CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Linux kernel before after 2.6.12 and before 2.6.13.1 might allow attackers to cause a denial of service Oops via certain IPSec packets that cause alignment problems in standard multi-block cipher processors. NOTE: it is not clear whether this issue can be triggered by an attacker...

7.8CVSS6.9AI score0.00392EPSS

Exploits0References1

CVE•added 2020/02/17 11:24 p.m.•82 views

CVE-2020-1816

CVE-2020-1816 affects Huawei NIP6800 (V500R001C30, V500R001C60SPC500, V500R005C00) and Secospace USG6600/USG9500 (V500R001C30SPC200, V500R001C30SPC600, V500R001C60SPC500, V500R005C00). The vulnerability arises from improper processing of specific IPsec packets, allowing remote attackers to send c...

7.5CVSS7.5AI score0.00397EPSS

Exploits0References1Affected Software1

OSV•added 2018/03/09 3:29 p.m.•8 views

CVE-2018-6916

In FreeBSD before 11.1-STABLE, 11.1-RELEASE-p7, 10.4-STABLE, 10.4-RELEASE-p7, and 10.3-RELEASE-p28, the kernel does not properly validate IPsec packets coming from a trusted host. Additionally, a use-after-free vulnerability exists in the IPsec AH handling code. This issue could cause a system...

9.8CVSS6.6AI score0.00491EPSS

Exploits0References2

CNVD•added 2015/04/26 12:0 a.m.•2 views

Linux kernel AESNI buffer overflow vulnerability

Linux kernel is an open source operating system. A buffer overflow vulnerability exists in the 'driverrfc4106decrypt' function in the Linux kernel /arch/x86/crypto/aesni-intelglue.c file, which allows a local attacker to exploit the vulnerability by sending specially crafted IPSec packets to cras...

9.3CVSS6.8AI score0.0411EPSS

Exploits0References1

NVD•added 2014/06/25 11:19 a.m.•11 views

CVE-2014-3299

Cisco IOS allows remote authenticated users to cause a denial of service device reload via malformed IPsec packets, aka Bug ID CSCui79745...

6.8CVSS8.7AI score0.00952EPSS

Exploits0References4

Cvelist•added 2014/06/25 10:0 a.m.•17 views

CVE-2014-3299

Cisco IOS allows remote authenticated users to cause a denial of service device reload via malformed IPsec packets, aka Bug ID CSCui79745...

8.7AI score0.00952EPSS

Exploits0References4

OSV•added 2006/08/29 12:4 a.m.•6 views

CVE-2006-4436

isakmpd in OpenBSD 3.8, 3.9, and possibly earlier versions, creates Security Associations SA with a replay window of size 0 when isakmpd acts as a responder during SA negotiation, which allows remote attackers to replay IPSec packets and bypass the replay protection...

6.6AI score

Exploits0References9

Cvelist•added 2006/08/29 12:0 a.m.•17 views

CVE-2006-4436

6.6AI score0.00669EPSS

Exploits0References9

Prion•added 2006/03/23 11:6 a.m.•14 views

Code injection

A "programming error" in fastipsec in FreeBSD 4.8-RELEASE through 6.1-STABLE and NetBSD 2 through 3 does not properly update the sequence number associated with a Security Association, which allows packets to pass sequence number checks and allows remote attackers to capture IPSec packets and...

7.5CVSS6.8AI score0.012EPSS

Exploits0References7Affected Software2

Cvelist•added 2000/03/22 5:0 a.m.•19 views

CVE-1999-0727

A kernel leak in the OpenBSD kernel allows IPsec packets to be sent unencrypted...

6.3AI score0.0061EPSS

Exploits0References1

NVD•added 1999/08/06 4:0 a.m.•13 views

CVE-1999-0727

A kernel leak in the OpenBSD kernel allows IPsec packets to be sent unencrypted...

5CVSS6.3AI score0.0061EPSS

Exploits0References1