Lucene search
K

6 matches found

F5 Networks
F5 Networks
added 2025/02/28 7:47 p.m.29 views

K000150185: TCP/IP protocol vulnerabilities CVE-2024-7595, CVE-2024-7596, CVE-2025-23018, and CVE-2025-23019

Security Advisory Description CVE-2024-7595 GRE and GRE6 Protocols RFC2784 do not validate or verify the source of a network packet allowing an attacker to spoof and route arbitrary traffic via an exposed network interface that can lead to spoofing, access control bypass, and other unexpected...

6.5CVSS5.6AI score0.01552EPSS
Exploits0
NVD
NVD
added 2025/02/05 6:15 p.m.33 views

CVE-2024-7595

GRE and GRE6 Protocols RFC2784 do not validate or verify the source of a network packet allowing an attacker to spoof and route arbitrary traffic via an exposed network interface that can lead to spoofing, access control bypass, and other unexpected network behaviors. This can be considered simil...

6.5CVSS0.01552EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/02/05 5:36 p.m.30 views

CVE-2024-7595 GRE and GRE6 Protocols (RFC2784) do not validate or verify the source of a network packet

GRE and GRE6 Protocols RFC2784 do not validate or verify the source of a network packet allowing an attacker to spoof and route arbitrary traffic via an exposed network interface that can lead to spoofing, access control bypass, and other unexpected network behaviors. This can be considered simil...

0.01552EPSS
Exploits0References2
CVE
CVE
added 2025/02/05 5:36 p.m.102 views

CVE-2024-7595

CVE-2024-7595 is documented with concrete details in connected sources: Junos OS exposes a GRE/GRE6 vulnerability where the protocol stack does not verify the source of tunneled packets. The issue arises when GRE/GRE6 is configured without authentication or filtering, enabling a remote attacker t...

6.5CVSS6.5AI score0.01552EPSS
Exploits0References3Affected Software2
RedhatCVE
RedhatCVE
added 2025/01/16 2:26 p.m.46 views

CVE-2024-7595

An insecure configuration flaw was found in the GRE and GRE6 Protocols. When configured to not require authentication or filtering, this issue could allow a remote unauthenticated attacker to spoof packets or bypass access controls. Mitigation See references section for detailed guidance...

5.4CVSS7.1AI score0.01552EPSS
Exploits0References6
Circl
Circl
added 2025/01/15 7:52 a.m.12 views

CVE-2024-7595

creationtimestamp| type| source ---|---|--- 2025-01-15 07:52:57+00:00| seen| https://vulnerability.circl.lu/bundle/1589f952-6079-4a2c-b742-e8d947b50a39 2025-01-15 07:57:45+00:00| seen| https://social.circl.lu/users/circl/statuses/113831304477406737 2025-01-16 19:02:10+00:00|...

6.5CVSS5.8AI score0.01552EPSS
Exploits0References15
Rows per page
Query Builder