Lucene search
K

107 matches found

OSV
OSV
added 2023/10/05 7:15 p.m.3 views

DEBIAN-CVE-2023-42754

A NULL pointer dereference flaw was found in the Linux kernel ipv4 stack. The socket buffer skb was assumed to be associated with a device before calling ipoptionscompile, which is not always the case if the skb is re-routed by ipvs. This issue may allow a local user with CAPNETADMIN privileges t...

5.5CVSS6.4AI score0.00406EPSS
Exploits1References1
OSV
OSV
added 2023/09/20 9:15 p.m.5 views

CVE-2023-22024

In the Unbreakable Enterprise Kernel UEK, the RDS module in UEK has two setsockopt2 options, RDSCONNRESET and RDS6CONNRESET, that are not re-entrant. A malicious local user with CAPNETADMIN can use this to crash the kernel. CVSS 3.1 Base Score 5.5 Availability impacts. CVSS Vector:...

5.5CVSS7.1AI score0.00168EPSS
Exploits0References1
OSV
OSV
added 2023/07/21 9:15 p.m.4 views

UBUNTU-CVE-2023-3610

A use-after-free vulnerability in the Linux kernel's netfilter: nftables component can be exploited to achieve local privilege escalation. Flaw in the error handling of bound chains causes a use-after-free in the abort path of NFTMSGNEWRULE. The vulnerability requires CAPNETADMIN to be triggered...

7.8CVSS6.7AI score0.00259EPSS
Exploits0References13
OSV
OSV
added 2023/07/21 8:48 p.m.7 views

CVE-2023-3610 Use-after-free in Linux kernel's netfilter: nf_tables component

A use-after-free vulnerability in the Linux kernel's netfilter: nftables component can be exploited to achieve local privilege escalation. Flaw in the error handling of bound chains causes a use-after-free in the abort path of NFTMSGNEWRULE. The vulnerability requires CAPNETADMIN to be triggered...

7.8CVSS6.7AI score0.00259EPSS
Exploits0References8
Amazon
Amazon
added 2023/07/21 12:0 a.m.5 views

Important: kernel

Issue Overview: A use-after-free flaw was found in the Netfilter subsystem of the Linux kernel when processing named and anonymous sets in batch requests, which can lead to performing arbitrary reads and writes in kernel memory. This flaw allows a local user with CAPNETADMIN capability to crash o...

7.8CVSS6.3AI score0.02033EPSS
Exploits3
SUSE CVE
SUSE CVE
added 2023/07/07 2:18 a.m.8 views

SUSE CVE-2023-31248

Linux Kernel nftables Use-After-Free Local Privilege Escalation Vulnerability; nftchainlookupbyid failed to check whether a chain was active and CAPNETADMIN is in any user or network namespace...

7.8CVSS8.3AI score0.02033EPSS
Exploits0References45
SUSE CVE
SUSE CVE
added 2023/07/07 2:18 a.m.5 views

SUSE CVE-2023-35001

Linux Kernel nftables Out-Of-Bounds Read/Write Vulnerability; nftbyteorder poorly handled vm register contents when CAPNETADMIN is in any user or network namespace...

7.8CVSS7AI score0.01508EPSS
Exploits2References60
OSV
OSV
added 2023/07/05 7:15 p.m.7 views

DEBIAN-CVE-2023-31248

Linux Kernel nftables Use-After-Free Local Privilege Escalation Vulnerability; nftchainlookupbyid failed to check whether a chain was active and CAPNETADMIN is in any user or network namespace...

7.8CVSS6.5AI score0.02033EPSS
Exploits0References1
OSV
OSV
added 2023/07/05 12:0 a.m.1 views

UBUNTU-CVE-2023-31248

Linux Kernel nftables Use-After-Free Local Privilege Escalation Vulnerability; nftchainlookupbyid failed to check whether a chain was active and CAPNETADMIN is in any user or network namespace...

7.8CVSS6.7AI score0.02033EPSS
Exploits0References12
RedHat Linux
RedHat Linux
added 2023/05/30 3:10 p.m.6 views

kernel: netfilter: use-after-free in nf_tables when processing batch requests can lead to privilege escalation

A use-after-free vulnerability was found in the Netfilter subsystem of the Linux kernel when processing batch requests to update nftables configuration. This vulnerability can be abused to perform arbitrary reads and writes in kernel memory. A local user with CAPNETADMIN capability could use this...

7.8CVSS6.6AI score0.12966EPSS
Exploits7References6
OSV
OSV
added 2023/05/05 5:15 p.m.5 views

UBUNTU-CVE-2023-32269

An issue was discovered in the Linux kernel before 6.1.11. In net/netrom/afnetrom.c, there is a use-after-free because accept is also allowed for a successfully connected AFNETROM socket. However, in order for an attacker to exploit this, the system must have netrom routing configured or the...

6.7CVSS6.7AI score0.0027EPSS
Exploits0References25
SUSE CVE
SUSE CVE
added 2023/02/15 5:35 a.m.4 views

SUSE CVE-2013-4514

Multiple buffer overflows in drivers/staging/wlags49h2/wlpriv.c in the Linux kernel before 3.12 allow local users to cause a denial of service or possibly have unspecified other impact by leveraging the CAPNETADMIN capability and providing a long station-name string, related to the 1...

4.7CVSS6.9AI score0.00587EPSS
Exploits1References8
SUSE CVE
SUSE CVE
added 2023/02/15 5:35 a.m.5 views

SUSE CVE-2013-4588

Multiple stack-based buffer overflows in net/netfilter/ipvs/ipvsctl.c in the Linux kernel before 2.6.33, when CONFIGIPVS is used, allow local users to gain privileges by leveraging the CAPNETADMIN capability for 1 a getsockopt system call, related to the doipvsgetctl function, or 2 a setsockopt...

7CVSS6.8AI score0.00399EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 4:55 a.m.4 views

SUSE CVE-2016-9793

The socksetsockopt function in net/core/sock.c in the Linux kernel before 4.8.14 mishandles negative values of sksndbuf and skrcvbuf, which allows local users to cause a denial of service memory corruption and system crash or possibly have unspecified other impact by leveraging the CAPNETADMIN...

7.8CVSS8AI score0.01566EPSS
Exploits8References15
OSV
OSV
added 2022/06/06 12:0 a.m.6 views

UBUNTU-CVE-2022-1974

A use-after-free flaw was found in the Linux kernel's NFC core functionality due to a race condition between kobject creation and delete. This vulnerability allows a local attacker with CAPNETADMIN privilege to leak kernel information...

4.1CVSS6.6AI score0.00142EPSS
Exploits0References13
Microsoft CVE
Microsoft CVE
added 2021/10/13 7:0 a.m.10 views

The decode_data function in drivers/net/hamradio/6pack.c in the Linux kernel before 5.13.13 has a slab out-of-bounds write. Input from a process that has the CAP_NET_ADMIN capability can lead to root access.

...

7.8CVSS7AI score0.01476EPSS
Exploits3
OSV
OSV
added 2019/08/13 2:15 p.m.8 views

CVE-2017-18509

An issue was discovered in net/ipv6/ip6mr.c in the Linux kernel before 4.11. By setting a specific socket option, an attacker can control a pointer in kernel land and cause an inetcsklistenstop general protection fault, or potentially execute arbitrary code under certain circumstances. The issue...

7.8CVSS8.8AI score
Exploits0References13
RedHat Linux
RedHat Linux
added 2018/04/10 9:1 a.m.8 views

kernel: Missing namespace check in net/netlink/af_netlink.c allows for network monitors to observe systemwide activity

The netlinkdelivertapskb function in net/netlink/afnetlink.c in the Linux kernel, through 4.14.4, does not restrict observations of Netlink messages to a single net namespace, when CONFIGNLMON is enabled. This allows local users to obtain sensitive information by leveraging the CAPNETADMIN...

4.7CVSS6.6AI score0.00436EPSS
Exploits0References4
OSV
OSV
added 2018/03/02 8:29 a.m.1 views

DEBIAN-CVE-2018-1065

The netfilter subsystem in the Linux kernel through 4.15.7 mishandles the case of a rule blob that contains a jump but lacks a user-defined chain, which allows local users to cause a denial of service NULL pointer dereference by leveraging the CAPNETRAW or CAPNETADMIN capability, related to...

4.7CVSS7AI score0.00423EPSS
Exploits0References1
OSV
OSV
added 2017/09/21 3:29 p.m.3 views

DEBIAN-CVE-2017-12153

A security flaw was discovered in the nl80211setrekeydata function in net/wireless/nl80211.c in the Linux kernel through 4.13.3. This function does not check whether the required attributes are present in a Netlink request. This request can be issued by a user with the CAPNETADMIN capability and...

4.4CVSS7.3AI score0.00474EPSS
Exploits0References1
Rows per page
Query Builder