Lucene search
+L

10 matches found

redhat
redhat
added 2026/04/10 2:24 p.m.3 views

golang.org/x/crypto/ssh/agent: SSH Agent servers: Denial of Service due to malformed messages

A flaw was found in the SSH Agent servers component golang.org/x/crypto/ssh/agent. This vulnerability allows a remote attacker to cause a denial of service DoS by sending a specially crafted, malformed message during new identity requests. The server fails to validate the size of these messages,...

5.3CVSS6.1AI score0.00484EPSS
Exploits0References8
github
github
added 2025/11/19 11:16 p.m.12 views

golang.org/x/crypto/ssh/agent vulnerable to panic if message is malformed due to out of bounds read

SSH Agent servers do not validate the size of messages when processing new identity requests, which may cause the program to panic if the message is malformed due to an out of bounds read...

5.3CVSS7AI score0.00484EPSS
Exploits0References6Affected Software1
debiancve
debiancve
added 2025/11/19 8:33 p.m.8 views

CVE-2025-47914

SSH Agent servers do not validate the size of messages when processing new identity requests, which may cause the program to panic if the message is malformed due to an out of bounds read...

5.3CVSS7AI score0.00484EPSS
Exploits0
euvd
euvd
added 2025/11/17 10:47 p.m.4 views

EUVD-2025-197894

Multiple out-of-bounds read and write vulnerabilities exist in the ControlVault WBDI Driver Broadcom Storage Adapter functionality of Dell ControlVault3 prior to 5.15.14.19 and Dell ControlVault3 Plus prior to 6.2.36.47. A specially crafted WinBioControlUnit call can lead to memory corruption. An...

7.3CVSS6.4AI score0.0014EPSS
Exploits0References3
euvd
euvd
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-2358

Malware in sbrugna...

9.4CVSS9AI score0.00981EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2025/01/22 6:40 p.m.4 views

CVE-2024-11166 Traffic Alert and Collision Avoidance System (TCAS) II has an External Control of System or Configuration Setting vulnerability

For TCAS II systems using transponders compliant with MOPS earlier than RTCA DO-181F, an attacker can impersonate a ground station and issue a Comm-A Identity Request. This action can set the Sensitivity Level Control SLC to the lowest setting and disable the Resolution Advisory RA, leading to a...

7.1CVSS6.5AI score0.00275EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2025/01/22 12:0 a.m.5 views

PT-2025-1628 · Tcas Ii · Tcas Ii

Name of the Vulnerable Software and Affected Versions: TCAS II systems using transponders compliant with MOPS earlier than RTCA DO-181F Description: The issue allows an attacker to impersonate a ground station and issue a Comm-A Identity Request. This action can set the Sensitivity Level Control...

7.1CVSS6.3AI score0.00275EPSS
Exploits0References5
nvd
nvd
added 2020/03/05 9:15 a.m.20 views

CVE-2019-10554

Multiple Read overflows issue due to improper length check while decoding Identity Request in CSdomain/Authentication Reject in CS domain/ PRAU accept/while logging DL message in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT,...

9.4CVSS9.2AI score0.00981EPSS
Exploits0References1
prion
prion
added 2020/03/05 9:15 a.m.17 views

Design/Logic Flaw

Multiple Read overflows issue due to improper length check while decoding Identity Request in CSdomain/Authentication Reject in CS domain/ PRAU accept/while logging DL message in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT,...

9.4CVSS9.1AI score0.00981EPSS
Exploits0References1
osv
osv
added 2019/06/04 7:29 p.m.7 views

CVE-2019-5307

Some Huawei 4G LTE devices, P30 versions before ELE-AL00 9.1.0.162C01E160R1P12/C01E160R2P1 and P30 Pro versions before VOG-AL00 9.1.0.162C01E160R1P12/C01E160R2P1, are exposed to a message replay vulnerability. For the sake of better compatibility, these devices implement a less strict check on th...

4.2CVSS5.8AI score0.00273EPSS
Exploits0References1
Rows per page
Query Builder