Lucene search
K

410 matches found

Veracode
Veracode
added 2026/04/14 7:49 a.m.8 views

Authentication Bypass

github.com/kgateway-dev/kgateway is vulnerable to Authentication Bypass. The vulnerability is due to lack of authentication on the xDS port, which allows an attacker with network access to retrieve sensitive configuration data such as certificates, backend services, routing rules, and cluster...

5.3CVSS5.8AI score0.00154EPSS
Exploits0References7Affected Software1
RedhatCVE
RedhatCVE
added 2026/03/26 3:6 p.m.4 views

CVE-2026-26310

Envoy is a high-performance edge/middle/service proxy. Prior to 1.37.1, 1.36.5, 1.35.8, and 1.34.13, calling Utility::getAddressWithPort with a scoped IPv6 addresses causes a crash. This utility is called in the data plane from the originalsrc filter and the dns filter. This vulnerability is fixe...

7.5CVSS5.8AI score0.00388EPSS
Exploits1References1
Microsoft CVE
Microsoft CVE
added 2026/03/26 8:7 a.m.4 views

xdp: produce a warning when calculated tailroom is negative

...

7.8CVSS5.8AI score0.00129EPSS
Exploits0
F5 Networks
F5 Networks
added 2026/03/24 1:15 p.m.11 views

K000160367: NGINX ngx_mail_smtp_module vulnerability CVE-2026-28753

Security Advisory Description NGINX Plus and NGINX Open Source have a vulnerability in the ngxmailsmtpmodule module due to the improper handling of CRLF sequences in DNS responses. This allows an attacker-controlled DNS server to inject arbitrary headers into SMTP upstream requests, leading to...

6.3CVSS5.8AI score0.00264EPSS
Exploits0Affected Software2
OSV
OSV
added 2026/03/10 7:8 p.m.9 views

CVE-2026-26310 Crash for scoped ip address in Envoy during DNS

Envoy is a high-performance edge/middle/service proxy. Prior to 1.37.1, 1.36.5, 1.35.8, and 1.34.13, calling Utility::getAddressWithPort with a scoped IPv6 addresses causes a crash. This utility is called in the data plane from the originalsrc filter and the dns filter. This vulnerability is fixe...

5.9CVSS5.8AI score0.00388EPSS
Exploits1References3
EUVD
EUVD
added 2026/03/10 7:8 p.m.6 views

EUVD-2026-10803

Envoy is a high-performance edge/middle/service proxy. Prior to 1.37.1, 1.36.5, 1.35.8, and 1.34.13, calling Utility::getAddressWithPort with a scoped IPv6 addresses causes a crash. This utility is called in the data plane from the originalsrc filter and the dns filter. This vulnerability is fixe...

5.9CVSS5.8AI score0.00388EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/03/10 7:8 p.m.26 views

CVE-2026-26310 Crash for scoped ip address in Envoy during DNS

Envoy is a high-performance edge/middle/service proxy. Prior to 1.37.1, 1.36.5, 1.35.8, and 1.34.13, calling Utility::getAddressWithPort with a scoped IPv6 addresses causes a crash. This utility is called in the data plane from the originalsrc filter and the dns filter. This vulnerability is fixe...

5.9CVSS0.00388EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2026/02/09 12:0 a.m.4 views

SUSE: Security Advisory (SUSE-SU-2026:20218-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS5.5AI score0.00276EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/02/06 12:0 a.m.4 views

SUSE SLES16 Security Update : dpdk (SUSE-SU-2026:20218-1)

The remote SUSE Linux SLES16 / SLESSAP16 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2026:20218-1 advisory. Update to version 24.11.4. Security issues fixed: - CVE-2025-23259: issue in the Poll Mode Driver PMD allows an attacker on a VM in the...

6.5CVSS5.6AI score0.00276EPSS
Exploits0References5
OSV
OSV
added 2026/02/02 11:12 a.m.4 views

OPENSUSE-SU-2026:20148-1 Security update for dpdk

This update for dpdk fixes the following issues: Update to version 24.11.4. Security issues fixed: - CVE-2025-23259: issue in the Poll Mode Driver PMD allows an attacker on a VM in the system to leak information and cause a denial of service on the network interface bsc1254161. Other issues fixed...

6.5CVSS5.8AI score0.00276EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 7 : dpdk-18.11.8-2.el7 (AXSA:2023-4760:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-4760:01 advisory. dpdk: DoS when a Vhost header crosses more than two descriptors and exhausts all mbufs CVE-2022-2132 Tenable has extracted the preceding description block...

8.6CVSS5.6AI score0.01772EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 7 : dpdk-18.11.8-1.el7 (AXSA:2020-184:02)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-184:02 advisory. dpdk: librtevhost Interger overflow in vhostusersetlogbase CVE-2020-10722 dpdk: librtevhost Integer truncation in vhostusercheckandallocqueuepair...

6.7CVSS7.2AI score0.00378EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.2 views

MiracleLinux 8 : dpdk-21.11-2.el8 (AXSA:2023-4785:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-4785:02 advisory. dpdk: DoS when a Vhost header crosses more than two descriptors and exhausts all mbufs CVE-2022-2132 Tenable has extracted the preceding description block...

8.6CVSS5.6AI score0.01772EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.7 views

MiracleLinux 9 : dpdk-21.11.2-1.el9 (AXSA:2023-5000:03)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-5000:03 advisory. dpdk: DoS when a Vhost header crosses more than two descriptors and exhausts all mbufs CVE-2022-2132 DPDK: out-of-bounds read/write in...

8.6CVSS5.6AI score0.0188EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2026/01/09 9:17 a.m.10 views

CVE-2025-23259

NVIDIA Mellanox DPDK contains a vulnerability in Poll Mode Driver PMD, where an attacker on a VM in the system might be able to cause information disclosure and denial of service on the network interface...

6.5CVSS6.4AI score0.00276EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/01/06 12:0 a.m.6 views

Arista EOS 安全漏洞

Arista EOS is a fully programmable, highly modular, Linux-based network operating system from Arista Corporation. A security vulnerability exists in Arista EOS that stems from specially crafted packets that can cause the MACsec process to terminate unexpectedly, potentially resulting in a prolong...

5.3CVSS6.5AI score0.00167EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/12/31 12:0 a.m.3 views

SUSE SLES15: dpdk22 / dpdk22-devel / dpdk22-devel-static / dpdk22-doc / etc (SUSE-SU-2025:4534-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:4534-1 advisory. Update to version 22.11.10. Security issues fixed: - CVE-2025-23259: issue in the Poll Mode Driver PMD allows an attacker on a...

6.5CVSS7.2AI score0.00276EPSS
Exploits0References5
OSV
OSV
added 2025/12/30 8:5 p.m.8 views

SUSE-SU-2026:20055-1 Security update for dpdk

This update for dpdk fixes the following issues: Update to version 22.11.10. Security issues fixed: - CVE-2025-23259: issue in the Poll Mode Driver PMD allows an attacker on a VM in the system to leak information and cause a denial of service on the network interface bsc1254161. Other updates and...

7.4CVSS5.8AI score0.00551EPSS
Exploits0References6
SUSE Linux
SUSE Linux
added 2025/12/29 4:15 p.m.7 views

Security update for dpdk22

This update for dpdk22 fixes the following issues: Update to version 22.11.10. Security issues fixed: CVE-2025-23259: issue in the Poll Mode Driver PMD allows an attacker on a VM in the system to leak information and cause a denial of service on the network interface bsc1254161. Other updates and...

7CVSS6.7AI score0.00276EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/12/03 12:0 a.m.5 views

SUSE SLES15: dpdk / dpdk-devel / dpdk-devel-static / dpdk-doc / dpdk-examples / etc (SUSE-SU-2025:4254-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:4254-1 advisory. - Update to version 22.11.10 - CVE-2025-23259: Fixed an out-of-order completions in ordinary Rx burst. bsc1254161 Tenable has...

6.5CVSS7.2AI score0.00276EPSS
Exploits0References4
Rows per page
Query Builder