Lucene search
K

8 matches found

Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.21 views

RHEL 9 : openslp (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 9 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - openslp: Reflective denial of service amplification attack via UDP CVE-2023-29552 Note that Nessus has not tested f...

7.5CVSS8.1AI score0.65873EPSS
Exploits1References1
The Hacker News
The Hacker News
added 2023/11/09 5:33 a.m.98 views

CISA Alerts: High-Severity SLP Vulnerability Now Under Active Exploitation

The U.S. Cybersecurity and Infrastructure Security Agency CISA on Wednesday added a high-severity flaw in the Service Location Protocol SLP to its Known Exploited Vulnerabilities KEV catalog, citing evidence of active exploitation. Tracked as CVE-2023-29552 CVSS score: 7.5, the issue relates to a...

7.5CVSS7.5AI score0.65873EPSS
Exploits1
Broadcom
Broadcom
added 2023/05/19 12:0 a.m.42 views

CVE-2023-29552 - Abuse of the Service Location Protocol May Lead to DoS Attacks

The Service Location Protocol SLP, RFC 2608 allows an unauthenticated, remote attacker to register arbitrary services. This could allow the attacker to use spoofed UDP traffic to conduct a denial-of-service attack with a significant amplification factor. More at:...

7.5CVSS7.6AI score0.65873EPSS
Exploits1
F5 Networks
F5 Networks
added 2023/04/27 9:50 p.m.35 views

K000133692: OpenSLP vulnerability CVE-2023-29552

Security Advisory Description The Service Location Protocol SLP, RFC 2608 allows an unauthenticated, remote attacker to register arbitrary services. This could allow the attacker to use spoofed UDP traffic to conduct a denial-of-service attack with a significant amplification factor. CVE-2023-295...

7.5CVSS8AI score0.65873EPSS
Exploits1
Circl
Circl
added 2023/04/25 3:36 p.m.26 views

CVE-2023-29552

creationtimestamp| type| source ---|---|--- 2023-04-25 15:36:49+00:00| exploited| https://t.me/thehackernews/3282 2023-04-25 20:02:10+00:00| seen| Telegram/jNOQaSS6WIfk39XQXCw2qQeJoi2-3-FLwOGvgRF5EFSFfs 2023-04-25 20:24:58+00:00| seen| https://t.me/cibsecurity/62820 2023-04-26 08:38:19+00:00| see...

7.5CVSS7.1AI score0.65873EPSS
Exploits1References23
The Hacker News
The Hacker News
added 2023/04/25 1:26 p.m.70 views

New SLP Vulnerability Could Let Attackers Launch 2200x Powerful DDoS Attacks

Details have emerged about a high-severity security vulnerability impacting Service Location Protocol SLP that could be weaponized to launch volumetric denial-of-service attacks against targets. "Attackers exploiting this vulnerability could leverage vulnerable instances to launch massive...

6.2AI score0.65873EPSS
Exploits1
CVE
CVE
added 2023/04/25 12:0 a.m.440 views

CVE-2023-29552

CVE-2023-29552 describes a DoS vulnerability in the Service Location Protocol (SLP) where an unauthenticated remote attacker can register arbitrary services, causing SLP server to respond with spoofed traffic and enabling large amplification (reported up to ~2,200x). Documented impacts include po...

7.5CVSS7.4AI score0.65873EPSS
In wildExploits1References9Affected Software1
Vulnrichment
Vulnrichment
added 2023/04/25 12:0 a.m.11 views

CVE-2023-29552

The Service Location Protocol SLP, RFC 2608 allows an unauthenticated, remote attacker to register arbitrary services. This could allow the attacker to use spoofed UDP traffic to conduct a denial-of-service attack with a significant amplification factor...

7.6AI score0.65873EPSS
Exploits1References8
Rows per page
Query Builder