Lucene search
K

47 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.8 views

Astra Linux – Vulnerability in OVN

A flaw was discovered in the Open Virtual Network OVN. Specifically, specially crafted UDP packets may bypass egress access control lists ACLs in OVN installations that are configured with a logical switch equipped with DNS records. This occurs if the same switch has any egress ACLs configured...

8.1CVSS6.7AI score0.00832EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/05 12:31 a.m.7 views

EUVD-2024-55611

On affected platforms running Arista EOS with MACsec and egress ACLs configured on the same interfaces, the ACL policies may not be enforced for packets egressing on those ports. This can cause outgoing packets to incorrectly be allowed or denied...

6.9CVSS5.8AI score0.00282EPSS
Exploits0References2
NVD
NVD
added 2026/06/04 11:16 p.m.6 views

CVE-2024-27891

On affected platforms running Arista EOS with MACsec and egress ACLs configured on the same interfaces, the ACL policies may not be enforced for packets egressing on those ports. This can cause outgoing packets to incorrectly be allowed or denied...

6.9CVSS0.00282EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/04 10:8 p.m.11 views

CVE-2024-27891 On affected platforms running Arista EOS with MACsec and egress ACLs configured on the same interfaces, the ACL policies may not be enforced for packets egressing on those ports.

On affected platforms running Arista EOS with MACsec and egress ACLs configured on the same interfaces, the ACL policies may not be enforced for packets egressing on those ports. This can cause outgoing packets to incorrectly be allowed or denied...

6.9CVSS5.5AI score0.00282EPSS
Exploits0References1
CVE
CVE
added 2026/06/04 10:8 p.m.34 views

CVE-2024-27891

Arista CVE-2024-27891 affects EOS platforms where MACsec and outbound egress ACLs are on the same interface, potentially causing ACL policies to not be enforced for egress packets. Affected EOS releases include 4.32.x (4.32.0.1F and below), 4.31.x (4.31.2F and below), 4.30.x (4.30.6M and below), ...

6.9CVSS5.8AI score0.00282EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/04 10:8 p.m.25 views

CVE-2024-27891 On affected platforms running Arista EOS with MACsec and egress ACLs configured on the same interfaces, the ACL policies may not be enforced for packets egressing on those ports.

On affected platforms running Arista EOS with MACsec and egress ACLs configured on the same interfaces, the ACL policies may not be enforced for packets egressing on those ports. This can cause outgoing packets to incorrectly be allowed or denied...

6.9CVSS0.00282EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/04 12:0 a.m.14 views

PT-2026-46396

Name of the Vulnerable Software and Affected Versions Arista EOS affected versions not specified Description On affected platforms running Arista EOS with MACsec and egress ACLs configured on the same interfaces, the ACL policies may not be enforced for packets egressing on those ports. This...

6.9CVSS5.4AI score0.00282EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2025/12/01 6:59 p.m.8 views

Cilium with misconfigured toGroups in policies can lead to unrestricted egress traffic

Impact CiliumNetworkPolicys which use egress.toGroups.aws.securityGroupsIds to reference AWS security group IDs that do not exist or are not attached to any network interface may unintentionally allow broader outbound access than intended by the policy authors. In such cases, the toCIDRset sectio...

5.5CVSS6.9AI score0.00161EPSS
Exploits0References7Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-31030

Malicious code in bioql PyPI...

5.3CVSS6.5AI score0.00294EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.10 views

EUVD-2025-1804

Malicious code in bioql PyPI...

8.1CVSS7.8AI score0.00832EPSS
Exploits0References18
RedhatCVE
RedhatCVE
added 2025/09/25 5:47 p.m.27 views

CVE-2025-20316

A vulnerability in the access control list ACL programming of Cisco IOS XE Software for Cisco Catalyst 9500X and 9600X Series Switches could allow an unauthenticated, remote attacker to bypass a configured ACL on an affected device. This vulnerability is due to the flooding of traffic from an...

5.3CVSS6.7AI score0.00294EPSS
Exploits0References1
NVD
NVD
added 2025/09/24 6:15 p.m.7 views

CVE-2025-20316

A vulnerability in the access control list ACL programming of Cisco IOS XE Software for Cisco Catalyst 9500X and 9600X Series Switches could allow an unauthenticated, remote attacker to bypass a configured ACL on an affected device. This vulnerability is due to the flooding of traffic from an...

5.3CVSS0.00294EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/24 5:16 p.m.24 views

CVE-2025-20316

A vulnerability in the access control list ACL programming of Cisco IOS XE Software for Cisco Catalyst 9500X and 9600X Series Switches could allow an unauthenticated, remote attacker to bypass a configured ACL on an affected device. This vulnerability is due to the flooding of traffic from an...

5.3CVSS0.00294EPSS
Exploits0References1
CVE
CVE
added 2025/09/24 5:16 p.m.20 views

CVE-2025-20316

CVE-2025-20316 describes a vulnerability in the ACL programming of Cisco IOS XE Software on Cisco Catalyst 9500X and 9600X Series Switches. The issue allows an unauthenticated, remote attacker to bypass a configured egress ACL. The root cause is tied to traffic flooding from an unlearned MAC addr...

5.3CVSS6.5AI score0.00294EPSS
Exploits0References1
Cisco
Cisco
added 2025/09/24 4:0 p.m.7 views

Cisco IOS XE Software on Cisco Catalyst 9500X and 9600X Series Switches Virtual Interface Access Control List Bypass Vulnerability

A vulnerability in the access control list ACL programming of Cisco IOS XE Software for Cisco Catalyst 9500X and 9600X Series Switches could allow an unauthenticated, remote attacker to bypass a configured ACL on an affected device. This vulnerability is due to the flooding of traffic from an...

5.3CVSS6.9AI score0.00294EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/09/24 12:0 a.m.8 views

PT-2025-39303

Name of the Vulnerable Software and Affected Versions Cisco IOS XE Software for Cisco Catalyst 9500X and 9600X Series Switches affected versions not specified Description A flaw exists in the access control list ACL programming that could allow a remote attacker to bypass a configured ACL on an...

5.3CVSS6.2AI score0.00294EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2025/08/18 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-0650

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the Open Virtual Network OVN. Specially crafted UDP packets may bypass egress access control lists ACLs in OVN installations configured with...

8.1CVSS7.4AI score0.00832EPSS
Exploits0References2
OSV
OSV
added 2025/03/31 12:1 p.m.4 views

USN-7396-1 ovn vulnerability

Marius Berntsberg, Trygve Vea, Tore Anderson, Rodolfo Alonso, Jay Faulkner, and Brian Haley discovered that OVN incorrectly handled certain crafted UDP packets. A remote attacker could possibly use this issue to bypass egress ACL rules...

8.1CVSS5.8AI score0.00832EPSS
Exploits0References2
OSV
OSV
added 2025/03/12 4:15 p.m.6 views

CVE-2025-20145

A vulnerability in the access control list ACL processing in the egress direction of Cisco IOS XR Software could allow an unauthenticated, remote attacker to bypass a configured ACL. This vulnerability exists because certain packets are handled incorrectly when they are received on an ingress...

5.8CVSS5.8AI score0.00376EPSS
Exploits0References2
SUSE Linux
SUSE Linux
added 2025/02/28 10:17 a.m.5 views

Security update for openvswitch3

This update for openvswitch3 fixes the following issues: CVE-2025-0650: Fixed egress ACLs that may be bypassed via specially crafted UDP packet bsc1236353. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

9.2CVSS8.3AI score0.00832EPSS
Exploits0References4
Rows per page
Query Builder