Lucene search
K

191 matches found

Vulnrichment
Vulnrichment
added 2025/01/09 4:46 p.m.11 views

CVE-2025-21599 Junos OS Evolved: Receipt of specifically malformed IPv6 packets causes kernel memory exhaustion leading to Denial of Service

A Missing Release of Memory after Effective Lifetime vulnerability in the Juniper Tunnel Driver jtd of Juniper Networks Junos OS Evolved allows an unauthenticated network-based attacker to cause Denial of Service. Receipt of specifically malformed IPv6 packets, destined to the device, causes...

8.7CVSS7.1AI score0.00587EPSS
Exploits0References1
CVE
CVE
added 2025/01/09 4:46 p.m.69 views

CVE-2025-21599

CVE-2025-21599 affects Juniper Networks Junos OS Evolved. The vulnerability is in the Juniper Tunnel Driver (jtd) where a memory misreference occurs after handling certain malformed IPv6 packets, causing kernel memory not to be freed and leading to memory exhaustion and a Denial of Service. Affec...

8.7CVSS7.5AI score0.00587EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/01/09 4:46 p.m.16 views

CVE-2025-21599 Junos OS Evolved: Receipt of specifically malformed IPv6 packets causes kernel memory exhaustion leading to Denial of Service

A Missing Release of Memory after Effective Lifetime vulnerability in the Juniper Tunnel Driver jtd of Juniper Networks Junos OS Evolved allows an unauthenticated network-based attacker to cause Denial of Service. Receipt of specifically malformed IPv6 packets, destined to the device, causes...

8.7CVSS0.00587EPSS
Exploits0References1
GithubExploit
GithubExploit
added 2024/11/16 5:22 p.m.430 views

Exploit for Integer Underflow (Wrap or Wraparound) in Microsoft

CVE-2024-38063 PoC | DKob & N3TCR4SH Overview This scr...

9.8CVSS9.6AI score0.70564EPSS
Exploits24
Rosalinux
Rosalinux
added 2024/10/03 10:26 p.m.19 views

Advisory ROSA-SA-2024-2502

Software: libndp 1.7 OS: ROSA Virtualization 2.1 packageevrstring: libndp-1.7-7.rv3 CVE-ID: CVE-2024-5564 BDU-ID: 2024-04337 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the libndp library is related to an operation exceeding buffer boundaries in memory. Exploitation of the vulnerability could...

8.1CVSS8.2AI score0.01165EPSS
Exploits0
GithubExploit
GithubExploit
added 2024/08/28 8:57 a.m.297 views

Exploit for Integer Underflow (Wrap or Wraparound) in Microsoft

IPv6 Vulnerability Packet Sender for Memory Corruption CVE-...

9.8CVSS7.7AI score0.70564EPSS
Exploits24
Talos Blog
Talos Blog
added 2024/08/13 7:12 p.m.71 views

Talos discovers Microsoft kernel mode driver vulnerabilities that could lead to SYSTEM privileges; Seven other critical issues disclosed

Microsoft disclosed six security vulnerabilities that are actively being exploited across its products as part of the companys regular Patch Tuesday security update. In all, Augusts monthly round of patches from Microsoft included 87 vulnerabilities, seven of which are considered critical. In...

9.8CVSS8.4AI score0.70564EPSS
Exploits28
OSV
OSV
added 2024/03/02 9:52 p.m.6 views

CVE-2023-52527 ipv4, ipv6: Fix handling of transhdrlen in __ip{,6}_append_data()

In the Linux kernel, the following vulnerability has been resolved: ipv4, ipv6: Fix handling of transhdrlen in ip,6appenddata Including the transhdrlen in length is a problem when the packet is partially filled e.g. something like sendMSGMORE happened previously when appending to an IPv4 or IPv6...

5.5CVSS5.8AI score0.00226EPSS
Exploits0References11
Positive Technologies
Positive Technologies
added 2023/08/01 12:0 a.m.7 views

PT-2023-23133 · Freebsd · Freebsd

Name of the Vulnerable Software and Affected Versions: No specific software or versions mentioned. Description: A set of carefully crafted ipv6 packets can trigger an integer overflow in the calculation of a fragment reassembled packet's payload length field, allowing an attacker to trigger a...

7.5CVSS7.4AI score0.0054EPSS
Exploits0References6
Prion
Prion
added 2023/07/25 6:15 p.m.24 views

Authentication flaw

There exists an authentication bypass vulnerability in OpenThread border router devices and implementations. This issue allows unauthenticated nodes to craft radio frames using “Key ID Mode 2”: a special mode using a static encryption key to bypass security checks, resulting in arbitrary IP packe...

5.8CVSS9.2AI score0.00106EPSS
Exploits0References1Affected Software5
NVD
NVD
added 2023/04/17 10:15 p.m.23 views

CVE-2023-28979

An Improper Check for Unusual or Exceptional Conditions vulnerability in the kernel of Juniper Networks Junos OS allows an adjacent unauthenticated attacker to bypass an integrity check. In a 6PE scenario and if an additional integrity check is configured, it will fail to drop specific malformed...

4.7CVSS4.8AI score0.00273EPSS
Exploits0References1
OSV
OSV
added 2023/04/17 10:15 p.m.3 views

CVE-2023-28979

An Improper Check for Unusual or Exceptional Conditions vulnerability in the kernel of Juniper Networks Junos OS allows an adjacent unauthenticated attacker to bypass an integrity check. In a 6PE scenario and if an additional integrity check is configured, it will fail to drop specific malformed...

4.7CVSS5.8AI score
Exploits0References1
Prion
Prion
added 2023/04/17 10:15 p.m.22 views

Input validation

An Improper Check for Unusual or Exceptional Conditions vulnerability in the kernel of Juniper Networks Junos OS allows an adjacent unauthenticated attacker to bypass an integrity check. In a 6PE scenario and if an additional integrity check is configured, it will fail to drop specific malformed...

3.3CVSS4.9AI score0.00273EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2023/04/17 12:0 a.m.6 views

Juniper Networks Junos OS 代码问题漏洞

Juniper Networks Junos OS is a Juniper Networks network operating system for the company's hardware devices. The OS provides a secure programming interface and the Junos SDK. A code issue vulnerability exists in Juniper Networks Junos OS that stems from the fact that in a 6PE scenario, if...

4.7CVSS5.3AI score0.00273EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/04/17 12:0 a.m.11 views

CVE-2023-28979 Junos OS: In a 6PE scenario upon receipt of a specific IPv6 packet an integrity check fails

An Improper Check for Unusual or Exceptional Conditions vulnerability in the kernel of Juniper Networks Junos OS allows an adjacent unauthenticated attacker to bypass an integrity check. In a 6PE scenario and if an additional integrity check is configured, it will fail to drop specific malformed...

4.7CVSS4.8AI score0.00273EPSS
Exploits0References1
F5 Networks
F5 Networks
added 2023/02/21 7:59 p.m.104 views

K17133899: Multiple Treck TCP/IP stack vulnerabilities

Security Advisory Description CVE-2020-11896 The Treck TCP/IP stack before 6.0.1.66 allows Remote Code Execution, related to IPv4 tunneling. CVE-2020-11897 The Treck TCP/IP stack before 5.0.1.35 has an Out-of-Bounds Write via multiple malformed IPv6 packets. CVE-2020-11898 The Treck TCP/IP stack...

10CVSS6.5AI score0.36965EPSS
Exploits21
SUSE CVE
SUSE CVE
added 2023/02/15 6:16 a.m.4 views

SUSE CVE-2005-3858

Memory leak in the ip6inputfinish function in ip6input.c in Linux kernel 2.6.12 and earlier might allow attackers to cause a denial of service via malformed IPv6 packets with unspecified parameter problems, which prevents the SKB from being freed...

7.8CVSS6.7AI score0.03286EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2023/02/15 5:47 a.m.4 views

SUSE CVE-2012-1583

Double free vulnerability in the xfrm6tunnelrcv function in net/ipv6/xfrm6tunnel.c in the Linux kernel before 2.6.22, when the xfrm6tunnel module is enabled, allows remote attackers to cause a denial of service panic via crafted IPv6 packets...

5CVSS6.6AI score0.03615EPSS
Exploits2References3
NVD
NVD
added 2022/01/19 1:15 a.m.13 views

CVE-2022-22180

An Improper Check for Unusual or Exceptional Conditions vulnerability in the processing of specific IPv6 packets on certain EX Series devices may lead to exhaustion of DMA memory causing a Denial of Service DoS. Over time, exploitation of this vulnerability may cause traffic to stop being...

7.5CVSS0.0093EPSS
Exploits0References1
Prion
Prion
added 2022/01/19 1:15 a.m.21 views

Design/Logic Flaw

A vulnerability in the processing of inbound IPv6 packets in Juniper Networks Junos OS on QFX5000 Series and EX4600 switches may cause the memory to not be freed, leading to a packet DMA memory leak, and eventual Denial of Service DoS condition. Once the condition occurs, further packet processin...

5CVSS7.7AI score0.0093EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder