CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

24 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•7 views

Astra Linux - уязвимость в openvswitch

A flaw was discovered in Open vSwitch, where multiple versions are vulnerable to crafted Geneve packets, which may lead to a denial of service and invalid memory accesses. Triggering this issue requires that hardware offloading via the netlink path is enabled...

7.5CVSS6.8AI score0.00045EPSS

Exploits0References2

Tenable Nessus•added 2025/08/12 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2024-35884

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: udp: do not accept non-tunnel GSO skbs landing in a tunnel When rx-udp-gro-forwarding is...

8.8CVSS6.2AI score0.00018EPSS

Exploits0References2

Tenable Nessus•added 2025/06/09 12:0 a.m.•4 views

NewStart CGSL MAIN 7.02 : openvswitch Multiple Vulnerabilities (NS-SA-2025-0090)

The remote NewStart CGSL host, running version MAIN 7.02, has openvswitch packages installed that are affected by multiple vulnerabilities: - A flaw was found in Open vSwitch that allows ICMPv6 Neighbor Advertisement packets between virtual machines to bypass OpenFlow rules. This issue may allow ...

7.5CVSS6.6AI score0.00045EPSS

Exploits0References5

F5 Networks•added 2024/06/06 1:49 a.m.•35 views

K000139922: Open vSwitch vulnerabilities CVE-2023-3966 and CVE-2023-5366

Security Advisory Description CVE-2023-3966 A flaw was found in Open vSwitch where multiple versions are vulnerable to crafted Geneve packets, which may result in a denial of service and invalid memory accesses. Triggering this issue requires that hardware offloading via the netlink path is...

7.5CVSS6.3AI score0.00045EPSS

Exploits0

OSV•added 2024/05/19 9:15 a.m.•2 views

DEBIAN-CVE-2024-35884

In the Linux kernel, the following vulnerability has been resolved: udp: do not accept non-tunnel GSO skbs landing in a tunnel When rx-udp-gro-forwarding is enabled UDP packets might be GROed when being forwarded. If such packets might land in a tunnel this can cause various issues and...

8.8CVSS5.6AI score0.00018EPSS

Exploits0References1

NVD•added 2024/05/19 9:15 a.m.•20 views

CVE-2024-35884

8.8CVSS6.2AI score0.00018EPSS

Exploits0References8

UbuntuCve•added 2024/05/19 9:15 a.m.•22 views

CVE-2024-35884

8.8CVSS6.2AI score0.00018EPSS

Exploits0References20

OSV•added 2024/05/19 9:15 a.m.•0 views

UBUNTU-CVE-2024-35884

8.8CVSS6.2AI score0.00018EPSS

Exploits0References21

Cvelist•added 2024/05/19 8:34 a.m.•38 views

CVE-2024-35884 udp: do not accept non-tunnel GSO skbs landing in a tunnel

6.2AI score0.00018EPSS

Exploits0References6

OSV•added 2024/03/12 11:34 a.m.•2 views

USN-6690-1 openvswitch vulnerabilities

Timothy Redaelli and Haresh Khandelwal discovered that Open vSwitch incorrectly handled certain crafted Geneve packets when hardware offloading via the netlink path is enabled. A remote attacker could possibly use this issue to cause Open vSwitch to crash, leading to a denial of service...

7.5CVSS6.9AI score0.00045EPSS

Exploits0References3

RedHat Linux•added 2024/03/07 6:27 p.m.•3 views

openvswsitch: ovs-vswitch fails to recover after malformed geneve metadata packet

A flaw was found in Open vSwitch where multiple versions are vulnerable to crafted Geneve packets, which may result in a denial of service and invalid memory accesses. Triggering this issue requires that hardware offloading via the netlink path is enabled...

7.5CVSS5.7AI score0.00045EPSS

Exploits0References4

Tenable Nessus•added 2024/03/07 12:0 a.m.•31 views

RHEL 8 : openvswitch2.17 (RHSA-2024:1234)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:1234 advisory. Open vSwitch provides standard network bridging functions and support for the OpenFlow protocol for remote per-flow control of traffic...

7.5CVSS6.9AI score0.00045EPSS

Exploits0References7

Tenable Nessus•added 2024/03/02 12:0 a.m.•29 views

SUSE SLES15 / openSUSE 15 Security Update : openvswitch3 (SUSE-SU-2024:0738-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:0738-1 advisory. - A flaw was found in Open vSwitch where multiple versions are vulnerable to crafted Geneve packets, which may result in a...

7.5CVSS7AI score0.00045EPSS

Exploits0References4

SUSE CVE•added 2024/02/28 3:48 a.m.•1 views

SUSE CVE-2023-3966

7.5CVSS6.6AI score0.00045EPSS

Exploits0References12

OSV•added 2024/02/23 11:7 a.m.•3 views

OESA-2024-1207 openvswitch security update

Open vSwitch is a production quality, multilayer virtual switch licensed under the open source Apache 2.0 license. Security Fixes: A flaw was found in Open vSwitch where multiple versions are vulnerable to crafted Geneve packets, which may result in a denial of service and invalid memory accesses...

7.5CVSS6.7AI score0.00045EPSS

Exploits0References2

OSV•added 2024/02/22 1:15 p.m.•2 views

AZL-35089 CVE-2023-3966 affecting package openvswitch for versions less than 3.3.0-1

7.5CVSS6.5AI score0.00045EPSS

Exploits0References1