Lucene search
K

290 matches found

NVD
NVD
added 2018/01/23 2:29 p.m.22 views

CVE-2015-1142857

On multiple SR-IOV cars it is possible for VF's assigned to guests to send ethernet flow control pause frames via the PF. This includes Linux kernel ixgbe driver before commit f079fa005aae08ee0e1bc32699874ff4f02e11c1, the Linux Kernel i40e/i40evf driver before...

8.6CVSS8.7AI score0.02475EPSS
Exploits0References3
CVE
CVE
added 2018/01/23 2:0 p.m.88 views

CVE-2015-1142857

CVE-2015-1142857 describes a network-virtualization flaw where VFs assigned to guests can cause ethernet flow-control pause frames to be sent via the PF on SR-IOV NICs. The vulnerability affects multiple drivers and firmware families: Linux ixgbe (before commit f079fa005aae08ee0e1bc32699874ff4f02...

8.6CVSS5.9AI score0.02475EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2018/01/23 2:0 p.m.30 views

CVE-2015-1142857

On multiple SR-IOV cars it is possible for VF's assigned to guests to send ethernet flow control pause frames via the PF. This includes Linux kernel ixgbe driver before commit f079fa005aae08ee0e1bc32699874ff4f02e11c1, the Linux Kernel i40e/i40evf driver before...

6.2AI score0.02475EPSS
Exploits0References3
Fedora
Fedora
added 2017/10/16 5:58 p.m.63 views

[SECURITY] Fedora 26 Update: openvswitch-2.7.3-2.fc26

Open vSwitch provides standard network bridging functions and support for the OpenFlow protocol for remote per-flow control of traffic...

9.8CVSS3.4AI score0.02809EPSS
Exploits0
OSV
OSV
added 2017/09/11 6:29 p.m.3 views

CVE-2017-14297

STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .jb2 file, related to "Data from Faulting Address controls Code Flow starting at STDUJBIG2File!DllGetClassObject+0x0000000000002f35."...

7.8CVSS6.1AI score0.00364EPSS
Exploits0References1
Prion
Prion
added 2017/06/08 1:29 p.m.16 views

Race condition

A vulnerability in the Session Initiation Protocol SIP of the Cisco TelePresence Codec TC and Collaboration Endpoint CE Software could allow an unauthenticated, remote attacker to cause a TelePresence endpoint to reload unexpectedly, resulting in a denial of service DoS condition. The vulnerabili...

7.8CVSS7.5AI score0.03564EPSS
Exploits0References3Affected Software2
OpenVAS
OpenVAS
added 2017/06/08 12:0 a.m.22 views

Cisco TelePresence CE and TC Software 'SIP' DoS Vulnerability (cisco-sa-20170607-tele)

Cisco TelePresence Endpoint is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.8CVSS7.6AI score0.03564EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2017/04/26 10:19 a.m.6 views

httpd: mod_http2 denial-of-service by thread starvation

A denial of service flaw was found in httpd's modhttp2 module. A remote attacker could use this flaw to block server threads for long times, causing starvation of worker threads, by manipulating the flow control windows on streams...

5.9CVSS7.4AI score0.15327EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2016/08/31 12:0 a.m.4 views

The vulnerability of the Android operating system, which allows a hacker to increase their privileges

The vulnerability of the drivers/media/platform/msm/camerav2/isp/msmispaxiutil.c component of Qualcomm’s Android operating system is related to the lack of flow control checks. Exploiting this vulnerability allows a remote attacker to enhance their privileges through a specially created applicati...

9.3CVSS7.2AI score0.00544EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2016/07/15 12:0 a.m.93 views

Apache HTTP Server 2.4.x < 2.4.23 Multiple Vulnerabilities

Binary data 9394.prm...

7.5CVSS6.9AI score0.18802EPSS
Exploits0References3
OSV
OSV
added 2016/07/06 2:59 p.m.2 views

DEBIAN-CVE-2016-1546

The Apache HTTP Server 2.4.17 and 2.4.18, when modhttp2 is enabled, does not limit the number of simultaneous stream workers for a single HTTP/2 connection, which allows remote attackers to cause a denial of service stream-processing outage via modified flow-control windows...

5.9CVSS6.8AI score0.15327EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2016/07/06 2:59 p.m.27 views

CVE-2016-1546

The Apache HTTP Server 2.4.17 and 2.4.18, when modhttp2 is enabled, does not limit the number of simultaneous stream workers for a single HTTP/2 connection, which allows remote attackers to cause a denial of service stream-processing outage via modified flow-control windows...

5.9CVSS6.8AI score0.15327EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2016/07/06 2:0 p.m.43 views

CVE-2016-1546

The Apache HTTP Server 2.4.17 and 2.4.18, when modhttp2 is enabled, does not limit the number of simultaneous stream workers for a single HTTP/2 connection, which allows remote attackers to cause a denial of service stream-processing outage via modified flow-control windows...

5.9CVSS6.8AI score0.15327EPSS
Exploits0
CNVD
CNVD
added 2016/06/23 12:0 a.m.3 views

Generalized SQL Injection Vulnerability in Flow Control Routing of CoQin Technology

Since its inception over 15 years ago, Co-Tech has evolved from a manufacturer of high-end modems to a strong competitor in the broadband solutions space. A generalized SQL injection vulnerability exists in the flow control routing of Welkin Technologies. It allows attackers to utilize commonly...

8.1AI score
Exploits0References1
seebug.org
seebug.org
added 2016/05/10 12:0 a.m.26 views

百为流控路由设计不当 可任意添加管理员

POST /goform/webForm HTTP/1.0 Referer: ...:2011/advance/adminuser.htm?v=20130320 Content-Type: application/x-www-form-urlencoded X-Requested-With: XMLHttpRequest Accept: / Accept-Language: zh-CN Proxy-Connection: Keep-Alive User-Agent: Mozilla/5.0 Windows NT 6.1; WOW64; Trident/7.0; rv:11.0 like...

7.1AI score
Exploits0
Citrix
Citrix
added 2016/04/29 12:0 a.m.7 views

Is it possible to optimize SSH or SFTP connections?

QUESTION: Is it possible to optimize SSH or SFTP connections? ANSWER: SSH and SFTP are encrypted traffic: SSH one-time encrypted data stream and SFTP goes over the SSH port CloudBridge can only optimize with flow-control-only but won't be able to compress it...

7AI score
Exploits0
Positive Technologies
Positive Technologies
added 2016/04/11 12:0 a.m.6 views

PT-2016-2318

Name of the Vulnerable Software and Affected Versions Apache HTTP Server versions 2.4.17 through 2.4.18 Description The issue is related to resource management errors in the Apache HTTP Server. It allows a remote attacker to cause a denial of service by modifying flow-control windows, leading to ...

5.9CVSS6.9AI score0.15327EPSS
Exploits0References32
Apache Httpd
Apache Httpd
added 2016/02/02 12:0 a.m.50 views

Apache Httpd < 2.4.20 : mod_http2: denial of service by thread starvation

By manipulating the flow control windows on streams, a client was able to block server threads for long times, causing starvation of worker threads. Connections could still be opened, but no streams where processed for these. This issue affected HTTP/2 support in 2.4.17 and 2.4.18...

5.9CVSS1.1AI score0.15327EPSS
Exploits0Affected Software1
Intel
Intel
added 2015/08/12 12:0 a.m.19 views

Potential Vulnerability with Intel® LAN Products with SR-IOV

Summary: A potential issue impacting Intel® LAN products with SR-IOV capability is expected to be publicly disclosed by security researchers at an industry conference on August 13, 2015. Description: In Intel® LAN products with SR-IOV capability, the potential exists where, under specific...

6.5AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2015/07/09 12:0 a.m.5 views

The vulnerability of the Cisco IOS operating system, which allows a intruder to trigger a service failure

The vulnerability of the Cisco IOS operating system is related to resource management errors. Exploiting this vulnerability can allow a malicious actor to cause service interruptions by sending IEEE 802.3x control frames remotely...

5.7CVSS5.4AI score0.00874EPSS
Exploits0References2
Rows per page
Query Builder