CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в libpcap

The sf-pcapng.c file in libpcap before version 1.9.1 does not properly validate the PHB header length before allocating memory...

5.3CVSS6.4AI score0.03198EPSS

Exploits0References2

Cvelist•added 2026/04/22 1:54 p.m.•23 views

CVE-2026-31472 xfrm: iptfs: validate inner IPv4 header length in IPTFS payload

In the Linux kernel, the following vulnerability has been resolved: xfrm: iptfs: validate inner IPv4 header length in IPTFS payload Add validation of the inner IPv4 packet totlen and ihl fields parsed from decrypted IPTFS payloads in inputprocesspayload. A crafted ESP packet containing an inner...

0.00015EPSS

Exploits0References3

Positive Technologies•added 2026/04/22 12:0 a.m.•2 views

PT-2026-34377

In the Linux kernel, the following vulnerability has been resolved: xfrm: iptfs: validate inner IPv4 header length in IPTFS payload Add validation of the inner IPv4 packet tot len and ihl fields parsed from decrypted IPTFS payloads in input process payload. A crafted ESP packet containing an inne...

5.6AI score0.00015EPSS

Exploits0References4

OSV•added 2025/12/24 11:15 a.m.•0 views

UBUNTU-CVE-2025-68362

In the Linux kernel, the following vulnerability has been resolved: wifi: rtl818x: rtl8187: Fix potential buffer underflow in rtl8187rxcb The rtl8187rxcb calculates the rx descriptor header address by subtracting its size from the skb tail pointer. However, it does not validate if the received...

5.9AI score0.00066EPSS

Exploits0References35

CVE•added 2025/12/24 10:32 a.m.•8 views

CVE-2025-68362

The CVE-2025-68362 entry documents a buffer underflow in the Linux kernel’s wifi rtl8187/rtl8187b path (rtl8187_rx_cb). The issue arises when a truncated skb (skb->len from urb->actual_length) is used to calculate the rx descriptor header address, potentially reading memory before the skb s...

6.2AI score0.00066EPSS

Exploits0References8

Cvelist•added 2024/11/22 3:41 p.m.•22 views

CVE-2024-52802 RIOT-OS missing dhcpv6_opt_t minimum header length check

RIOT is an operating system for internet of things IoT devices. In version 2024.04 and prior, the function parseadvertise, located in /sys/net/applicationlayer/dhcpv6/client.c, has no minimum header length check for dhcpv6optt after processing dhcpv6msgt. This omission could lead to an out-of-bou...

7.5CVSS0.00404EPSS

Exploits1References1

CNNVD•added 2023/02/01 12:0 a.m.•2 views

Open5GS 安全漏洞

Open5GS is an open source implementation in C of 5G Core and Epc, the core network of the Lte/Nr network. Open5GS suffers from a denial of service vulnerability that stems from insufficient validation of the extended header length, which can be exploited by an attacker to cause a denial of servic...

7.5CVSS6.6AI score0.00508EPSS

Exploits0References2