UBUNTU-CVE-2025-71148

In the Linux kernel, the following vulnerability has been resolved: net/handshake: restore destructor on submit failure handshakereqsubmit replaces sk-skdestruct but never restores it when submission fails before the request is hashed. handshakeskdestruct then returns early and the original...

CVE-2025-68775

CVE-2025-68775 concerns the Linux kernel, specifically the net/handshake cancellation path. The flaw arises when a handshake request is cancelled twice: the first cancellation removes the request from handshake_net->hn_requests but leaves it in handshake_rhashtbl; a second cancellation can cau...

Cross-site Websocket Hijacking (CSWSH)

github.com/rancher/rancher is vulnerable to cross-site websocket hijacking CSWSH. It does not check the Origin header in the clients handshake request for trusted origin, allowing an attacker to send an authenticated request to Rancher Server using a Rancher with the privilege of a victim...

IBM Solid Database < 6.5 Service Pack 2 Handshake Request Username Field Remote Code Execution

Binary data 5599.prm...

SAP MaxDB Malformed Handshake Request Remote Code Execution

No description provided by source. !/usr/bin/python Exploit title: SAP MaxDB Malformed Handshake Request Remote Code Execution Date: 2010.03.26 Author: S2 Crew Hungary Software link: sap.comhttp://sap.com Version: 7.7.06.09 Tested on: Windows XP SP2 EN CVE: ZDI-10-032 Code: Trying 172.16.29.133...

SAP MaxDB Malformed Handshake Request Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of SAP MaxDB. Authentication is not required to exploit this vulnerability. The specific flaw exists within the serv.exe process which listens by default on TCP port 7210. The process trusts a value...