Lucene search
K

84 matches found

Packet Storm News
Packet Storm News
added 2025/06/06 12:0 a.m.7 views

SDN-Based False Data Detection with Its Mitigation and Machine Learning Robustness for In-Vehicle Networks

As the development of autonomous and connected vehicles advances, the complexity of modern vehicles increases, with numerous Electronic Control Units ECUs integrated into the system. In an in-vehicle network, these ECUs communicate with one another using an standard protocol called Controller Are...

7.4AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 1:15 a.m.9 views

CVE-2022-29605

An issue was discovered in ONOS 2.5.1. IntentManager attempts to install the IPv6 flow rules of an intent into an OpenFlow 1.0 switch that does not support IPv6. Improper handling of the difference in capabilities of the intent and switch is misleading to a network operator...

7.5CVSS6.8AI score0.00654EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:15 a.m.9 views

CVE-2022-29609

An issue was discovered in ONOS 2.5.1. An intent with the same source and destination shows the INSTALLING state, indicating that its flow rules are installing. Improper handling of such an intent is misleading to a network operator...

5.3CVSS6.8AI score0.00567EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:44 p.m.10 views

CVE-2022-29606

An issue was discovered in ONOS 2.5.1. An intent with a large port number shows the CORRUPT state, which is misleading to a network operator. Improper handling of such port numbers causes inconsistency between intent and flow rules in the network...

9.8CVSS6.8AI score0.00987EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:9 p.m.7 views

CVE-2021-38364

An issue was discovered in ONOS 2.5.1. There is an incorrect comparison of flow rules installed by intents. A remote attacker can install or remove a new intent, and consequently modify or delete the existing flow rules related to other intents...

6.5CVSS6.9AI score0.00848EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 10:10 a.m.7 views

CVE-2019-1010250

The Linux Foundation ONOS 2.0.0 and earlier is affected by: Poor Input-validation. The impact is: A network administrator or attacker can install unintended flow rules in the switch by mistake. The component is: createFlow and createFlows functions in FlowWebResource.java RESTful service. The...

5.5CVSS7AI score0.01059EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:9 a.m.7 views

CVE-2019-1010252

The Linux Foundation ONOS 2.0.0 and earlier is affected by: Poor Input-validation. The impact is: A network administrator or attacker can install unintended flow rules in the switch by mistake. The component is: applyFlowRules and apply functions in FlowRuleManager.java. The attack vector is:...

5.5CVSS7AI score0.01059EPSS
Exploits1References1
CVE
CVE
added 2025/05/01 2:10 p.m.72 views

CVE-2022-49919

CVE-2022-49919 : In the Linux kernel, the nf_tables flow rule object release path was fixed. The underlying issue was a use-after-free (UAF) triggered by races with the netlink notifier, observed when the flow rule object is accessed only from the control plane (no data packets traverse it). The ...

7CVSS6.5AI score0.00134EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2024/12/02 2:15 p.m.5 views

UBUNTU-CVE-2024-53121

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: fs, lock FTE when checking if active The referenced commits introduced a two-step process for deleting FTEs: - Lock the FTE, delete it from hardware, set the hardware deletion function to NULL and unlock the FTE. - Lock...

5.5CVSS6.1AI score0.00198EPSS
Exploits0References41
Pen Test Partners Blog
Pen Test Partners Blog
added 2024/11/27 6:31 a.m.21 views

BEC-ware the Phish (part 3): Detect and Prevent Incidents in M365

TL;DR Take lessons learned from investigation, such as reviewing how emails evaded existing phishing controls to update anti-malware policies. Configure Defender for Office and Defender for Cloud Apps threat and alert policies to prevent and detect email-based attacks. Don’t rely on out-of-the-bo...

6.7AI score
Exploits0
RedHat Linux
RedHat Linux
added 2024/11/12 9:11 a.m.11 views

kernel: net/mlx5: Fix tainted pointer delete is case of flow rules creation fail

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix tainted pointer delete is case of flow rules creation fail In case of flow rule creation fail in mlx5lagcreateportseltable, instead of previously created rules, the tainted pointer is deleted deveral times. Fix this...

7.8CVSS6.8AI score0.00259EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2024/08/14 12:0 a.m.186 views

SUSE SLES15: kernel-azure / kernel-azure-devel / kernel-devel-azure / etc (SUSE-SU-2024:2896-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:2896-1 advisory. The SUSE Linux Enterprise 15 SP6 Azure kernel was updated to receive various security bugfixes. The following security bugs were...

9.8CVSS7.2AI score0.02701EPSS
Exploits4References1253
RedhatCVE
RedhatCVE
added 2024/07/16 4:26 p.m.27 views

CVE-2024-40940

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix tainted pointer delete is case of flow rules creation fail In case of flow rule creation fail in mlx5lagcreateportseltable, instead of previously created rules, the tainted pointer is deleted deveral times. Fix this...

4.4CVSS6.9AI score0.00259EPSS
Exploits0References4
NVD
NVD
added 2024/07/12 1:15 p.m.22 views

CVE-2024-40940

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix tainted pointer delete is case of flow rules creation fail In case of flow rule creation fail in mlx5lagcreateportseltable, instead of previously created rules, the tainted pointer is deleted deveral times. Fix this...

7.8CVSS0.00259EPSS
Exploits0References5
OSV
OSV
added 2024/07/12 1:15 p.m.0 views

DEBIAN-CVE-2024-40940

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix tainted pointer delete is case of flow rules creation fail In case of flow rule creation fail in mlx5lagcreateportseltable, instead of previously created rules, the tainted pointer is deleted deveral times. Fix this...

7.8CVSS5.6AI score0.00259EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2024/07/12 1:15 p.m.15 views

CVE-2024-40940

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix tainted pointer delete is case of flow rules creation fail In case of flow rule creation fail in mlx5lagcreateportseltable, instead of previously created rules, the tainted pointer is deleted deveral times. Fix this...

7.8CVSS6.4AI score0.00259EPSS
Exploits0References13
Cvelist
Cvelist
added 2024/07/12 12:25 p.m.27 views

CVE-2024-40940 net/mlx5: Fix tainted pointer delete is case of flow rules creation fail

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix tainted pointer delete is case of flow rules creation fail In case of flow rule creation fail in mlx5lagcreateportseltable, instead of previously created rules, the tainted pointer is deleted deveral times. Fix this...

0.00259EPSS
Exploits0References4
CVE
CVE
added 2024/07/12 12:25 p.m.176 views

CVE-2024-40940

The CVE-2024-40940 issue affects the Linux kernel mlx5 driver (net/mlx5). The root cause is in mlx5_lag_create_port_sel_table(): when a flow rule creation fails, the tainted pointer is deleted multiple times instead of using the correct flow rule pointers. The bug is fixed by using the correct fl...

7.8CVSS6.5AI score0.00259EPSS
Exploits0References5Affected Software1
Vulnrichment
Vulnrichment
added 2024/07/12 12:25 p.m.14 views

CVE-2024-40940 net/mlx5: Fix tainted pointer delete is case of flow rules creation fail

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix tainted pointer delete is case of flow rules creation fail In case of flow rule creation fail in mlx5lagcreateportseltable, instead of previously created rules, the tainted pointer is deleted deveral times. Fix this...

6.7AI score0.00259EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/07/12 12:0 a.m.5 views

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an issue with the net/mlx5 component that duplicates pointers to delete created rules when creating flow rul...

7.8CVSS6.5AI score0.00259EPSS
Exploits0References6
Rows per page
Query Builder