Lucene search
K

64 matches found

OSV
OSV
added 2024/12/13 1:19 p.m.4 views

OESA-2024-2561 iptraf-ng security update

IPTraf is a console-based network monitoring program for Linux that displays information about IP traffic. It returns such information as: Security Fixes: VUL-0: CVE-2024-52949: iptraf-ng: limit interface name lengths to IFNAMSIZCVE-2024-52949...

7.5CVSS6.7AI score0.00727EPSS
Exploits1References2
OSV
OSV
added 2024/12/13 1:19 p.m.4 views

OESA-2024-2560 iptraf-ng security update

IPTraf is a console-based network monitoring program for Linux that displays information about IP traffic. It returns such information as: Security Fixes: VUL-0: CVE-2024-52949: iptraf-ng: limit interface name lengths to IFNAMSIZCVE-2024-52949...

7.5CVSS6.7AI score0.00727EPSS
Exploits1References2
OSV
OSV
added 2024/12/06 3:23 p.m.5 views

OESA-2024-2500 iptraf-ng security update

IPTraf is a console-based network monitoring program for Linux that displays information about IP traffic. It returns such information as: Security Fixes: VUL-0: CVE-2024-52949: iptraf-ng: limit interface name lengths to IFNAMSIZCVE-2024-52949...

7.5CVSS6.7AI score0.00727EPSS
Exploits1References2
SUSE CVE
SUSE CVE
added 2024/03/20 3:48 a.m.4 views

SUSE CVE-2024-26634

In the Linux kernel, the following vulnerability has been resolved: net: fix removing a namespace with conflicting altnames Mark reports a BUG when a net namespace is removed. kernel BUG at net/core/dev.c:11520! Physical interfaces moved outside of initnet get "refunded" to initnet when that...

5.5CVSS6.2AI score0.00227EPSS
Exploits0References15
OSV
OSV
added 2024/03/18 11:15 a.m.6 views

UBUNTU-CVE-2024-26634

In the Linux kernel, the following vulnerability has been resolved: net: fix removing a namespace with conflicting altnames Mark reports a BUG when a net namespace is removed. kernel BUG at net/core/dev.c:11520! Physical interfaces moved outside of initnet get "refunded" to initnet when that...

5.5CVSS6.3AI score0.00227EPSS
Exploits0References15
OSV
OSV
added 2024/01/26 5:15 a.m.5 views

DEBIAN-CVE-2023-38317

An issue was discovered in OpenNDS before 10.1.3. It fails to sanitize the network interface name entry in the configuration file, allowing attackers that have direct or indirect access to this file to execute arbitrary OS commands...

9.8CVSS9AI score0.01096EPSS
Exploits1References1
OSV
OSV
added 2024/01/26 5:15 a.m.2 views

UBUNTU-CVE-2023-38317

An issue was discovered in OpenNDS before 10.1.3. It fails to sanitize the network interface name entry in the configuration file, allowing attackers that have direct or indirect access to this file to execute arbitrary OS commands...

9.8CVSS6AI score0.01096EPSS
Exploits1References3
CNNVD
CNNVD
added 2024/01/26 12:0 a.m.6 views

openNDS Security Vulnerabilities

openNDS is openNDS open source a high-performance, small footprint portal system. A security vulnerability exists in openNDS prior to version 10.1.3 that stems from an inability to clean up a network interface name entry in a configuration file, allowing an attacker with direct or indirect access...

9.8CVSS7.2AI score0.01096EPSS
Exploits1References5
BDU FSTEC
BDU FSTEC
added 2023/11/24 12:0 a.m.5 views

The vulnerability of function sub_391B8 in ASUS RT-AX57 Wi-Fi router’s microprogramming system allows a intruder to execute arbitrary code.

The vulnerability of function sub391B8 in ASUS RT-AX57 Wi-Fi routers exists due to insufficient verification of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by using a specially crafted request to the lanifname field...

10CVSS5.9AI score
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/11/24 12:0 a.m.4 views

The vulnerability of the sub_ln function in ASUS RT-AX57 Wi-Fi router’s microprogramming system allows a intruder to execute arbitrary code.

The vulnerability of the subln function in the 2C318 microprogrammed Wi-Fi router software from ASUS RT-AX57 exists due to insufficient verification of input data. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code using a specially created request to the...

10CVSS6AI score
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2023/10/09 12:0 a.m.4 views

PT-2023-7094 · Asus · Asus Rt-Ax57

Name of the Vulnerable Software and Affected Versions: ASUS RT-AX57 version 3.0.0.4 386 52041 Description: The issue exists due to insufficient input validation in the sub 391B8 function of the Wi-Fi router's firmware, allowing a remote attacker to execute arbitrary code via a crafted request to...

10CVSS7.4AI score
Exploits0References5
Positive Technologies
Positive Technologies
added 2023/10/09 12:0 a.m.3 views

PT-2023-7096 · Asus · Asus Rt-Ax57

Name of the Vulnerable Software and Affected Versions: ASUS RT-AX57 version 3.0.0.4 386 52041 Description: The issue exists due to insufficient input validation in the sub ln 2C318 function of the Wi-Fi router's microprogram. Exploitation of this issue may allow a remote attacker to execute...

10CVSS7.7AI score
Exploits0References5
OSV
OSV
added 2023/08/15 7:15 p.m.4 views

CVE-2023-38863

An issue in COMFAST CF-XR11 v.2.7.2 allows an attacker to execute arbitrary code via the ifname and mac parameters in the sub410074 function at bin/webmgnt...

9.8CVSS6.1AI score0.01081EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2023/04/13 12:0 a.m.10 views

PT-2023-2599 · NetGear · Netgear Srx5308

Name of the Vulnerable Software and Affected Versions: Netgear SRX5308 versions up to 4.3.5-3 Description: A vulnerability exists in the Web Management Interface of the Netgear SRX5308 due to insufficient input validation. The issue affects an unknown functionality of the file...

4.8CVSS4AI score0.00649EPSS
Exploits1References8
SUSE CVE
SUSE CVE
added 2023/02/15 5:27 a.m.4 views

SUSE CVE-2014-4910

Directory traversal vulnerability in tools/backlighthelper.c in X.Org xf86-video-intel 2.99.911 allows remote attackers to create or overwrite arbitrary files via a .. dot dot in the interface name...

4.6CVSS7.1AI score0.00975EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 4:11 a.m.3 views

SUSE CVE-2019-13164

qemu-bridge-helper.c in QEMU 3.1 and 4.0.0 does not ensure that a network interface name obtained from bridge.conf or a --br=bridge option is limited to the IFNAMSIZ size, which can lead to an ACL bypass...

4.7CVSS6.8AI score0.00524EPSS
Exploits0References12
OSV
OSV
added 2019/11/14 12:14 a.m.3 views

USN-4191-1 qemu vulnerabilities

It was discovered that the LSI SCSI adapter emulator implementation in QEMU did not properly validate executed scripts. A local attacker could use this to cause a denial of service. CVE-2019-12068 Sergej Schumilo, Cornelius Aschermann and Simon Wörner discovered that the qxl paravirtual graphics...

8.8CVSS7.3AI score0.16658EPSS
Exploits4References6
ATTACKERKB
ATTACKERKB
added 2019/10/10 2:15 p.m.5 views

CVE-2019-13164

qemu-bridge-helper.c in QEMU 3.1 and 4.0.0 does not ensure that a network interface name obtained from bridge.conf or a --br=bridge option is limited to the IFNAMSIZ size, which can lead to an ACL bypass...

7.8CVSS5.5AI score0.00524EPSS
Exploits0References17
OSV
OSV
added 2019/07/03 2:15 p.m.1 views

DEBIAN-CVE-2019-13164

qemu-bridge-helper.c in QEMU 3.1 and 4.0.0 does not ensure that a network interface name obtained from bridge.conf or a --br=bridge option is limited to the IFNAMSIZ size, which can lead to an ACL bypass...

7.8CVSS9.1AI score0.00524EPSS
Exploits0References1
OSV
OSV
added 2019/07/03 2:15 p.m.1 views

UBUNTU-CVE-2019-13164

qemu-bridge-helper.c in QEMU 3.1 and 4.0.0 does not ensure that a network interface name obtained from bridge.conf or a --br=bridge option is limited to the IFNAMSIZ size, which can lead to an ACL bypass...

7.8CVSS6.7AI score0.00524EPSS
Exploits0References7
Rows per page
Query Builder