Lucene search
+L

235 matches found

ATTACKERKB
ATTACKERKB
added 2022/03/15 10:15 p.m.4 views

CVE-2022-27001

Arris TR3300 v1.0.13 were discovered to contain a command injection vulnerability in the dhcp function via the hostname parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request...

10CVSS6.1AI score0.03453EPSS
Exploits1References2
CISA KEV Catalog
CISA KEV Catalog
added 2022/03/03 12:0 a.m.28 views

Cisco IOS Software for Cisco Industrial Ethernet Switches PROFINET Denial-of-Service Vulnerability

A vulnerability in the implementation of the PROFINET Discovery and Configuration Protocol PN-DCP for Cisco IOS could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service...

7.8CVSS4.5AI score0.07128EPSS
In wildExploits0
CISA KEV Catalog
CISA KEV Catalog
added 2022/03/03 12:0 a.m.40 views

Cisco IOS and IOS XE Software DHCP Remote Code Execution Vulnerability

The Dynamic Host Configuration Protocol DHCP relay subsystem of Cisco IOS and Cisco IOS XE Software contains a vulnerability that could allow an unauthenticated, remote attacker to execute arbitrary code and gain full control of an affected system...

10CVSS3.4AI score0.13883EPSS
In wildExploits0
OSV
OSV
added 2021/11/09 12:15 p.m.4 views

CVE-2021-31881

A vulnerability has been identified in Capital Embedded AR Classic 431-422 All versions, Capital Embedded AR Classic R20-11 All versions V2303. When processing a DHCP OFFER message, the DHCP client application does not validate the length of the Vendor options, leading to Denial-of-Service...

7.5CVSS5.7AI score0.01477EPSS
Exploits0References6
OSV
OSV
added 2021/11/09 12:15 p.m.2 views

CVE-2021-31884

A vulnerability has been identified in APOGEE MBC PPC BACnet All versions, APOGEE MBC PPC P2 Ethernet All versions, APOGEE MEC PPC BACnet All versions, APOGEE MEC PPC P2 Ethernet All versions, APOGEE PXC Compact BACnet All versions = V2.3 and = V2.3 and = V2.3 and = V2.3 and = V2.3 and = V2.3 and...

9.8CVSS5.7AI score0.01451EPSS
Exploits0References3
OSV
OSV
added 2021/10/22 5:9 p.m.7 views

CLSA-2021-1634922551 Fixed CVE-2021-25217 in dhcp

CVE-2021-25217: avoid buffer overrun...

7.4CVSS7.2AI score0.06118EPSS
Exploits1References1
OSV
OSV
added 2021/10/19 7:15 p.m.4 views

CVE-2021-31352

An Information Exposure vulnerability in Juniper Networks SRC Series devices configured for NETCONF over SSH permits the negotiation of weak ciphers, which could allow a remote attacker to obtain sensitive information. A remote attacker with read and write access to network data could exploit thi...

5.3CVSS5.8AI score0.00808EPSS
Exploits1References1
CNNVD
CNNVD
added 2021/10/14 12:0 a.m.4 views

Juniper Networks SRX Series 加密问题漏洞

The Juniper Networks SRX Series is a set of SRX Series service gateway appliances from Juniper Networks, Inc. The Juniper Networks SRC Series suffers from a cryptographic issue vulnerability that stems from NETCONF over SSH allowing weak password negotiation. An attacker could exploit this...

5.3CVSS5.8AI score0.00808EPSS
Exploits1References3
BDU FSTEC
BDU FSTEC
added 2021/10/13 12:0 a.m.11 views

The vulnerability in the implementation of authentication, authorization, and accounting functions for Cisco IOS XE operating systems allows a perpetrator to bypass the authentication process and trigger a service failure.

The vulnerability of the implementation of authentication, authorization, and accounting functions in Cisco IOS XE operating systems is related to the use of an uninitialized pointer. Exploiting this vulnerability can allow a malicious actor to bypass authentication procedures and trigger service...

10CVSS8AI score0.01758EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2021/07/13 12:0 a.m.11 views

PT-2021-11518 · Siemens +1 · Development Evaluation Kits For Profinet Io Dk Standard Ethernet Controller +178

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned. Description: The issue allows an unauthenticated attacker to trigger a denial of service condition by sending a large amount of DCP reset packets to the device. Recommendations: At the moment,...

8.7CVSS7.3AI score0.01856EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2021/06/22 1:23 p.m.9 views

dhcp: stack-based buffer overflow when parsing statements with colon-separated hex digits in config or lease files in dhcpd and dhclient

A flaw was found in the Dynamic Host Configuration Protocol DHCP. There is a discrepancy between the code that handles encapsulated option information in leases transmitted "on the wire" and the code which reads and parses lease information after it has been written to disk storage. This flaw...

7.4CVSS6.1AI score0.06118EPSS
Exploits1References5
CNVD
CNVD
added 2021/06/22 12:0 a.m.12 views

Denial of Service Vulnerability in EKI-1521-CE Serial Port Server Private Configuration Protocol

The EKI-15121-CE is a serial device networking server that sends private configuration protocols to device ports. A denial of service vulnerability exists in EKI-1521-CE, which can be exploited by an attacker to launch a denial of service attack...

6.9AI score
Exploits0
Cent OS
Cent OS
added 2021/06/14 6:46 p.m.539 views

dhclient, dhcp security update

CentOS Errata and Security Advisory CESA-2021:2357 An update for dhcp is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

7.4CVSS7.5AI score0.06118EPSS
Exploits1References7
Microsoft CVE
Microsoft CVE
added 2021/06/10 7:0 a.m.6 views

A buffer overrun in lease file parsing code can be used to exploit a common vulnerability shared by dhcpd and dhclient

...

7.4CVSS7AI score0.06118EPSS
Exploits1
OpenVAS
OpenVAS
added 2021/06/06 12:0 a.m.9 views

Fedora: Security Advisory for dhcp (FEDORA-2021-8ca8263bde)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.4CVSS7.6AI score0.06118EPSS
Exploits1References2
Fedora
Fedora
added 2021/06/05 1:14 a.m.73 views

[SECURITY] Fedora 33 Update: dhcp-4.4.2-9.b1.fc33

DHCP Dynamic Host Configuration Protocol...

7.4CVSS0.8AI score0.06118EPSS
Exploits1
OpenVAS
OpenVAS
added 2021/06/03 12:0 a.m.17 views

Fedora: Security Advisory for dhcp (FEDORA-2021-08cdb4dc34)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.4CVSS7.6AI score0.06118EPSS
Exploits1References2
Fedora
Fedora
added 2021/06/02 12:57 a.m.36 views

[SECURITY] Fedora 34 Update: dhcp-4.4.2-11.b1.fc34

DHCP Dynamic Host Configuration Protocol...

3.3CVSS0.8AI score0.06118EPSS
Exploits1
CNNVD
CNNVD
added 2021/04/26 12:0 a.m.3 views

systemd 安全漏洞

systemd is a Linux-based system and service manager from the individual developer Lennart Poettering in Germany. The product is compatible with SysV and LSB startup scripts and provides a framework for representing dependencies between system services. A security vulnerability exists in systemd d...

6.1CVSS6.8AI score0.01399EPSS
Exploits1References18
Positive Technologies
Positive Technologies
added 2021/01/20 12:0 a.m.6 views

PT-2021-1897 · Cisco · Cisco Sd-Wan

Name of the Vulnerable Software and Affected Versions: Cisco SD-WAN products affected versions not specified Description: The issue is related to multiple vulnerabilities in Cisco SD-WAN products that could allow an unauthenticated, remote attacker to execute attacks against an affected device. O...

9.8CVSS9.5AI score0.02104EPSS
Exploits0References4
Rows per page
Query Builder