GHSA-CPMJ-H4F6-R6PQ Harden-Runner: Bypassing Logging of Outbound Connections Using sendto, sendmsg, and sendmmsg in Harden-Runner (Community Tier)

Summary A security vulnerability has been identified in the Harden-Runner GitHub Action Community Tier that allows outbound network connections to evade audit logging. Specifically, outbound traffic using the sendto, sendmsg, and sendmmsg socket system calls can bypass detection and logging when...

TeamViewer DEX Client 安全漏洞

TeamViewer DEX Client is a digital employee experience and endpoint management software from TeamViewer Germany. TeamViewer DEX Client suffers from an information disclosure vulnerability that can be exploited by an attacker to cause encrypted UDP traffic to be sent in plaintext, resulting in an...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000384)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000384 advisory. In the Linux kernel before 5.1.7, a device can be tracked by an attacker using the IP ID values the kernel produces for connection-less protocols e.g., UDP and ICMP...

SUSE CVE-2023-29552

The Service Location Protocol SLP, RFC 2608 allows an unauthenticated, remote attacker to register arbitrary services. This could allow the attacker to use spoofed UDP traffic to conduct a denial-of-service attack with a significant amplification factor...

SUSE CVE-2008-5713

The qdiscrun function in net/sched/schgeneric.c in the Linux kernel before 2.6.25 on SMP machines allows local users to cause a denial of service soft lockup by sending a large amount of network traffic, as demonstrated by multiple simultaneous invocations of the Netperf benchmark application in...

SUSE CVE-2016-10229

udp.c in the Linux kernel before 4.5 allows remote attackers to execute arbitrary code via UDP traffic that triggers an unsafe second checksum calculation during execution of a recv system call with the MSGPEEK flag...

SUSE CVE-2017-15924

In manager.c in ss-manager in shadowsocks-libev 3.1.0, improper parsing allows command injection via shell metacharacters in a JSON configuration request received via 127.0.0.1 UDP traffic, related to the addserver, buildconfig, and constructcommandline functions...

The vulnerability of the connection processing function in Cisco Firepower Threat Defense’s microprogrammed network interface devices allows a attacker to trigger a service failure.

The vulnerability of the connection processing function in Cisco Firepower Threat Defense’s microprogrammed network interface controllers is related to the unlimited distribution of resources. Exploiting this vulnerability could allow a malicious actor to cause service interruptions by sending...

CVE-2022-20757

A vulnerability in the connection handling function in Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to improper traffic handling when platform limits are...

Cisco Firepower Threat Defense 安全漏洞

Cisco Firepower Threat Defense is a suite of unified software from Cisco that provides next-generation firewall services. The vulnerability stems from incorrect traffic handling when platform limits are reached, and can be exploited to cause a denial-of-service DoS condition by sending high-rate...

Vulnerability fixed in Nginx

A vulnerability has been fixed in Nginx. The vulnerability allows a remote malicious party the ability to cause a denial-of-service cause and potentially execute arbitrary code by sending a specially prepared DNS response. Nginx is only vulnerable if the "resolver directive" is used in the...

CVE-2020-15054

TP-Link USB Network Server TL-PS310U devices before 2.079.000.t0210 allow an attacker on the same network to elevate privileges because the administrative password can be discovered by sniffing unencrypted UDP traffic...

ALPINE-CVE-2016-10229

udp.c in the Linux kernel before 4.5 allows remote attackers to execute arbitrary code via UDP traffic that triggers an unsafe second checksum calculation during execution of a recv system call with the MSGPEEK flag...

DEBIAN-CVE-2016-10229

udp.c in the Linux kernel before 4.5 allows remote attackers to execute arbitrary code via UDP traffic that triggers an unsafe second checksum calculation during execution of a recv system call with the MSGPEEK flag...

The vulnerability of Cisco Adaptive Security Appliance’s microprogramming software allows a perpetrator to bypass the access control list configuration.

The vulnerabilities of the Border Gateway Protocol BGP and Bidirectional Forwarding Detection BFD components of the Cisco Adaptive Security Appliance software-related networking devices are related to deficiencies in access control for certain functions. Exploiting these vulnerabilities can allow...

kernel: unlimited socket backlog DoS

The socket implementation in net/core/sock.c in the Linux kernel before 2.6.34 does not properly manage a backlog of received packets, which allows remote attackers to cause a denial of service memory consumption by sending a large amount of network traffic, as demonstrated by netperf UDP tests...