Lucene search
K

291 matches found

SUSE CVE
SUSE CVE
added 2025/02/28 2:22 a.m.2 views

SUSE CVE-2025-21705

In the Linux kernel, the following vulnerability has been resolved: mptcp: handle fastopen disconnect correctly Syzbot was able to trigger a data stream corruption: WARNING: CPU: 0 PID: 9846 at net/mptcp/protocol.c:1024 mptcpcleanuna+0xddb/0xff0 net/mptcp/protocol.c:1024 Modules linked in: CPU: 0...

5.5CVSS7.6AI score0.00195EPSS
Exploits0References13
NVD
NVD
added 2025/02/27 2:15 a.m.10 views

CVE-2025-21705

In the Linux kernel, the following vulnerability has been resolved: mptcp: handle fastopen disconnect correctly Syzbot was able to trigger a data stream corruption: WARNING: CPU: 0 PID: 9846 at net/mptcp/protocol.c:1024 mptcpcleanuna+0xddb/0xff0 net/mptcp/protocol.c:1024 Modules linked in: CPU: 0...

5.5CVSS0.00195EPSS
Exploits0References6
OSV
OSV
added 2025/02/27 2:15 a.m.1 views

DEBIAN-CVE-2025-21705

In the Linux kernel, the following vulnerability has been resolved: mptcp: handle fastopen disconnect correctly Syzbot was able to trigger a data stream corruption: WARNING: CPU: 0 PID: 9846 at net/mptcp/protocol.c:1024 mptcpcleanuna+0xddb/0xff0 net/mptcp/protocol.c:1024 Modules linked in: CPU: 0...

5.5CVSS5.7AI score0.00195EPSS
Exploits0References1
OSV
OSV
added 2025/02/27 2:7 a.m.8 views

CVE-2025-21705 mptcp: handle fastopen disconnect correctly

In the Linux kernel, the following vulnerability has been resolved: mptcp: handle fastopen disconnect correctly Syzbot was able to trigger a data stream corruption: WARNING: CPU: 0 PID: 9846 at net/mptcp/protocol.c:1024 mptcpcleanuna+0xddb/0xff0 net/mptcp/protocol.c:1024 Modules linked in: CPU: 0...

5.5CVSS6AI score0.00195EPSS
Exploits0References9
CVE
CVE
added 2025/02/27 2:7 a.m.121 views

CVE-2025-21705

CVE-2025-21705 affects the Linux kernel MPTCP implementation (mptcp: handle fastopen disconnect correctly). Root cause: internal disconnect() during FASTOPEN errors was not properly accounted, risking data stream corruption. Fix: increase the socket disconnect counter so other threads waiting on ...

5.5CVSS6.5AI score0.00195EPSS
Exploits0References6Affected Software1
Debian CVE
Debian CVE
added 2025/02/27 2:7 a.m.7 views

CVE-2025-21705

In the Linux kernel, the following vulnerability has been resolved: mptcp: handle fastopen disconnect correctly Syzbot was able to trigger a data stream corruption: WARNING: CPU: 0 PID: 9846 at net/mptcp/protocol.c:1024 mptcpcleanuna+0xddb/0xff0 net/mptcp/protocol.c:1024 Modules linked in: CPU: 0...

5.5CVSS5.7AI score0.00195EPSS
Exploits0
OSV
OSV
added 2025/02/15 12:15 a.m.3 views

CVE-2024-10405

Brocade SANnav before SANnav 2.3.1b enables weak TLS ciphers on ports 443 and 18082. In case of a successful exploit, an attacker can read Brocade SANnav data stream that includes monitored Brocade Fabric OS switches performance data, port status, zoning information, WWNs, IP Addresses, but no...

5.3CVSS7.3AI score0.00184EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/02/14 11:23 p.m.7 views

CVE-2024-10405 Weak TLS Ciphers on Brocade SANnav port 443 & 18082

Brocade SANnav before SANnav 2.3.1b enables weak TLS ciphers on ports 443 and 18082. In case of a successful exploit, an attacker can read Brocade SANnav data stream that includes monitored Brocade Fabric OS switches performance data, port status, zoning information, WWNs, IP Addresses, but no...

6.9CVSS7.1AI score0.00184EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/01/23 12:0 a.m.4 views

Fedora 安全漏洞

Fedora is a set of Linux operating systems from the Fedora community. A security vulnerability exists in Fedora version 3.8.x that stems from the presence of default service account credentials and permissions, which allows an attacker to read local files by manipulating the data stream...

8.7CVSS6.2AI score0.00412EPSS
Exploits0References5
Malwarebytes
Malwarebytes
added 2025/01/22 1:33 p.m.11 views

7-Zip bug could allow a bypass of a Windows security feature. Update now

A patch is available for a vulnerability in 7-Zip that could have allowed attackers to bypass the Mark-of-the-Web MotW security feature in Windows. The MotW is an attribute added to files by Windows when they have been sourced from an untrusted location, like the internet or a restricted zone. Th...

7.7AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2024/12/03 12:0 a.m.5 views

The vulnerability of the processAtatchmentDataStream method implementation in the software for remote monitoring, management, and support of servers and data storage systems, HPE Insight Remote Support, allows a attacker to execute arbitrary code.

The vulnerability of the processAtatchmentDataStream method implementation in the software for remote monitoring, management, and support of servers and data storage systems in HPE Insight Remote Support relates to the use of files and directories accessible to external parties. Exploiting this...

10CVSS8.5AI score0.51343EPSS
Exploits1References2Affected Software1
SUSE CVE
SUSE CVE
added 2024/03/27 4:26 a.m.3 views

SUSE CVE-2021-47152

In the Linux kernel, the following vulnerability has been resolved: mptcp: fix data stream corruption Maxim reported several issues when forcing a TCP transparent proxy to use the MPTCP protocol for the inbound connections. He also provided a clean reproducer. The problem boils down to...

5.5CVSS7.9AI score0.00232EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2024/03/25 5:53 p.m.20 views

CVE-2021-47152

A potential data stream corruption flaw was found in the Linux kernel. This may result in a crash...

5.5CVSS8.6AI score0.00232EPSS
Exploits0References4
NVD
NVD
added 2024/03/25 9:15 a.m.22 views

CVE-2021-47152

In the Linux kernel, the following vulnerability has been resolved: mptcp: fix data stream corruption Maxim reported several issues when forcing a TCP transparent proxy to use the MPTCP protocol for the inbound connections. He also provided a clean reproducer. The problem boils down to...

5.5CVSS6.4AI score0.00232EPSS
Exploits0References3
OSV
OSV
added 2024/03/25 9:15 a.m.4 views

DEBIAN-CVE-2021-47152

In the Linux kernel, the following vulnerability has been resolved: mptcp: fix data stream corruption Maxim reported several issues when forcing a TCP transparent proxy to use the MPTCP protocol for the inbound connections. He also provided a clean reproducer. The problem boils down to...

5.5CVSS6AI score0.00232EPSS
Exploits0References1
OSV
OSV
added 2024/03/25 9:15 a.m.11 views

CVE-2021-47152

In the Linux kernel, the following vulnerability has been resolved: mptcp: fix data stream corruption Maxim reported several issues when forcing a TCP transparent proxy to use the MPTCP protocol for the inbound connections. He also provided a clean reproducer. The problem boils down to...

5.5CVSS5.3AI score
Exploits0References3
OSV
OSV
added 2024/03/25 9:15 a.m.1 views

UBUNTU-CVE-2021-47152

In the Linux kernel, the following vulnerability has been resolved: mptcp: fix data stream corruption Maxim reported several issues when forcing a TCP transparent proxy to use the MPTCP protocol for the inbound connections. He also provided a clean reproducer. The problem boils down to...

5.5CVSS6.6AI score0.00232EPSS
Exploits0References5
Cvelist
Cvelist
added 2024/03/25 9:7 a.m.27 views

CVE-2021-47152 mptcp: fix data stream corruption

In the Linux kernel, the following vulnerability has been resolved: mptcp: fix data stream corruption Maxim reported several issues when forcing a TCP transparent proxy to use the MPTCP protocol for the inbound connections. He also provided a clean reproducer. The problem boils down to...

6.7AI score0.00232EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/03/25 9:7 a.m.14 views

CVE-2021-47152 mptcp: fix data stream corruption

In the Linux kernel, the following vulnerability has been resolved: mptcp: fix data stream corruption Maxim reported several issues when forcing a TCP transparent proxy to use the MPTCP protocol for the inbound connections. He also provided a clean reproducer. The problem boils down to...

6.8AI score0.00232EPSS
Exploits0References3
CVE
CVE
added 2024/03/25 9:7 a.m.86 views

CVE-2021-47152

CVE-2021-47152 concerns a Linux kernel vulnerability in the MPTCP data path that can cause data stream corruption. The root cause is that mptcp_frag_can_collapse_to() could reuse memory fragments when non-MPTCP protocols allocate page fragments, leading to corruption of mptcp_data_frag. The fix, ...

5.5CVSS6.7AI score0.00232EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder