Lucene search
K

77 matches found

NVD
NVD
added 2026/06/24 5:17 p.m.13 views

CVE-2026-53006

In the Linux kernel, the following vulnerability has been resolved: ipv6: fix possible UAF in icmpv6rcv Caching saddr and daddr before pskbpull is problematic since skb-head can change. Remove these temporary variables: - We only access &ipv6hdrskb-saddr and &ipv6hdrskb-daddr when netdbgratelimit...

9.8CVSS0.00377EPSS
Exploits0References11
Cvelist
Cvelist
added 2026/06/24 4:29 p.m.31 views

CVE-2026-53006 ipv6: fix possible UAF in icmpv6_rcv()

In the Linux kernel, the following vulnerability has been resolved: ipv6: fix possible UAF in icmpv6rcv Caching saddr and daddr before pskbpull is problematic since skb-head can change. Remove these temporary variables: - We only access &ipv6hdrskb-saddr and &ipv6hdrskb-daddr when netdbgratelimit...

9.8CVSS0.00377EPSS
Exploits0References8
EUVD
EUVD
added 2026/05/08 3:31 p.m.12 views

EUVD-2026-28613

In the Linux kernel, the following vulnerability has been resolved: netfilter: flowtable: strictly check for maximum number of actions The maximum number of flowtable hardware offload actions in IPv6 is: ethernet mangling 4 payload actions, 2 for each ethernet address SNAT 4 payload actions DNAT ...

5.8AI score0.00141EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2026/05/06 8:22 p.m.10 views

CVE-2026-31195

The ping diagnostic handler in /bin/httpdclientside for ALTICE LABS / SFR France GR140DG and GR140IG fibre CPE/Router/Gateway, inserts unsanitized user input into a system call, allowing authenticated remote attackers to execute arbitrary commands as root via crafted destAddr parameters using she...

8.8CVSS6.1AI score0.01275EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/05 6:33 p.m.18 views

EUVD-2026-27335

The ping diagnostic handler in /bin/httpdclientside for ALTICE LABS / SFR France GR140DG and GR140IG fibre CPE/Router/Gateway, inserts unsanitized user input into a system call, allowing authenticated remote attackers to execute arbitrary commands as root via crafted destAddr parameters using she...

6.1AI score0.01275EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/05 6:33 p.m.11 views

EUVD-2026-27337

The traceroute diagnostic handler in /bin/httpdclientside for ALTICE LABS / SFR France GR140DG and GR140IG fibre CPE/Router/Gateway, inserts unsanitized user input into a system call, allowing authenticated remote attackers to execute arbitrary commands as root via crafted destAddr parameters usi...

6.1AI score0.01275EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/05/05 12:0 a.m.14 views

PT-2026-37080

Name of the Vulnerable Software and Affected Versions Eclipse BaSyx Java Server SDK versions prior to 2.0.0-milestone-10 Description The Operation Delegation feature fails to validate the destination URI of delegated requests. This design flaw allows an unauthenticated remote attacker to force th...

8.6CVSS6.3AI score0.00516EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2026/05/05 12:0 a.m.9 views

CVE-2026-31196

OS command injection vulnerability in the traceroute diagnostic handler in /bin/httpdclientside in ALTICE LABS / SFR France GR140DG Fibre Router with firmware 3GN8020801R13, 3GN8020802R0A, or 3GN8020803R0A inserts unsanitized user input into a system call, allowing authenticated remote attackers ...

5.9AI score0.01275EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/05/05 12:0 a.m.16 views

PT-2026-37058

Name of the Vulnerable Software and Affected Versions ALTICE LABS / SFR France GR140DG affected versions not specified ALTICE LABS / SFR France GR140IG affected versions not specified Description The traceroute diagnostic handler in the '/bin/httpd clientside' endpoint of the affected devices...

8.8CVSS6.1AI score0.01275EPSS
Exploits0References8
CVE
CVE
added 2026/05/05 12:0 a.m.18 views

CVE-2026-31196

The vulnerability CVE-2026-31196 affects ALTICE LABS / SFR France GR140DG and GR140IG fibre CPE/Router/Gateway. The traceroute diagnostic handler (/bin/httpd_clientside) unsafely inserts user-supplied destAddr input into a system() call, enabling authenticated remote attackers to execute arbitrar...

8.8CVSS5.9AI score0.01275EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/05/05 12:0 a.m.12 views

PT-2026-37057

Name of the Vulnerable Software and Affected Versions ALTICE LABS / SFR France GR140DG affected versions not specified ALTICE LABS / SFR France GR140IG affected versions not specified Description The ping diagnostic handler in the '/bin/httpd clientside' endpoint allows authenticated remote...

8.8CVSS6.1AI score0.01275EPSS
Exploits0References8
Github Security Blog
Github Security Blog
added 2026/03/29 3:23 p.m.4 views

Happy DOM's fetch credentials include uses page-origin cookies instead of target-origin cookies

Summary happy-dom may attach cookies from the current page origin window.location instead of the request target URL when fetch..., credentials: "include" is used. This can leak cookies from origin A to destination B. Details In packages/happy-dom/src/fetch/utilities/FetchRequestHeaderUtility.ts...

7.5CVSS5.8AI score0.00458EPSS
Exploits1References7Affected Software1
EUVD
EUVD
added 2026/03/26 3:30 p.m.3 views

EUVD-2018-21686

MegaPing contains a local buffer overflow vulnerability that allows local attackers to crash the application by supplying an oversized payload to the Destination Address List field in the Finger function. Attackers can paste a crafted buffer exceeding expected input limits into the vulnerable fie...

6.9CVSS6AI score0.00193EPSS
Exploits1References5
NVD
NVD
added 2026/03/26 2:16 p.m.4 views

CVE-2018-25214

MegaPing contains a local buffer overflow vulnerability that allows local attackers to crash the application by supplying an oversized payload to the Destination Address List field in the Finger function. Attackers can paste a crafted buffer exceeding expected input limits into the vulnerable fie...

6.9CVSS0.00193EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2026/03/26 1:24 p.m.7 views

CVE-2018-25214 MegaPing Local Buffer Overflow Denial of Service

MegaPing contains a local buffer overflow vulnerability that allows local attackers to crash the application by supplying an oversized payload to the Destination Address List field in the Finger function. Attackers can paste a crafted buffer exceeding expected input limits into the vulnerable fie...

6.9CVSS6AI score0.00193EPSS
Exploits1References4
Cvelist
Cvelist
added 2026/03/26 1:24 p.m.21 views

CVE-2018-25214 MegaPing Local Buffer Overflow Denial of Service

MegaPing contains a local buffer overflow vulnerability that allows local attackers to crash the application by supplying an oversized payload to the Destination Address List field in the Finger function. Attackers can paste a crafted buffer exceeding expected input limits into the vulnerable fie...

6.9CVSS0.00193EPSS
Exploits1References4
CVE
CVE
added 2026/03/26 1:24 p.m.9 views

CVE-2018-25214

CVE-2018-25214 concerns MegaPing, where a local buffer overflow in the Finger function’s Destination Address List field lets a local attacker crash the application by supplying an oversized payload and pressing Start. The vulnerability appears to be exploited locally, matching the CVSS vector for...

6.9CVSS6AI score0.00193EPSS
Exploits1References4Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/03/26 1:24 p.m.3 views

CVE-2018-25214

MegaPing contains a local buffer overflow vulnerability that allows local attackers to crash the application by supplying an oversized payload to the Destination Address List field in the Finger function. Attackers can paste a crafted buffer exceeding expected input limits into the vulnerable fie...

6.9CVSS6AI score0.00193EPSS
Exploits1References4Affected Software1
CNNVD
CNNVD
added 2026/03/26 12:0 a.m.8 views

Magnetosoft MegaPing 缓冲区错误漏洞

Magnetosoft MegaPing is a network monitoring and diagnostic tool developed by the Magnetosoft company. Magnetosoft MegaPing has a buffer error vulnerability, which stems from a buffer overflow in the Destination Address List field. This vulnerability may lead to a denial-of-service attack...

6.9CVSS6AI score0.00193EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/03/26 12:0 a.m.3 views

PT-2026-28251

MegaPing contains a local buffer overflow vulnerability that allows local attackers to crash the application by supplying an oversized payload to the Destination Address List field in the Finger function. Attackers can paste a crafted buffer exceeding expected input limits into the vulnerable fie...

6.9CVSS6.1AI score0.00193EPSS
Exploits1References5
Rows per page
Query Builder