Lucene search
K

102 matches found

Cvelist
Cvelist
added 2023/07/18 12:0 a.m.25 views

CVE-2023-36669

Missing Authentication for a Critical Function within the Kratos NGC Indoor Unit IDU before 11.4 allows remote attackers to obtain arbitrary control of the IDU/ODU system. Any attacker with layer-3 network access to the IDU can impersonate the Touch Panel Unit TPU within the IDU by sending crafte...

9.6AI score0.00658EPSS
Exploits0References2
Imperva Blog
Imperva Blog
added 2022/11/30 9:0 a.m.15 views

The Global DDoS Threat Landscape – November 2022

Every month in this space, we will post the Global DDoS Threat Landscape blog on behalf of the Imperva Threat Research team. As DDoS attacks continue to pose a significant risk to businesses, it is critical that we regularly communicate our Threat Research team’s findings to help the cybersecurit...

0.6AI score
Exploits0
Imperva Blog
Imperva Blog
added 2022/10/20 3:18 p.m.22 views

The Global DDoS Threat Landscape – October 2022

Every month in this space, we will post the Global DDoS Threat Landscape blog on behalf of the Imperva Threat Research team. As DDoS attacks continue to pose a significant risk to businesses it is critical that we regularly communicate our Threat Research team’s findings to help the cybersecurity...

0.8AI score
Exploits0
The Hacker News
The Hacker News
added 2022/10/14 7:14 a.m.45 views

Mirai Botnet Hits Wynncraft Minecraft Server with 2.5 Tbps DDoS Attack

Web infrastructure and security company Cloudflare disclosed this week that it halted a 2.5 Tbps distributed denial-of-service DDoS attack launched by a Mirai botnet. Characterizing it as a "multi-vector attack consisting of UDP and TCP floods," researcher Omer Yoachimik said the DDoS attack...

0.5AI score
Exploits0
NVD
NVD
added 2022/09/30 7:15 p.m.20 views

CVE-2022-20728

A vulnerability in the client forwarding code of multiple Cisco Access Points APs could allow an unauthenticated, adjacent attacker to inject packets from the native VLAN to clients within nonnative VLANs on an affected device. This vulnerability is due to a logic error on the AP that forwards...

4.7CVSS0.00242EPSS
Exploits0References1
Prion
Prion
added 2022/09/30 7:15 p.m.15 views

Design/Logic Flaw

A vulnerability in the client forwarding code of multiple Cisco Access Points APs could allow an unauthenticated, adjacent attacker to inject packets from the native VLAN to clients within nonnative VLANs on an affected device. This vulnerability is due to a logic error on the AP that forwards...

3.3CVSS5AI score0.00242EPSS
Exploits0References1Affected Software26
Cvelist
Cvelist
added 2022/09/30 6:45 p.m.24 views

CVE-2022-20728 Cisco Access Points VLAN Bypass from Native VLAN Vulnerability

A vulnerability in the client forwarding code of multiple Cisco Access Points APs could allow an unauthenticated, adjacent attacker to inject packets from the native VLAN to clients within nonnative VLANs on an affected device. This vulnerability is due to a logic error on the AP that forwards...

4.7CVSS5.2AI score0.00242EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/09/30 6:45 p.m.13 views

CVE-2022-20728 Cisco Access Points VLAN Bypass from Native VLAN Vulnerability

A vulnerability in the client forwarding code of multiple Cisco Access Points APs could allow an unauthenticated, adjacent attacker to inject packets from the native VLAN to clients within nonnative VLANs on an affected device. This vulnerability is due to a logic error on the AP that forwards...

4.7CVSS7AI score0.00242EPSS
Exploits0References1
CVE
CVE
added 2022/09/30 6:45 p.m.77 views

CVE-2022-20728

CVE-2022-20728 describes a VLAN-bypass flaw in the client forwarding code of multiple Cisco Access Points. An unauthenticated, adjacent attacker can inject packets from the native VLAN to nonnative VLAN clients due to a logic error that forwards packets destined to a wireless client when received...

4.7CVSS4.9AI score0.00242EPSS
Exploits0References1Affected Software1
Imperva Blog
Imperva Blog
added 2022/09/15 1:42 p.m.14 views

The Global DDoS Threat Landscape – September 2022

Every month in this space, we will post the State of the Global DDoS Threat Landscape blog on behalf of the Imperva Threat Research team. As DDoS attacks become more frequent, varied, and sophisticated, it is critical that we regularly communicate the Imperva Threat Research team’s findings and...

1.6AI score
Exploits0
Imperva Blog
Imperva Blog
added 2022/06/09 2:14 p.m.15 views

Q1 2022 Global DDoS Threat Landscape Report Findings Summary

Last week, Imperva released the Q1 2022 Global DDoS Threat Landscape Report. To produce the report’s findings, Imperva performs detailed statistical analysis of all DDoS activity that our Threat Research Labs monitored from our global network of PoPs during the first three months of 2022. In...

0.3AI score
Exploits0
Kitploit
Kitploit
added 2021/07/17 9:30 p.m.220 views

Cilium - eBPF-based Networking, Security, And Observability

Cilium is open source software for providing and transparently securing network connectivity and loadbalancing between application workloads such as application containers or processes. Cilium operates at Layer 3/4 to provide traditional networking and security services as well as Layer 7 to...

7.3AI score
Exploits0References11
Imperva Blog
Imperva Blog
added 2021/03/08 9:35 p.m.106 views

Imperva recognized as a ‘Leader’ in The Forrester Wave™: DDoS Mitigation Solutions, Q1 2021 Report

We are delighted to share that Imperva has been named a leader in The Forrester Wave: DDoS Mitigation Solutions, Q1 2021 report, a trusted source for technology buyers which helps security and risk professionals select the right vendor for their needs. You can download a copy of the report here...

0.7AI score
Exploits0
Prion
Prion
added 2020/11/12 2:15 a.m.34 views

Design/Logic Flaw

A vulnerability in the ingress packet processing function of Cisco IOS XR Software for Cisco ASR 9000 Series Aggregation Services Routers could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. The vulnerability is due to improper resource...

7.8CVSS8.5AI score0.01878EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2020/11/12 2:5 a.m.11 views

CVE-2020-26070 Cisco IOS XR Software for Cisco ASR 9000 Series Aggregation Services Routers Slow Path Forwarding Denial of Service Vulnerability

A vulnerability in the ingress packet processing function of Cisco IOS XR Software for Cisco ASR 9000 Series Aggregation Services Routers could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. The vulnerability is due to improper resource...

8.6CVSS7.3AI score0.01878EPSS
Exploits0References1
OSV
OSV
added 2020/11/06 8:15 a.m.34 views

CVE-2020-27617

ethgetgsotype in net/eth.c in QEMU 4.2.1 allows guest OS users to trigger an assertion failure. A guest can crash the QEMU process via packet data that lacks a valid Layer 3 protocol...

6.5CVSS6.3AI score
Exploits0References5
NVD
NVD
added 2020/11/06 8:15 a.m.31 views

CVE-2020-27617

ethgetgsotype in net/eth.c in QEMU 4.2.1 allows guest OS users to trigger an assertion failure. A guest can crash the QEMU process via packet data that lacks a valid Layer 3 protocol...

6.5CVSS6.3AI score0.02515EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2020/11/06 8:15 a.m.48 views

CVE-2020-27617

ethgetgsotype in net/eth.c in QEMU 4.2.1 allows guest OS users to trigger an assertion failure. A guest can crash the QEMU process via packet data that lacks a valid Layer 3 protocol...

6.5CVSS6.8AI score0.02515EPSS
Exploits0References4
Cvelist
Cvelist
added 2020/11/06 7:51 a.m.23 views

CVE-2020-27617

ethgetgsotype in net/eth.c in QEMU 4.2.1 allows guest OS users to trigger an assertion failure. A guest can crash the QEMU process via packet data that lacks a valid Layer 3 protocol...

6.4AI score0.02515EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2020/11/06 7:51 a.m.35 views

CVE-2020-27617

ethgetgsotype in net/eth.c in QEMU 4.2.1 allows guest OS users to trigger an assertion failure. A guest can crash the QEMU process via packet data that lacks a valid Layer 3 protocol...

6.5CVSS6.8AI score0.02515EPSS
Exploits0
Rows per page
Query Builder