64 matches found
OESA-2024-2561 iptraf-ng security update
IPTraf is a console-based network monitoring program for Linux that displays information about IP traffic. It returns such information as: Security Fixes: VUL-0: CVE-2024-52949: iptraf-ng: limit interface name lengths to IFNAMSIZCVE-2024-52949...
OESA-2024-2560 iptraf-ng security update
IPTraf is a console-based network monitoring program for Linux that displays information about IP traffic. It returns such information as: Security Fixes: VUL-0: CVE-2024-52949: iptraf-ng: limit interface name lengths to IFNAMSIZCVE-2024-52949...
OESA-2024-2500 iptraf-ng security update
IPTraf is a console-based network monitoring program for Linux that displays information about IP traffic. It returns such information as: Security Fixes: VUL-0: CVE-2024-52949: iptraf-ng: limit interface name lengths to IFNAMSIZCVE-2024-52949...
SUSE CVE-2024-26634
In the Linux kernel, the following vulnerability has been resolved: net: fix removing a namespace with conflicting altnames Mark reports a BUG when a net namespace is removed. kernel BUG at net/core/dev.c:11520! Physical interfaces moved outside of initnet get "refunded" to initnet when that...
UBUNTU-CVE-2024-26634
In the Linux kernel, the following vulnerability has been resolved: net: fix removing a namespace with conflicting altnames Mark reports a BUG when a net namespace is removed. kernel BUG at net/core/dev.c:11520! Physical interfaces moved outside of initnet get "refunded" to initnet when that...
DEBIAN-CVE-2023-38317
An issue was discovered in OpenNDS before 10.1.3. It fails to sanitize the network interface name entry in the configuration file, allowing attackers that have direct or indirect access to this file to execute arbitrary OS commands...
UBUNTU-CVE-2023-38317
An issue was discovered in OpenNDS before 10.1.3. It fails to sanitize the network interface name entry in the configuration file, allowing attackers that have direct or indirect access to this file to execute arbitrary OS commands...
openNDS Security Vulnerabilities
openNDS is openNDS open source a high-performance, small footprint portal system. A security vulnerability exists in openNDS prior to version 10.1.3 that stems from an inability to clean up a network interface name entry in a configuration file, allowing an attacker with direct or indirect access...
The vulnerability of function sub_391B8 in ASUS RT-AX57 Wi-Fi router’s microprogramming system allows a intruder to execute arbitrary code.
The vulnerability of function sub391B8 in ASUS RT-AX57 Wi-Fi routers exists due to insufficient verification of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by using a specially crafted request to the lanifname field...
The vulnerability of the sub_ln function in ASUS RT-AX57 Wi-Fi router’s microprogramming system allows a intruder to execute arbitrary code.
The vulnerability of the subln function in the 2C318 microprogrammed Wi-Fi router software from ASUS RT-AX57 exists due to insufficient verification of input data. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code using a specially created request to the...
PT-2023-7094 · Asus · Asus Rt-Ax57
Name of the Vulnerable Software and Affected Versions: ASUS RT-AX57 version 3.0.0.4 386 52041 Description: The issue exists due to insufficient input validation in the sub 391B8 function of the Wi-Fi router's firmware, allowing a remote attacker to execute arbitrary code via a crafted request to...
PT-2023-7096 · Asus · Asus Rt-Ax57
Name of the Vulnerable Software and Affected Versions: ASUS RT-AX57 version 3.0.0.4 386 52041 Description: The issue exists due to insufficient input validation in the sub ln 2C318 function of the Wi-Fi router's microprogram. Exploitation of this issue may allow a remote attacker to execute...
CVE-2023-38863
An issue in COMFAST CF-XR11 v.2.7.2 allows an attacker to execute arbitrary code via the ifname and mac parameters in the sub410074 function at bin/webmgnt...
PT-2023-2599 · NetGear · Netgear Srx5308
Name of the Vulnerable Software and Affected Versions: Netgear SRX5308 versions up to 4.3.5-3 Description: A vulnerability exists in the Web Management Interface of the Netgear SRX5308 due to insufficient input validation. The issue affects an unknown functionality of the file...
SUSE CVE-2014-4910
Directory traversal vulnerability in tools/backlighthelper.c in X.Org xf86-video-intel 2.99.911 allows remote attackers to create or overwrite arbitrary files via a .. dot dot in the interface name...
SUSE CVE-2019-13164
qemu-bridge-helper.c in QEMU 3.1 and 4.0.0 does not ensure that a network interface name obtained from bridge.conf or a --br=bridge option is limited to the IFNAMSIZ size, which can lead to an ACL bypass...
USN-4191-1 qemu vulnerabilities
It was discovered that the LSI SCSI adapter emulator implementation in QEMU did not properly validate executed scripts. A local attacker could use this to cause a denial of service. CVE-2019-12068 Sergej Schumilo, Cornelius Aschermann and Simon Wörner discovered that the qxl paravirtual graphics...
CVE-2019-13164
qemu-bridge-helper.c in QEMU 3.1 and 4.0.0 does not ensure that a network interface name obtained from bridge.conf or a --br=bridge option is limited to the IFNAMSIZ size, which can lead to an ACL bypass...
DEBIAN-CVE-2019-13164
qemu-bridge-helper.c in QEMU 3.1 and 4.0.0 does not ensure that a network interface name obtained from bridge.conf or a --br=bridge option is limited to the IFNAMSIZ size, which can lead to an ACL bypass...
UBUNTU-CVE-2019-13164
qemu-bridge-helper.c in QEMU 3.1 and 4.0.0 does not ensure that a network interface name obtained from bridge.conf or a --br=bridge option is limited to the IFNAMSIZ size, which can lead to an ACL bypass...