Lucene search
K

768 matches found

EUVD
EUVD
added 2026/05/13 9:54 p.m.39 views

EUVD-2026-30202

OPNsense is a FreeBSD based firewall and routing platform. Prior to 26.1.8, unsanitized user input is passed to the DHCP configuration of the configured interface, which is processed by a shell script, allowing remote code execution as root on the underlying operating system. This vulnerability i...

9.1CVSS6.5AI score0.00531EPSS
Exploits0References1
CVE
CVE
added 2026/05/13 9:54 p.m.25 views

CVE-2026-45158

CVE-2026-45158 affects OPNsense (FreeBSD-based firewall) prior to version 26.1.8. Unsanitized user input is passed to the DHCP configuration of the configured interface and processed by a shell script, enabling remote code execution as root on the underlying OS. The issue is fixed in 26.1.8. No e...

9.1CVSS6.5AI score0.00531EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/05/12 7:9 p.m.44 views

CVE-2026-7474 Nomad vulnerable to path traversal in dynamic host volume which may lead to code execution

HashiCorp Nomad and Nomad Enterprise prior to 2.0.1 are vulnerable to code execution on the client host through a path traversal attack. This vulnerability CVE-2026-7474 is fixed in Nomad 2.0.1, 1.11.5 and 1.10.11...

8.8CVSS0.06892EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/12 7:9 p.m.10 views

CVE-2026-7474 Nomad vulnerable to path traversal in dynamic host volume which may lead to code execution

HashiCorp Nomad and Nomad Enterprise prior to 2.0.1 are vulnerable to code execution on the client host through a path traversal attack. This vulnerability CVE-2026-7474 is fixed in Nomad 2.0.1, 1.11.5 and 1.10.11...

8.8CVSS6.2AI score0.06892EPSS
Exploits0References1
CVE
CVE
added 2026/05/12 7:9 p.m.51 views

CVE-2026-7474

CVE-2026-7474 affects HashiCorp Nomad and Nomad Enterprise prior to 2.0.1 through a path traversal vulnerability on the client host that can lead to code execution. The issue is fixed in Nomad 2.0.1, 1.11.5, and 1.10.11. Affected component is the client-side handling of dynamic host volumes, with...

8.8CVSS6.2AI score0.06892EPSS
Exploits0References1
HashiCorp Security Advisories
HashiCorp Security Advisories
added 2026/05/12 6:54 p.m.10 views

Nomad vulnerable to path traversal in dynamic host volume which may lead to code execution

Summary HashiCorp Nomad and Nomad Enterprise prior to 2.0.1 are vulnerable to code execution on the client host through a path traversal attack. This vulnerability CVE-2026-7474 is fixed in Nomad 2.0.1, 1.11.5 and 1.10.11. Background Nomad’s Dynamic Host Volumes feature allows the cluster admin t...

8.8CVSS7.2AI score0.06892EPSS
Exploits0Affected Software1
EUVD
EUVD
added 2026/05/12 12:31 a.m.11 views

EUVD-2026-29290

barebox prior to version 2026.04.0 contains an out-of-bounds read vulnerability in DHCP option parsing within the dhcpmessagetype function that fails to verify the options pointer remains within received packet bounds. An attacker on the same broadcast domain can send a crafted DHCP Offer or ACK...

7.1CVSS5.8AI score0.00222EPSS
Exploits0References4
NVD
NVD
added 2026/05/11 10:22 p.m.19 views

CVE-2026-34960

barebox prior to version 2026.04.0 contains an out-of-bounds read vulnerability in DHCP option parsing within the dhcpmessagetype function that fails to verify the options pointer remains within received packet bounds. An attacker on the same broadcast domain can send a crafted DHCP Offer or ACK...

7.1CVSS0.00222EPSS
Exploits0References3
CVE
CVE
added 2026/05/11 8:49 p.m.20 views

CVE-2026-34960

barebox before 2026.04.0 contains an out-of-bounds read in DHCP option parsing (dhcp_message_type) due to not ensuring the options pointer stays within packet bounds. An attacker on the same broadcast domain can send a crafted DHCP Offer/ACK lacking a proper 0xff end marker to cause the parser to...

7.1CVSS5.8AI score0.00222EPSS
Exploits0References3Affected Software1
EUVD
EUVD
added 2026/05/11 6:31 p.m.23 views

EUVD-2026-29154

A heap-based out-of-bounds write vulnerability in the DHCPv6 implementation of dnsmasq allows local attackers to execute arbitrary code with root privileges via a crafted DHCPv6 packet...

8.4CVSS6.2AI score0.00812EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2026/05/11 4:47 p.m.7 views

CVE-2026-4892 CVE-2026-4892

A heap-based out-of-bounds write vulnerability in the DHCPv6 implementation of dnsmasq allows local attackers to execute arbitrary code with root privileges via a crafted DHCPv6 packet...

6.2AI score0.00812EPSS
Exploits1References6
Cvelist
Cvelist
added 2026/05/11 4:47 p.m.54 views

CVE-2026-4892 CVE-2026-4892

A heap-based out-of-bounds write vulnerability in the DHCPv6 implementation of dnsmasq allows local attackers to execute arbitrary code with root privileges via a crafted DHCPv6 packet...

0.00812EPSS
Exploits1References6
CNNVD
CNNVD
added 2026/05/11 12:0 a.m.8 views

Barebox 缓冲区错误漏洞

Barebox is a versatile and flexible bootloader developed by Barebox Open Source. Versions of Barebox prior to 2026.04.0 contained a buffer error vulnerability. This vulnerability stemmed from the dhcpmessagetype function in DHCP option parsing, which did not verify whether the option pointers wer...

7.1CVSS6AI score0.00222EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/11 12:0 a.m.11 views

DNSmasq 安全漏洞

DNSmasq is a DNS configuration tool developed by Simon Kelley individually. DNSmasq has a security vulnerability, which stems from heap-based out-of-bound writes in the DHCPv6 implementation. This vulnerability allows local attackers to execute arbitrary code with root privileges using specially...

8.4CVSS6.2AI score0.00812EPSS
Exploits1References1
EUVD
EUVD
added 2026/05/08 3:31 p.m.10 views

EUVD-2026-28727

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fncm: Fix netdevice lifecycle with devicemove The network device outlived its parent gadget device during disconnection, resulting in dangling sysfs links and null pointer dereference problems. A prior attempt to sol...

5.8AI score0.00123EPSS
Exploits0References5
OSV
OSV
added 2026/05/08 11:50 a.m.10 views

CLSA-2026-1778157268 dnsmasq: Fix of CVE-2022-0934

CVE-2022-0934: Fix write-after-free in DHCPv6 relay handling that could be triggered by a crafted packet, leading to denial of service - rfc3315: fix bad reply to DHCPCONFIRM messages wrong message type - rfc3315: fix integer underflow and heap overflow in log6opts STATUSCODE - rfc3315: fix...

7.5CVSS5.8AI score0.01487EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/05/07 8:20 a.m.13 views

CVE-2026-39849

Pi-hole FTL is the core engine of the Pi-hole network-level advertisement and tracker blocker. In versions before 6.6.1, the dns.interface configuration field in Pi-hole FTL accepted newline characters without validation, allowing an attacker to inject arbitrary directives into the generated...

8.8CVSS6.1AI score0.00956EPSS
Exploits1References1
SUSE CVE
SUSE CVE
added 2026/05/06 1:44 a.m.11 views

SUSE CVE-2026-29004

BusyBox before commit 42202bf contains a heap buffer overflow vulnerability in the DHCPv6 client udhcpc6 DNSSERVERS option handler in networking/udhcp/d6dhcpc.c that allows network-adjacent attackers to trigger memory corruption by sending a crafted DHCPv6 response with a malformed D6OPTDNSSERVER...

8.1CVSS6.5AI score0.00375EPSS
Exploits0References9
Cvelist
Cvelist
added 2026/05/05 8:50 p.m.46 views

CVE-2026-39849 Pi-hole FTL remote code execution via newline injection in dns.interface configuration

Pi-hole FTL is the core engine of the Pi-hole network-level advertisement and tracker blocker. In versions before 6.6.1, the dns.interface configuration field in Pi-hole FTL accepted newline characters without validation, allowing an attacker to inject arbitrary directives into the generated...

8.7CVSS0.00956EPSS
Exploits1References3
Debian CVE
Debian CVE
added 2026/05/04 6:5 p.m.6 views

CVE-2026-29004

BusyBox before commit 42202bf contains a heap buffer overflow vulnerability in the DHCPv6 client udhcpc6 DNSSERVERS option handler in networking/udhcp/d6dhcpc.c that allows network-adjacent attackers to trigger memory corruption by sending a crafted DHCPv6 response with a malformed D6OPTDNSSERVER...

8.8CVSS6.5AI score0.00375EPSS
Exploits0
Rows per page
Query Builder