CVE-2026-23185

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mld: cancel mloscanstartwk mloscanstartwk is not canceled on disconnection. In fact, it is not canceled anywhere except in the restart cleanup, where we don't really have to. This can cause an init-after-queue issu...

CVE-2025-38644

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: reject TDLS operations when station is not associated syzbot triggered a WARN in ieee80211tdlsoper by sending NL80211TDLSENABLELINK immediately after NL80211CMDCONNECT, before association completed and without pri...

AZL-58986 CVE-2022-49535 affecting package kernel for versions less than 5.15.182.1-1

In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix null pointer dereference after failing to issue FLOGI and PLOGI If lpfcissueelsflogi fails and returns non-zero status, the node reference count is decremented to trigger the release of the nodelist structure...

X-Recon - A Utility For Detecting Webpage Inputs And Conducting XSS Scans

A utility for identifying web page inputs and conducting XSS scanning. Features: Subdomain Discovery: Retrieves relevant subdomains for the target website and consolidates them into a whitelist. These subdomains can be utilized during the scraping process. Site-wide Link Discovery: Collects all...

CVE-2024-20294

A vulnerability in the Link Layer Discovery Protocol LLDP feature of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to improper handling of specific fields i...

Cisco ATA 190 资源管理错误漏洞

The Cisco ATA 190 is an analog telephone adapter from Cisco. The Cisco ATA 190 Series has a resource management error vulnerability that stems from multiple vulnerabilities in the Cisco Discovery Protocol and Link Layer Discovery Protocol LLDP. These vulnerabilities could allow an attacker to...

CVE-2022-22172

A Missing Release of Memory after Effective Lifetime vulnerability in the Layer-2 control protocols daemon l2cpd of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated adjacent attacker to cause a memory leak. Continued exploitation can lead to memory exhaustion and thereby a...

Zyxel GS1900-8 跨站脚本漏洞

The Zyxel GS1900-8 is an intelligent managed switch with gigabit speeds and basic management features from Taiwan, China-based Hopkins Zyxel that brings greater flexibility and connectivity to users' business networks. A cross-site scripting vulnerability exists in the Zyxel GS1900-8 firmware,...

Juniper Networks Junos OS 和 Junos OS Evolved 缓冲区错误漏洞

Juniper Networks Junos OS and Junos OS Evolved are both products of Juniper Networks, Inc.Juniper Networks Junos OS is a network operating system for the company's hardware devices. Juniper Networks Junos OS is a network operating system for the company's hardware devices that provides a secure...

lldp/openvswitch: denial of service via externally triggered memory leak

A flaw was found in multiple versions of Open vSwitch. Specially crafted LLDP packets can cause memory to be lost when allocating data to handle specific optional TLVs, potentially causing a denial of service. The highest threat from this vulnerability is to system availability...

CVE-2021-25846

Improper validation of the ChassisID TLV in userdisk/vportlldpd in Moxa Camera VPort 06EC-2V Series, version 1.1, allows attackers to cause a denial of service due to a negative number passed to the memcpy function via a crafted lldp packet...

Moxa Camera VPort 06EC-2V 代码问题漏洞

Moxa Camera VPort 06EC-2V is a camera device from Moxa MOXA of Taiwan, China. A security vulnerability exists in the Moxa Camera VPort 06EC-2V. An attacker can cause a denial of service by dereferencing a NULL pointer via a fake lldp packet...

The vulnerability of the lldpdecode function in the daemon/protocols/lldp.c component of the LLDP protocol under Unix systems, related to buffer overflow in memory, allows a malicious actor to access confidential data, compromise its integrity, and cause service failure.

The vulnerability of the lldpdecode function in the daemon/protocols/lldp.c component of the LLDP protocol under Unix allows attackers to access confidential data, compromise its integrity, and cause service failures. This vulnerability is related to buffer overflow in memory...

lldpd: buffer overflow in the lldp_decode function in daemon/protocols/lldp.c

A buffer overflow was found in the lldpdecode function in daemon/protocols/lldp.c in lldpd. This flaw allows remote attackers to cause a denial of service daemon crash and possibly execute arbitrary code via vectors involving large management addresses and TLV boundaries. This threatens the...

DEBIAN-CVE-2018-14461

The LDP parser in tcpdump before 4.9.3 has a buffer over-read in print-ldp.c:ldptlvprint...

PT-2017-12869

Name of the Vulnerable Software and Affected Versions tcpdump versions prior to 4.9.2 Description The issue is related to a buffer over-read in the LLDP parser, specifically in the lldp mgmt addr tlv print function within print-lldp.c. Recommendations For versions prior to 4.9.2, update to versio...

The vulnerability of the Junos operating system allows a perpetrator to trigger a system failure and restart the device.

The vulnerability of the LDP configuration in the Junos operating system is related to resource management errors. Exploiting this vulnerability can allow a malicious actor to trigger an emergency shutdown and restart of the device remotely...

DEBIAN-CVE-2012-5240

Buffer overflow in the dissecttlv function in epan/dissectors/packet-ldp.c in the LDP dissector in Wireshark 1.8.x before 1.8.3 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a malformed packet...