Lucene search
+L

38 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/28 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2026-53228

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ipv6: sit: reload inner IPv6 header after GSO offloads ipip6tunnelxmit caches the inner IPv6 header pointer at function entry and continues using it after...

9.8CVSS6AI score0.00559EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/06/25 8:39 a.m.33 views

CVE-2026-53228 ipv6: sit: reload inner IPv6 header after GSO offloads

In the Linux kernel, the following vulnerability has been resolved: ipv6: sit: reload inner IPv6 header after GSO offloads ipip6tunnelxmit caches the inner IPv6 header pointer at function entry and continues using it after iptunnelhandleoffloads. For GSO skbs, iptunnelhandleoffloads calls...

9.8CVSS0.00559EPSS
Exploits0References8
OSV
OSV
added 2026/06/24 4:29 p.m.3 views

CVE-2026-53006 ipv6: fix possible UAF in icmpv6_rcv()

In the Linux kernel, the following vulnerability has been resolved: ipv6: fix possible UAF in icmpv6rcv Caching saddr and daddr before pskbpull is problematic since skb-head can change. Remove these temporary variables: - We only access &ipv6hdrskb-saddr and &ipv6hdrskb-daddr when netdbgratelimit...

9.8CVSS5.8AI score0.00385EPSS
Exploits0References14
Positive Technologies
Positive Technologies
added 2026/05/12 12:0 a.m.22 views

PT-2026-46007

Name of the Vulnerable Software and Affected Versions Linux kernel versions 6.2 and later Description A desynchronization issue exists in the nft inner parse l2l3 function when processing inner IPv6 packets. While the ipv6 find hdr function correctly calculates the transport header offset by...

9.4CVSS5.3AI score0.00322EPSS
Exploits0
OSV
OSV
added 2026/04/25 8:47 a.m.2 views

CVE-2026-31685 netfilter: ip6t_eui64: reject invalid MAC header for all packets

In the Linux kernel, the following vulnerability has been resolved: netfilter: ip6teui64: reject invalid MAC header for all packets eui64mt6 derives a modified EUI-64 from the Ethernet source address and compares it with the low 64 bits of the IPv6 source address. The existing guard only rejects ...

9.4CVSS6AI score0.00337EPSS
Exploits0References11
AstraLinux
AstraLinux
added 2026/01/27 5:1 a.m.2 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: rpl: Fix use-after-free in rpldosrhinline. Running lwtdstcacherefloop.sh in selftest with KASAN triggers the splat below 0. rpldosrhinline fetches ipv6hdrskb and accesses it after skbcowhead, which is illegal as the header could ...

7.8CVSS6.3AI score0.0015EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/12/29 6:32 a.m.34 views

CVE-2025-15176 Open5GS PFCP Session Establishment Request rule-match.c ogs_pfcp_pdr_rule_find_by_packet assertion

A flaw has been found in Open5GS up to 2.7.5. This affects the function decodeipv6header/ogspfcppdrrulefindbypacket of the file lib/pfcp/rule-match.c of the component PFCP Session Establishment Request Handler. Executing a manipulation can lead to reachable assertion. It is possible to launch the...

6.9CVSS0.00531EPSS
Exploits1References8
EUVD
EUVD
added 2025/12/29 6:32 a.m.7 views

EUVD-2025-205559

A flaw has been found in Open5GS up to 2.7.5. This affects the function decodeipv6header/ogspfcppdrrulefindbypacket of the file lib/pfcp/rule-match.c of the component PFCP Session Establishment Request Handler. Executing manipulation can lead to reachable assertion. It is possible to launch the...

6.9CVSS5.3AI score0.00531EPSS
Exploits1References8
Vulnrichment
Vulnrichment
added 2025/12/29 6:32 a.m.5 views

CVE-2025-15176 Open5GS PFCP Session Establishment Request rule-match.c ogs_pfcp_pdr_rule_find_by_packet assertion

A flaw has been found in Open5GS up to 2.7.5. This affects the function decodeipv6header/ogspfcppdrrulefindbypacket of the file lib/pfcp/rule-match.c of the component PFCP Session Establishment Request Handler. Executing a manipulation can lead to reachable assertion. It is possible to launch the...

6.9CVSS5.2AI score0.00531EPSS
Exploits1References8
OSV
OSV
added 2025/12/29 6:32 a.m.5 views

CVE-2025-15176 Open5GS PFCP Session Establishment Request rule-match.c ogs_pfcp_pdr_rule_find_by_packet assertion

A flaw has been found in Open5GS up to 2.7.5. This affects the function decodeipv6header/ogspfcppdrrulefindbypacket of the file lib/pfcp/rule-match.c of the component PFCP Session Establishment Request Handler. Executing a manipulation can lead to reachable assertion. It is possible to launch the...

6.9CVSS5.6AI score0.00531EPSS
Exploits1References10
CNNVD
CNNVD
added 2025/12/29 12:0 a.m.6 views

Open5GS 安全漏洞

Open5GS is an Open5GS open source C open source implementation of 5G Core and Epc, the core network of the Lte/Nr network. A security vulnerability exists in Open5GS version 2.7.5 and earlier, which originates from a vulnerability in the function decodeipv6header/ogspfcppdr in the file...

7.5CVSS5.3AI score0.00531EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2019-5280

Malware in sbrugna...

7.8CVSS7.5AI score0.00794EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2007-4549

Malware in sbrugna...

7.8CVSS7.3AI score0.14336EPSS
Exploits0References23
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-41188

Malicious code in bioql PyPI...

5.3CVSS5.6AI score0.00386EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2021-8701

Malicious code in bioql PyPI...

9.1CVSS9.2AI score0.0123EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.11 views

EUVD-2025-22886

Malicious code in bioql PyPI...

7.6AI score0.0015EPSS
Exploits0References7
OSV
OSV
added 2025/07/28 12:15 p.m.1 views

DEBIAN-CVE-2025-38476

In the Linux kernel, the following vulnerability has been resolved: rpl: Fix use-after-free in rpldosrhinline. Running lwtdstcacherefloop.sh in selftest with KASAN triggers the splat below 0. rpldosrhinline fetches ipv6hdrskb and accesses it after skbcowhead, which is illegal as the header could ...

7.8CVSS5.8AI score0.0015EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2025/07/28 11:21 a.m.4 views

CVE-2025-38476

In the Linux kernel, the following vulnerability has been resolved: rpl: Fix use-after-free in rpldosrhinline. Running lwtdstcacherefloop.sh in selftest with KASAN triggers the splat below 0. rpldosrhinline fetches ipv6hdrskb and accesses it after skbcowhead, which is illegal as the header could ...

7.8CVSS5.8AI score0.0015EPSS
Exploits0
CVE
CVE
added 2025/07/28 11:21 a.m.85 views

CVE-2025-38476

CVE-2025-38476 affects the Linux kernel. The vulnerability is a use-after-free in rpl_do_srh_inline() caused by accessing ipv6 headers after skb_cow_head(), which could free the header. A fix makes oldhdr a local struct to prevent use-after-free. The issue is documented with a CVSS v3.1 vector (L...

7.8CVSS6.1AI score0.0015EPSS
Exploits0References9Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/23 10:14 a.m.10 views

CVE-2024-28894

Out-of-bounds read vulnerability caused by improper checking of the option length values in IPv6 headers exists in Cente middleware TCP/IP Network Series, which may allow an unauthenticated attacker to stop the device operations by sending a specially crafted packet...

5.3CVSS6.9AI score0.00539EPSS
Exploits0References1
Rows per page
Query Builder