Lucene search
K

290 matches found

Cvelist
Cvelist
added 2026/03/26 10:22 a.m.26 views

CVE-2026-23398 icmp: fix NULL pointer dereference in icmp_tag_validation()

In the Linux kernel, the following vulnerability has been resolved: icmp: fix NULL pointer dereference in icmptagvalidation icmptagvalidation unconditionally dereferences the result of rcudereferenceinetprotosproto without checking for NULL. The inetprotos array is sparse -- only about 15 of 256...

0.00114EPSS
Exploits2References8
Debian CVE
Debian CVE
added 2026/03/26 10:22 a.m.8 views

CVE-2026-23398

In the Linux kernel, the following vulnerability has been resolved: icmp: fix NULL pointer dereference in icmptagvalidation icmptagvalidation unconditionally dereferences the result of rcudereferenceinetprotosproto without checking for NULL. The inetprotos array is sparse -- only about 15 of 256...

5.5CVSS5.2AI score0.00114EPSS
Exploits2
RedhatCVE
RedhatCVE
added 2026/03/25 3:13 p.m.4 views

CVE-2026-23381

A flaw was found in the Linux kernel's network bridging component. When Internet Protocol version 6 IPv6 is explicitly disabled, a critical data structure for Neighbor Discovery is not properly initialized. A remote attacker could exploit this by sending a specially crafted Internet Control Messa...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/03/18 12:0 a.m.8 views

PT-2026-26181

Name of the Vulnerable Software and Affected Versions libp2p-rust versions prior to 0.49.3 Description The libp2p-rust Gossipsub implementation is susceptible to a remote, unauthenticated denial-of-service condition. The implementation accepts attacker-controlled PRUNE backoff values and performs...

8.7CVSS5.8AI score0.00473EPSS
Exploits0References10
OSV
OSV
added 2026/02/03 8:15 p.m.3 views

UBUNTU-CVE-2025-62603

Fast DDS is a C++ implementation of the DDS Data Distribution Service standard of the OMG Object Management Group . ParticipantGenericMessage is the DDS Security control-message container that carries not only the handshake but also on going security-control traffic after the handshake, such as...

7.5CVSS5.8AI score0.00501EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/02/03 7:23 p.m.3 views

CVE-2025-62603

Fast DDS is a C++ implementation of the DDS Data Distribution Service standard of the OMG Object Management Group . ParticipantGenericMessage is the DDS Security control-message container that carries not only the handshake but also on going security-control traffic after the handshake, such as...

6.3CVSS5.5AI score0.00501EPSS
Exploits0References5Affected Software1
Positive Technologies
Positive Technologies
added 2026/02/03 12:0 a.m.12 views

PT-2026-46029

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the handling of RAW sockets using the IPPROTO RAW protocol. A malicious incoming ICMP packet can have its protocol field set to 255, allowing it to match a socket...

9.4CVSS5.8AI score0.00346EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.7 views

Azure Linux 3.0 Security Update: hyperv-daemons (CVE-2019-10638)

The version of hyperv-daemons installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2019-10638 advisory. - In the Linux kernel before 5.1.7, a device can be tracked by an attacker using the IP ID values the...

6.5CVSS7.4AI score0.02571EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/16 9:33 p.m.19 views

CVE-2026-21906

An Improper Handling of Exceptional Conditions vulnerability in the packet forwarding engine PFE of Juniper Networks Junos OS on SRX Series allows an unauthenticated network-based attacker sending a specific ICMP packet through a GRE tunnel to cause the PFE to crash and restart. When PowerMode...

8.7CVSS7AI score0.00497EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.8 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004315)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004315 advisory. A flaw in ICMP packets in the Linux kernel may allow an attacker to quickly scan open UDP ports. This flaw allows an off-path remote attacker to effectively bypass...

7.4CVSS7.2AI score0.06692EPSS
Exploits1References3
CVE
CVE
added 2026/01/15 8:20 p.m.50 views

CVE-2026-21906

CVE-2026-21906 overview (Junos OS SRX Series) A vulnerability in the packet forwarding engine (PFE) of Juniper Networks Junos OS on SRX Series can be triggered by a specific ICMP packet routed through a GRE tunnel when PowerMode IPsec (PMI) and GRE performance acceleration are enabled. An unauthe...

8.7CVSS6.7AI score0.00497EPSS
Exploits0References3Affected Software1
EUVD
EUVD
added 2026/01/15 8:17 p.m.4 views

EUVD-2026-2681

An Improper Handling of Exceptional Conditions vulnerability in packet processing of Juniper Networks Junos OS allows an unauthenticated, network-adjacent attacker sending a specifically malformed ICMP packet to cause an FPC to crash and restart, resulting in a Denial of Service DoS. When an ICMP...

7.1CVSS6.2AI score0.00249EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.2 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002327)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002327 advisory. The pingunhash function in net/ipv4/ping.c in the Linux kernel before 4.0.3 does not initialize a certain list data structure during an unhash operation, which allow...

4.9CVSS7.4AI score0.02472EPSS
Exploits6References31
RedhatCVE
RedhatCVE
added 2026/01/09 10:0 a.m.11 views

CVE-2020-7460

In FreeBSD 12.1-STABLE before r363918, 12.1-RELEASE before p8, 11.4-STABLE before r363919, 11.4-RELEASE before p2, and 11.3-RELEASE before p12, the sendmsg system call in the compat32 subsystem on 64-bit platforms has a time-of-check to time-of-use vulnerability allowing a mailcious userspace...

7CVSS6.7AI score0.00721EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/12/31 12:0 a.m.5 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-993200)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993200 advisory. In the Linux kernel, the following vulnerability has been resolved: mmc: vub300: fix return value check of mmcaddhost mmcaddhost may return error, if we ignore its...

5.5CVSS6.4AI score0.00149EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/12/30 10:41 p.m.26 views

CVE-2022-50695 SOUND4 IMPACT/FIRST/PULSE/Eco <=2.x ICMP Flood Attack via Network Commands

SOUND4 IMPACT/FIRST/PULSE/Eco versions 2.x contains a network vulnerability that allows unauthenticated attackers to send ICMP signals to arbitrary hosts through network command scripts. Attackers can abuse ping.php, traceroute.php, and dns.php to generate network flooding attacks targeting...

8.7CVSS0.0074EPSS
Exploits2References5
OSV
OSV
added 2025/12/08 2:15 a.m.3 views

DEBIAN-CVE-2023-53761

In the Linux kernel, the following vulnerability has been resolved: USB: usbtmc: Fix direction for 0-length ioctl control messages The syzbot fuzzer found a problem in the usbtmc driver: When a user submits an ioctl for a 0-length control transfer, the driver does not check that the direction is...

5.5AI score0.00167EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2025/12/08 1:19 a.m.3 views

CVE-2023-53761

In the Linux kernel, the following vulnerability has been resolved: USB: usbtmc: Fix direction for 0-length ioctl control messages The syzbot fuzzer found a problem in the usbtmc driver: When a user submits an ioctl for a 0-length control transfer, the driver does not check that the direction is...

5.5AI score0.00167EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2025/11/11 9:13 a.m.5 views

kernel: nfp: bpf: Add check for nfp_app_ctrl_msg_alloc()

In the Linux kernel, the following vulnerability has been resolved: nfp: bpf: Add check for nfpappctrlmsgalloc Add check for the return value of nfpappctrlmsgalloc in nfpbpfcmsgalloc to prevent null pointer dereference...

5.5CVSS6.8AI score0.0021EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/17 5:29 a.m.7 views

EUVD-2025-34870

In NetX Duo before 6.4.4, the networking support module for Eclipse Foundation ThreadX, there was a potential out of bound read issue in nxicmpv6validateoptions when handling a packet with ICMP6 options...

6.9CVSS6.3AI score0.00374EPSS
Exploits0References1
Rows per page
Query Builder