesting a printer to be added...

7.5CVSS5.8AI score0.00859EPSS
Exploits0References7
OSV
OSV
added 2024/10/01 6:53 a.m.3 views

USN-7047-1 knot-resolver vulnerabilities

Vladimír Čunát discovered that Knot Resolver incorrectly handled input during DNSSEC validation. A remote attacker could possibly use this issue to bypass certain validations. CVE-2019-10190 Vladimír Čunát discovered that Knot Resolver incorrectly handled input during DNSSEC validation. A remote...

7.5CVSS6.7AI score0.02619EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2024/10/01 12:0 a.m.20 views

Ubuntu 20.04 LTS : Knot Resolver vulnerabilities (USN-7047-1)

The remote Ubuntu 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7047-1 advisory. Vladimr unt discovered that Knot Resolver incorrectly handled input during DNSSEC validation. A remote attacker could possibly use this issue to bypass...

7.5CVSS7AI score0.02619EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2024/09/18 12:0 a.m.7 views

PT-2024-12164 · Unknown · Technitium

Name of the Vulnerable Software and Affected Versions: Technitium versions through 11.0.2 Description: An issue in the software enables attackers to launch amplification attacks, potentially causing denial-of-service DoS with an amplification factor three times higher than other software like BIN...

7.5CVSS7.2AI score0.00543EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/09/18 12:0 a.m.3 views

Technitium DNS Server 安全漏洞

Technitium DNS Server is an open source authoritative and recursive DNS server from the Technitium team. It can be used to self-host DNS servers for privacy and security. A security vulnerability exists in Technitium DNS Server version 11.0.2 and earlier, which stems from the ability of an attack...

7.5CVSS6.5AI score0.00543EPSS
Exploits0References3
Packet Storm
Packet Storm
added 2024/08/31 12:0 a.m.178 views

Memcached Stats Amplification Scanner

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Memcached Stats Amplification Scanner', 'Description' = %q This module can be used to discover Memcached servers which expose the unrestricted UD...

7.5CVSS7AI score0.8864EPSS
Exploits3
The Hacker News
The Hacker News
added 2024/06/11 2:32 p.m.28 views

Chinese Actor SecShow Conducts Massive DNS Probing on Global Scale

Cybersecurity researchers have shed more light on a Chinese actor codenamed SecShow that has been observed conducting Domain Name System DNS on a global scale since at least June 2023. The adversary, according to Infoblox security researchers Dr. Renée Burton and Dave Mitchell, operates from the...

9.8CVSS6.7AI score0.95326EPSS
Exploits1
The Hacker News
The Hacker News
added 2023/04/25 1:26 p.m.70 views

New SLP Vulnerability Could Let Attackers Launch 2200x Powerful DDoS Attacks

Details have emerged about a high-severity security vulnerability impacting Service Location Protocol SLP that could be weaponized to launch volumetric denial-of-service attacks against targets. "Attackers exploiting this vulnerability could leverage vulnerable instances to launch massive...

6.2AI score0.65873EPSS
Exploits1
CISA
CISA
added 2023/04/25 12:0 p.m.5 views

Abuse of the Service Location Protocol May Lead to DoS Attacks

The Service Location Protocol SLP, RFC 2608link is external allows an unauthenticated remote attacker to register arbitrary services. This could allow an attacker to use spoofed UDP traffic to conduct a denial-of-service DoS attack with a significant amplification factor. Researchers from Bitsigh...

7.5CVSS7.6AI score0.65873EPSS
Exploits1References7
SUSE CVE
SUSE CVE
added 2023/02/22 2:54 a.m.6 views

SUSE CVE-2023-26249

Knot Resolver before 5.6.0 enables attackers to consume its resources, launching amplification attacks and potentially causing a denial of service. Specifically, a single client query may lead to a hundred TCP connection attempts if a DNS server closes connections without providing a response...

7.5CVSS6.8AI score0.00708EPSS
Exploits0References3
OSV
OSV
added 2023/02/21 2:15 a.m.7 views

DEBIAN-CVE-2023-26249

Knot Resolver before 5.6.0 enables attackers to consume its resources, launching amplification attacks and potentially causing a denial of service. Specifically, a single client query may lead to a hundred TCP connection attempts if a DNS server closes connections without providing a response...

7.5CVSS7.3AI score0.00708EPSS
Exploits0References1
Rows per page
Query Builder