lldpd: buffer overflow in the lldp_decode function in daemon/protocols/lldp.c

A buffer overflow was found in the lldpdecode function in daemon/protocols/lldp.c in lldpd. This flaw allows remote attackers to cause a denial of service daemon crash and possibly execute arbitrary code via vectors involving large management addresses and TLV boundaries. This threatens the...

Cisco IOS XE Denial of Service Vulnerability (CNVD-2021-22190)

Cisco IOS XE is a set of modular operating system based on Linux kernel developed by Cisco for its network equipment. A denial of service vulnerability exists in the DNS Application Layer Gateway ALG feature used by Network Address Translation NAT in Cisco IOS XE. The vulnerability stems from a...

Cisco IOS XE Software DNS NAT Protocol Application Layer Gateway Denial of Service Vulnerability

A vulnerability in the DNS application layer gateway ALG functionality used by Network Address Translation NAT in Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. The vulnerability is due to a logic error that occurs when an affected...

Cisco IOS XE Software 代码问题漏洞

Cisco IOS XE is a set of modular operating system based on Linux kernel developed by Cisco for its network equipment. A denial of service vulnerability exists in the DNS Application Layer Gateway ALG feature used by Network Address Translation NAT in Cisco IOS XE. The vulnerability stems from a...

Ubuntu 20.04 LTS : Linux kernel (OEM) vulnerabilities (USN-4752-1)

The remote Ubuntu 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4752-1 advisory. Daniele Antonioli, Nils Ole Tippenhauer, and Kasper Rasmussen discovered that legacy pairing and secure- connections pairing authentication in the...

CVE-2019-14852

A flaw was found in 3scale’s APIcast gateway that enabled the TLS 1.0 protocol. An attacker could target traffic using this weaker protocol and break its encryption, gaining access to unauthorized information. Version shipped in Red Hat 3scale API Management Platform is vulnerable to this issue...

DEBIAN-CVE-2020-27827

A flaw was found in multiple versions of OpenvSwitch. Specially crafted LLDP packets can cause memory to be lost when allocating data to handle specific optional TLVs, potentially causing a denial of service. The highest threat from this vulnerability is to system availability...

rubygem-em-http-request: missing SSL hostname validation allows MITM

A flaw was found in rubygem-em-http-request. The eventmachine library does not verify the hostname in a TLS server certificate which can allow an attacker to perform a man-in-the-middle attack. The highest threat from this vulnerability is to data confidentiality and integrity...

Sean DuBois Pion WebRTC 安全漏洞

Sean DuBois Pion WebRTC is Sean DuBois an open source application . Pion WebRTC is a Go implementation of WebRTC. A security vulnerability exists in Pion WebRTC before 3.0.15, which stems from not properly closing DTLS connections...

lldp/openvswitch: denial of service via externally triggered memory leak

A flaw was found in multiple versions of Open vSwitch. Specially crafted LLDP packets can cause memory to be lost when allocating data to handle specific optional TLVs, potentially causing a denial of service. The highest threat from this vulnerability is to system availability...

lldp/openvswitch: denial of service via externally triggered memory leak

A flaw was found in multiple versions of Open vSwitch. Specially crafted LLDP packets can cause memory to be lost when allocating data to handle specific optional TLVs, potentially causing a denial of service. The highest threat from this vulnerability is to system availability...

lldp/openvswitch: denial of service via externally triggered memory leak

A flaw was found in multiple versions of Open vSwitch. Specially crafted LLDP packets can cause memory to be lost when allocating data to handle specific optional TLVs, potentially causing a denial of service. The highest threat from this vulnerability is to system availability...

The vulnerability of the uIP TCP/IP Stack component of the Contiki OS allows a hacker to trigger a service failure.

The vulnerability of the upperlayerchksum function in the net/ipv4 /uip.c part of the uIP TCP/IP Stack of the Contiki OS framework is related to the reading of data beyond the specified buffer. Exploiting this vulnerability could allow a malicious actor to cause service failure remotely...

The vulnerability of the implementations of the Cisco Discovery Protocol and Link Layer Discovery Protocol (LLDP) in Cisco IP telephones allows a perpetrator to trigger a system reboot and a service failure.

The vulnerability of the Cisco Discovery Protocol and Link Layer Discovery Protocol LLDP implementations in IP-telephone microprogramming systems is related to buffer overflow vulnerabilities. Exploiting this vulnerability can allow an attacker to trigger a device reboot and a service failure...

BIG-IQ 安全漏洞

F5 BIG-IP is an application delivery platform from F5 USA that integrates network traffic management, application security management, and load balancing. A security vulnerability exists in BIG-IQ that stems from the fact that BIG-IQ will not use Transport Layer Security TLS in an HA failover...

UBUNTU-CVE-2020-15260

PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In version 2.10 and earlier, PJSIP transport can be reused if they have the same IP address + port + protocol. However, this is...

File Upload Vulnerability in Netcom Next Generation Firewall NS-NGFW

Netcom Next Generation Firewall NGFW is a high-performance firewall that can comprehensively address application layer threats. A file upload vulnerability exists in NS-NGFW, which can be exploited by attackers to gain control of the server...

File Upload Vulnerability in the Frontend of NS-NGFW Next Generation Firewall of Beijing Netcom Technology Co.

Netcom Next Generation Firewall NGFW is a high-performance firewall that can comprehensively address application layer threats. A file upload vulnerability exists in the frontend of NS-NGFW, which can be exploited by attackers to gain control of the server...

Imperva recognized as a ‘Leader’ in The Forrester Wave™: DDoS Mitigation Solutions, Q1 2021 Report

We are delighted to share that Imperva has been named a leader in The Forrester Wave: DDoS Mitigation Solutions, Q1 2021 report, a trusted source for technology buyers which helps security and risk professionals select the right vendor for their needs. You can download a copy of the report here...

OESA-2021-1058 nodejs security update

Node.js is a platform built on Chrome's JavaScript runtime for easily building fast, scalable network applications. Node.js uses an event-driven, non-blocking I/O model that makes it lightweight and efficient, perfect for data-intensive real-time applications that run across distributed devices...