CVE-2026-21909

A Missing Release of Memory after Effective Lifetime vulnerability in the routing protocol daemon rpd Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated attacker controlling an adjacent IS-IS neighbor to send a specific update packet causing a memory leak. Continued receipt...

CVE-2026-21909

CVE-2026-21909 affects Junos OS and Junos OS Evolved: a Missing Release of Memory after Effective Lifetime vulnerability in rpd allows an unauthenticated adjacent IS-IS neighbor to craft packets that leak memory, eventually crashing rpd and causing DoS. Affected: Junos OS from 23.2 before 23.2R2;...

CVE-2026-21909 Junos OS and Junos OS Evolved: Receipt of specific IS-IS update packet causes memory leak leading to RPD crash

A Missing Release of Memory after Effective Lifetime vulnerability in the routing protocol daemon rpd Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated attacker controlling an adjacent IS-IS neighbor to send a specific update packet causing a memory leak. Continued receipt...

CVE-2025-11192 Fabric Engine (VOSS) AutoSense Authentication Bypass

A vulnerability in Extreme Networks’ Fabric Engine VOSS before 9.3 was discovered. When SD-WAN AutoSense is enabled on a port, it may automatically configure fabric connectivity without validating ISIS authentication settings. The SD-WAN AutoSense implementation may be exploited by malicious acto...

CVE-2025-20241 Cisco Nexus 3000 and 9000 Series Switches IS-IS Protocol <TBD> Denial of Service Vulnerability

A vulnerability in the Intermediate System-to-Intermediate System IS-IS feature of Cisco NX-OS Software for Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS mode could allow an unauthenticated, adjacent attacker to cause the IS-IS process to unexpectedly...

CVE-2025-20241 Cisco Nexus 3000 and 9000 Series Switches IS-IS Protocol <TBD> Denial of Service Vulnerability

A vulnerability in the Intermediate System-to-Intermediate System IS-IS feature of Cisco NX-OS Software for Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS mode could allow an unauthenticated, adjacent attacker to cause the IS-IS process to unexpectedly...

Cisco NX-OS Software 安全漏洞

Cisco NX-OS Software is a suite of data center-grade operating system software used by switches from Cisco USA. A security vulnerability exists in Cisco NX-OS Software that stems from insufficient input validation when parsing IS-IS packets, which could lead to a denial-of-service attack...

CVE-2023-20169

A vulnerability in the Intermediate System-to-Intermediate System IS-IS protocol of Cisco NX-OS Software for the Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS mode could allow an unauthenticated, adjacent attacker to cause the IS-IS process to...

SUSE CVE-2017-12998

The IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:isisprintextdipreach...

CVE-2022-22196

An Improper Check for Unusual or Exceptional Conditions vulnerability in the Routing Protocol Daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows an adjacent, unauthenticated attacker with an established ISIS adjacency to cause a Denial of Service DoS. The rpd CPU spikes to 100%...

UBUNTU-CVE-2017-12998

The IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:isisprintextdipreach...

Debian Security Advisory DSA 162-1 (ethereal)

The remote host is missing an update to ethereal announced via advisory DSA 162-1. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian Security Advisory DSA 162-1 (ethereal)

The remote host is missing an update to ethereal announced via advisory DSA 162-1. OpenVAS Vulnerability Test $Id: deb1621.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 162-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

DSA-162 ethereal - buffer overflow

Bulletin has no description...