CVE-2025-12035

An integer overflow condition exists in Bluetooth Host stack, within the btbraclrecv routine a critical path for processing inbound BR/EDR L2CAP traffic...

CVE-2025-12035

CVE-2025-12035 covers an integer overflow in the Bluetooth Host stack (bt_br_acl_recv) affecting BR/EDR L2CAP inbound processing in Zephyr’s Bluetooth implementation. The Red Hat/NVD/CVE listings describe the same issue; PT security entry notes affected Bluetooth host stack and the specific bt_br...

EUVD-2007-4714

Malware in sbrugna...

EUVD-2022-27422

Malicious code in bioql PyPI...

Azure Service Tags Vulnerability: Microsoft Warns of Potential Abuse by Hackers

Microsoft is warning about the potential abuse of Azure Service Tags by malicious actors to forge requests from a trusted service and get around firewall rules, thereby allowing them to gain unauthorized access to cloud resources. "This case does highlight an inherent risk in using service tags a...

CVE-2022-29189 Buffer for inbound DTLS fragments has no limit

Pion DTLS is a Go implementation of Datagram Transport Layer Security. Prior to version 2.1.4, a buffer that was used for inbound network traffic had no upper limit. Pion DTLS would buffer all network traffic from the remote user until the handshake completes or timed out. An attacker could explo...

CVE-2022-22275

Improper Restriction of TCP Communication Channel in HTTP/S inbound traffic from WAN to DMZ bypassing security policy until TCP handshake potentially resulting in Denial of Service DoS attack if a target host is vulnerable...

Input validation

Improper Restriction of TCP Communication Channel in HTTP/S inbound traffic from WAN to DMZ bypassing security policy until TCP handshake potentially resulting in Denial of Service DoS attack if a target host is vulnerable...

CVE-2022-22275

CVE-2022-22275 pertains to SonicOS (SonicWall firewall) and describes an improper restriction of the TCP communication channel for HTTP/S inbound traffic from WAN to DMZ, potentially enabling a DoS attack until the TCP handshake completes. Connected sources (SonicWall PSIRT SNWLID-2022-0004) conf...

CVE-2022-22275

Improper Restriction of TCP Communication Channel in HTTP/S inbound traffic from WAN to DMZ bypassing security policy until TCP handshake potentially resulting in Denial of Service DoS attack if a target host is vulnerable...

What is a firewall ❓ Everything you need to know about

In the tech world, a firewall is a wellbeing network framework that screens and controls moving ever closer affiliation traffic dependent upon destined security rules. A firewall ordinarily draws up a line between a confided in affiliation and an untrusted affiliation, like the Internet.‍ What is...

Visualizing Network Traffic Data to Drive Action

Top 5 multi group queries for analyzing network sensor data We launched the Insight Network Sensor earlier this year and have since seen great adoption from both new and existing customers. The main use case behind this success is the need for network visibility. Customers want to know what is...

Synology Router Manager Access Control Error Vulnerability

Synology Router Manager SRM is a software for configuring and managing Synology routers from Synology Inc. of Taiwan, China. A security vulnerability exists in Synology Router Manager prior to version 1.2.4-8081, which stems from improper access control, and can be exploited by an attacker to...

PT-2020-16749 · Synology · Synology Router Manager

Name of the Vulnerable Software and Affected Versions: Synology Router Manager SRM versions prior to 1.2.4-8081 Description: The issue is related to improper access control, allowing remote attackers to access restricted resources via inbound QuickConnect traffic. This can be exploited by attacke...

SMBGhost – Analysis of CVE-2020-0796

ARCHIVED STORY SMBGhost – Analysis of CVE-2020-0796 By Eoin Carrol - March 12, 2020 The Vulnerability The latest vulnerability in SMBv3 is a “wormable” vulnerability given its potential ability to replicate or spread over network shares using the latest version of the protocol SMB 3.1.1. As of...

CVE-2007-4733

The Aztech DSL600EU router, when WAN access to the web interface is disabled, does not properly block inbound traffic on TCP port 80, which allows remote attackers to connect to the web interface by guessing a TCP sequence number, possibly involving spoofing of an ARP packet, a related issue to...

CVE-2007-4733

The Aztech DSL600EU router, when WAN access to the web interface is disabled, does not properly block inbound traffic on TCP port 80, which allows remote attackers to connect to the web interface by guessing a TCP sequence number, possibly involving spoofing of an ARP packet, a related issue to...

CVE-2007-4733

CVE-2007-4733 describes a vulnerability in the Aztech DSL600EU router where, even when WAN web UI access is disabled, inbound connections to TCP port 80 can reach the web interface by guessing the TCP Initial Sequence Number, potentially aided by ARP spoofing. This is a remote-access risk exploit...