CVE-2026-48682

FastNetMon Community Edition through 1.2.9 contains an out-of-bounds read in the IPv4 packet parser. In src/simplepacketparserng.cpp, after validating that the packet contains at least sizeofipv4headert bytes 20 bytes, the code advances the localpointer by '4 ipv4header-getihl' line 164 without...

EUVD-2025-20475

Malicious code in bioql PyPI...

EUVD-2025-23791

Malicious code in bioql PyPI...

CVE-2025-27072

Information disclosure while processing a packet at EAVB BE side with invalid header length...

CVE-2025-27072

Information disclosure while processing a packet at EAVB BE side with invalid header length...

CVE-2025-27057

Transient DOS while handling beacon frames with invalid IE header length...

CVE-2025-27057

CVE-2025-27057 is a Qualcomm WLAN/IEEE 802.11-related issue where a transient Denial of Service can occur while processing beacon frames that contain an invalid Information Element header length. The CVE entry lists a network attack vector with no user interaction and a high availability impact, ...

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerabilities have been resolved: nvme-tcp: fixed potential memory corruption in nvmetcprecvpdu The nvmetcprecvpdu function does not check the validity of the header length. When header digests are enabled, a target might send a packet with an invalid header...

kernel: nvme-tcp: fix potential memory corruption in nvme_tcp_recv_pdu()

An unchecked buffer bounds flaw was found in the Linux kernel's NVMe TCP Fabrics driver. An attacker with the ability to send a crafted packet to an affected NVMe host could exploit this flaw to alter kernel memory, leading to an escalation of privileges or a compromise of system integrity or...

UBUNTU-CVE-2025-21927

In the Linux kernel, the following vulnerability has been resolved: nvme-tcp: fix potential memory corruption in nvmetcprecvpdu nvmetcprecvpdu doesn't check the validity of the header length. When header digests are enabled, a target might send a packet with an invalid header length e.g. 255,...

PT-2025-14308

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A potential memory corruption issue has been identified in the Linux kernel, specifically in the nvme-tcp module. The nvme tcp recv pdu function does not validate the header length, whic...

CVE-2024-48981

An issue was discovered in MBed OS 6.16.0. During processing of HCI packets, the software dynamically determines the length of the packet header by looking up the identifying first byte and matching it against a table of possible lengths. The initial parsing function, hciTrSerialRxIncoming does n...

PT-2024-33311 · Arm · Mbed Os

Name of the Vulnerable Software and Affected Versions: MBed OS version 6.16.0 Description: An issue was discovered in the hci parsing software of MBed OS, where it dynamically determines the length of certain hci packets by reading a byte from its header. The software assumes this value to be...

PT-2022-9878 · Ieee +1 · 802.2 +3

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue allows Layer 2 network filtering capabilities, such as IPv6 RA guard, to be bypassed. This can be achieved by utilizing LLC/SNAP headers with...