4153 matches found
AZL-64086 CVE-2025-47268 affecting package iputils for versions less than 20211215-3
ping in iputils before 20250602 allows a denial of service application error or incorrect data collection via a crafted ICMP Echo Reply packet, because of a signed 64-bit integer overflow in timestamp multiplication...
AZL-64106 CVE-2025-47268 affecting package iputils for versions less than 20240117-2
ping in iputils before 20250602 allows a denial of service application error or incorrect data collection via a crafted ICMP Echo Reply packet, because of a signed 64-bit integer overflow in timestamp multiplication...
DEBIAN-CVE-2025-47268
ping in iputils before 20250602 allows a denial of service application error or incorrect data collection via a crafted ICMP Echo Reply packet, because of a signed 64-bit integer overflow in timestamp multiplication...
UBUNTU-CVE-2025-47268
ping in iputils before 20250602 allows a denial of service application error or incorrect data collection via a crafted ICMP Echo Reply packet, because of a signed 64-bit integer overflow in timestamp multiplication...
CVE-2025-47268
CVE-2025-47268 affects the iputils package’s ping utility. The issue arises from a signed 64-bit integer overflow in timestamp multiplication, exploitable via a crafted ICMP Echo Reply packet and leading to a denial of service (application error or incorrect data collection). A patched version is...
CVE-2025-47268
ping in iputils before 20250602 allows a denial of service application error or incorrect data collection via a crafted ICMP Echo Reply packet, because of a signed 64-bit integer overflow in timestamp multiplication...
PT-2025-19706
Name of the Vulnerable Software and Affected Versions iputils versions through 20240905 Description The issue allows for a denial of service, resulting in application error or incorrect data collection, via a crafted ICMP Echo Reply packet. This is caused by a signed 64-bit integer overflow in...
iputils 安全漏洞
iputils is the iputils open source set of small, legacy utilities for Linux networking. A security vulnerability exists in iputils version 20240905 and earlier, which stems from a specially crafted ICMP Echo Reply packet resulting in a 64-bit integer overflow in the timestamp multiplication, whic...
CVE-2025-47268
ping in iputils before 20250602 allows a denial of service application error or incorrect data collection via a crafted ICMP Echo Reply packet, because of a signed 64-bit integer overflow in timestamp multiplication...
CVE-2025-47268
ping in iputils before 20250602 allows a denial of service application error or incorrect data collection via a crafted ICMP Echo Reply packet, because of a signed 64-bit integer overflow in timestamp multiplication...
CVE-2025-47268
ping in iputils before 20250602 allows a denial of service application error or incorrect data collection via a crafted ICMP Echo Reply packet, because of a signed 64-bit integer overflow in timestamp multiplication...
kernel: can: dev: can_put_echo_skb(): don't crash kernel if can_priv::echo_skb is accessed out of bounds
In the Linux kernel, the following vulnerability has been resolved: can: dev: canputechoskb: don't crash kernel if canpriv::echoskb is accessed out of bounds If the "struct canpriv::echooskb" is accessed out of bounds, this would cause a kernel crash. Instead, issue a meaningful warning message a...
Malicious code in echo-color (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3f49c42944e8358945b0e71cfb98fe50999b199d5f3e12802e35b84c9893c5c7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-3509 Malicious code in echo-color (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3f49c42944e8358945b0e71cfb98fe50999b199d5f3e12802e35b84c9893c5c7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
CVE-2025-3566
A vulnerability, which was classified as critical, has been found in veal98 小牛肉 Echo 开源社区系统 4.2. This issue affects the function uploadMdPic of the file /discuss/uploadMdPic. The manipulation of the argument editormd-image-file leads to unrestricted upload. The attack may be initiated remotely. T...
CVE-2025-3567
A vulnerability, which was classified as problematic, was found in veal98 小牛肉 Echo 开源社区系统 4.2. Affected is the function preHandle of the file src/main/java/com/greate/community/controller/interceptor/LoginTicketInterceptor.java of the component Ticket Handler. The manipulation leads to improper...
CVE-2025-3567 veal98 小牛肉 Echo 开源社区系统 Ticket LoginTicketInterceptor.java preHandle improper authorization
A vulnerability, which was classified as problematic, was found in veal98 小牛肉 Echo 开源社区系统 4.2. Affected is the function preHandle of the file src/main/java/com/greate/community/controller/interceptor/LoginTicketInterceptor.java of the component Ticket Handler. The manipulation leads to improper...
CVE-2025-3567 veal98 小牛肉 Echo 开源社区系统 Ticket LoginTicketInterceptor.java preHandle improper authorization
A vulnerability, which was classified as problematic, was found in veal98 小牛肉 Echo 开源社区系统 4.2. Affected is the function preHandle of the file src/main/java/com/greate/community/controller/interceptor/LoginTicketInterceptor.java of the component Ticket Handler. The manipulation leads to improper...
CVE-2025-3567
CVE-2025-3567 affects veal98 小牛肉 Echo 开源社区系统 v4.2. The vulnerability resides in the preHandle function of LoginTicketInterceptor.java (Ticket Handler). Manipulation leads to improper authorization and can be exploited remotely; public exploit information exists. Multiple sources corroborate the i...
CVE-2025-3566 veal98 小牛肉 Echo 开源社区系统 uploadMdPic unrestricted upload
A vulnerability, which was classified as critical, has been found in veal98 小牛肉 Echo 开源社区系统 4.2. This issue affects the function uploadMdPic of the file /discuss/uploadMdPic. The manipulation of the argument editormd-image-file leads to unrestricted upload. The attack may be initiated remotely. T...