CVE-2025-47395

Transient DOS while parsing a WLAN management frame with a Vendor Specific Information Element...

CVE-1999-0801

BMC Patrol allows remote attackers to gain access to an agent by spoofing frames...

CVE-1999-0288

The WINS server in Microsoft Windows NT 4.0 before SP4 allows remote attackers to cause a denial of service process termination via invalid UDP frames to port 137 NETBIOS Name Service, as demonstrated via a flood of random packets...

CVE-2025-14631 Null Pointer Dereference Vulnerability in Malformed 802.11 Frame of TP-Link Archer BE400

A NULL Pointer Dereference vulnerability in TP-Link Archer BE400 V1802.11 modules allows an adjacent attacker to cause a denial-of-service DoS by triggering a device reboot. This issue affects Archer BE400: xi 1.1.0 Build 20250710 rel.14914...

CVE-2025-14631

The CVE-2025-14631 vulnerability is a NULL pointer dereference in TP-Link Archer BE400 V1 (802.11 modules) that enables an adjacent attacker to cause a denial-of-service by triggering a device reboot. Affected device: Archer BE400 with 1.1.0 build 20250710 rel.14914. Root cause is unspecified in ...

CVE-2025-14631 Null Pointer Dereference Vulnerability in Malformed 802.11 Frame of TP-Link Archer BE400

A NULL Pointer Dereference vulnerability in TP-Link Archer BE400 V1802.11 modules allows an adjacent attacker to cause a denial-of-service DoS by triggering a device reboot. This issue affects Archer BE400: xi 1.1.0 Build 20250710 rel.14914...

Qualcomm Chipsets 安全漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that could result in a transient denial of service when parsing WLAN management frames that contain vendor-specific information elements...

Cisco IOS XE Software for Catalyst 9000 Series Switches DoS (cisco-sa-cat9k-PtmD7bgy)

According to its self-reported version, Cisco IOS-XE Software is affected by a vulnerability. - A vulnerability in the handling of certain Ethernet frames in Cisco IOS XE Software for Catalyst 9000 Series Switches could allow an unauthenticated, adjacent attacker to cause an egress port to become...

PT-2026-8123

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A deadlock situation can occur in the Linux kernel’s ath12k driver while flushing management frames. This happens when a management frame is queued for transmission and ath12k mac op flu...

PT-2026-7642

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 145.0.7632.45 Description A flaw exists in Google Chrome due to insufficient policy enforcement in Frames. This allows a remote attacker to perform UI spoofing using a specially crafted HTML page. The Chromium...

PT-2026-25373

Summary The Rust implementation of Yamux can panic when processing a crafted inbound Data frame that sets SYN and uses a body length greater than DEFAULT CREDIT e.g. 262145. On the first packet of a new inbound stream, stream state is created and a receiver is queued before oversized-body...

PT-2026-8216

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the ALSA subsystem related to USB audio handling. Specifically, an issue exists where the number of frames calculated for data URBs can exceed the...

Security Bulletin: IBM Storage Ceph is vulnerable to Exposure of Sensitive Information Through Data Queries in Golang Go (CVE-2023-45288)

Summary Golang Go is used by IBM Storage Ceph as part of RGW and in assorted other locations. CVE-2023-45288 Vulnerability Details CVEID:CVE-2023-45288 DESCRIPTION: An attacker may cause an HTTP/2 endpoint to read arbitrary amounts of header data by sending an excessive number of CONTINUATION...

CVE-2022-50817

In the Linux kernel, the following vulnerability has been resolved: net: hsr: avoid possible NULL deref in skbclone syzbot got a crash 1 in skbclone, caused by a bug in hsrgetuntaggedframe. When/if createstrippedskbhsr returns NULL, we must not attempt to call skbclone. While we are at it, replac...

EUVD-2023-60266

In the Linux kernel, the following vulnerability has been resolved: iommufd: Set end correctly when doing batch carry Even though the test suite covers this it somehow became obscured that this wasn't working. The test iommufdioas.mockdomain.accessdomaindestory would blow up rarely. end should be...

CVE-2023-54052

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7921: fix skb leak by txs missing in AMSDU txs may be dropped if the frame is aggregated in AMSDU. When the problem shows up, some SKBs would be hold in driver to cause network stopped temporarily. Even if the probl...

CVE-2023-54052

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7921: fix skb leak by txs missing in AMSDU txs may be dropped if the frame is aggregated in AMSDU. When the problem shows up, some SKBs would be hold in driver to cause network stopped temporarily. Even if the probl...

CVE-2025-68743 mshv: Fix create memory region overlap check

In the Linux kernel, the following vulnerability has been resolved: mshv: Fix create memory region overlap check The current check is incorrect; it only checks if the beginning or end of a region is within an existing region. This doesn't account for userspace specifying a region that begins befo...

PT-2025-52757

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A race condition exists within the veth module when handling XDP eXpress Data Path with no direct return frames. Specifically, the issue arises from concurrent calls to veth pool in...

CVE-2025-34457

wb2osz/direwolf Dire Wolf versions up to and including 1.8, prior to commit 694c954, contain a stack-based buffer overflow vulnerability in the function kissrecbyte located in src/kissframe.c. When processing crafted KISS frames that reach the maximum allowed frame length MAXKISSLEN, the function...