13 matches found
EUVD-2021-7078
Malicious code in bioql PyPI...
USBCoercer: A TinyUSB Based WPAD Coercion Device
USBCoercer turns an ESP32 development board with native USB-OTG into an Ethernet-over-USB gadget capable of coercing proxy configuration via WPAD. It builds on the TinyUSB Network Control Model NCM example and adds a minimalist DHCP server that injects DHCP option 252 WPAD/PAC and, additionally,...
CVE-2023-53148 igb: Fix igb_down hung on surprise removal
In the Linux kernel, the following vulnerability has been resolved: igb: Fix igbdown hung on surprise removal In a setup where a Thunderbolt hub connects to Ethernet and a display through USB Type-C, users may experience a hung task timeout when they remove the cable between the PC and the...
kernel: ppp: fix ppp_async_encode() illegal access
In the Linux kernel, the following vulnerability has been resolved: ppp: fix pppasyncencode illegal access syzbot reported an issue in pppasyncencode 1 In this case, pppoesendmsg is called with a zero size. Then pppasyncencode is called with an empty skb. BUG: KMSAN: uninit-value in pppasyncencod...
CVE-2022-22160
An Unchecked Error Condition vulnerability in the subscriber management daemon smgd of Juniper Networks Junos OS allows an unauthenticated adjacent attacker to cause a crash of and thereby a Denial of Service DoS. In a subscriber management / broadband edge environment if a single session group...
The vulnerability of the GRE function (EoGRE) in the Cisco IOS XE operating system, which allows a hacker to trigger a service failure.
The vulnerability of the GRE function EoGRE in the Cisco IOS XE operating system is related to errors in processing distorted EoGRE packets. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...
CVE-2021-1611
A vulnerability in Ethernet over GRE EoGRE packet processing of Cisco IOS XE Wireless Controller Software for the Cisco Catalyst 9800 Family Wireless Controller, Embedded Wireless Controller, and Embedded Wireless on Catalyst 9000 Series Switches could allow an unauthenticated, remote attacker to...
CVE-2021-1611
A vulnerability in Ethernet over GRE EoGRE packet processing of Cisco IOS XE Wireless Controller Software for the Cisco Catalyst 9800 Family Wireless Controller, Embedded Wireless Controller, and Embedded Wireless on Catalyst 9000 Series Switches could allow an unauthenticated, remote attacker to...
Design/Logic Flaw
A vulnerability in Ethernet over GRE EoGRE packet processing of Cisco IOS XE Wireless Controller Software for the Cisco Catalyst 9800 Family Wireless Controller, Embedded Wireless Controller, and Embedded Wireless on Catalyst 9000 Series Switches could allow an unauthenticated, remote attacker to...
CVE-2021-1611
The CVE-2021-1611 issue affects Cisco IOS XE Wireless Controller Software on Catalyst 9800 Family/Embedded Wireless Controllers and Embedded Wireless on Catalyst 9000 Series switches, relating to Ethernet over GRE (EoGRE) packet processing. The root cause is improper handling of malformed EoGRE p...
Cisco IOS和Cisco Catalyst 资源管理错误漏洞
Cisco IOS and Cisco Catalyst are both products of Cisco, Inc.Cisco IOS is a set of operating systems developed for its network devices.Cisco Catalyst is a series of switches. A resource management error vulnerability exists in a number of Cisco products and is caused by mishandling of malformed...
CVE-2014-0860
The firmware before 3.66E in IBM BladeCenter Advanced Management Module AMM, the firmware before 1.43 in IBM Integrated Management Module IMM, and the firmware before 4.15 in IBM Integrated Management Module II IMM2 contains cleartext IPMI credentials, which allows attackers to execute arbitrary...
Design/Logic Flaw
The firmware before 3.66E in IBM BladeCenter Advanced Management Module AMM, the firmware before 1.43 in IBM Integrated Management Module IMM, and the firmware before 4.15 in IBM Integrated Management Module II IMM2 contains cleartext IPMI credentials, which allows attackers to execute arbitrary...