Lucene search
K

117 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 3:36 a.m.4 views

SUSE CVE-2021-43612

In lldpd before 1.0.13, when decoding SONMP packets in the sonmpdecode function, it's possible to trigger an out-of-bounds heap read via short SONMP packets...

7.5CVSS7.6AI score0.01142EPSS
Exploits0References4
CBLMariner
CBLMariner
added 2022/08/31 6:17 a.m.16 views

CVE-2020-27827 affecting package lldpd for versions less than 1.0.14-1

CVE-2020-27827 affecting package lldpd for versions less than 1.0.14-1. An upgraded version of the package is available that resolves this issue...

7.5CVSS6.6AI score0.03235EPSS
Exploits0
Rockylinux
Rockylinux
added 2022/05/17 7:3 a.m.11 views

new packages: lldpd

An update is available for lldpd. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Enterprise...

2AI score
Exploits0
RedhatCVE
RedhatCVE
added 2022/01/13 4:15 p.m.58 views

CVE-2021-43612

An out-of-bounds read vulnerability is present in lldpd. An attacker on the same network as the vulnerable system may use this vulnerability to leak memory data from the application or crash it by sending shorter SONMP packets than what is expected...

7.5CVSS2.1AI score0.01142EPSS
Exploits0References3
CNNVD
CNNVD
added 2021/11/18 12:0 a.m.4 views

lldpd 缓冲区错误漏洞

lldpd is a daemon capable of receiving and sending LLDP frames. A security vulnerability exists in lldpd that stems from a boundary error when reading SONMP messages. A remote user can send specially crafted packets to the application, trigger a heap-based buffer overflow, and execute arbitrary...

7.5CVSS8.2AI score0.01142EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2021/06/02 2:32 p.m.6 views

lldpd: buffer overflow in the lldp_decode function in daemon/protocols/lldp.c

A buffer overflow was found in the lldpdecode function in daemon/protocols/lldp.c in lldpd. This flaw allows remote attackers to cause a denial of service daemon crash and possibly execute arbitrary code via vectors involving large management addresses and TLV boundaries. This threatens the...

9.8CVSS6.4AI score0.05493EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2021/05/21 12:0 a.m.51 views

RHEL 7 : openvswitch (RHSA-2021:2077)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:2077 advisory. Open vSwitch provides standard network bridging functions and support for the OpenFlow protocol for remote per-flow control of traffic...

9.8CVSS7.7AI score0.08026EPSS
Exploits0References9
OSV
OSV
added 2021/05/10 11:15 a.m.4 views

CVE-2021-25849

An integer underflow was discovered in userdisk/vportlldpd in Moxa Camera VPort 06EC-2V Series, version 1.1, improper validation of the PortID TLV leads to Denial of Service via a crafted lldp packet...

7.5CVSS5.8AI score0.01031EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2021/03/25 12:18 p.m.87 views

Moderate: Red Hat Security Advisory: rhvm-appliance security, bug fix, and enhancement update

An update for rhvm-appliance is now available for Red Hat Virtualization 4 for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

9.8CVSS7.3AI score0.05493EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2021/03/25 12:0 a.m.52 views

RHEL 8 : rhvm-appliance (RHSA-2021:0988)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2021:0988 advisory. The RHV-M Virtual Appliance automates the process of installing and configuring the Red Hat Virtualization Manager. The appliance is availab...

9.8CVSS7.7AI score0.05493EPSS
Exploits0References10
OSV
OSV
added 2021/03/18 5:15 p.m.8 views

AZL-10443 CVE-2020-27827 affecting package lldpd for versions less than 1.0.14-1

A flaw was found in multiple versions of OpenvSwitch. Specially crafted LLDP packets can cause memory to be lost when allocating data to handle specific optional TLVs, potentially causing a denial of service. The highest threat from this vulnerability is to system availability...

7.5CVSS7AI score0.03235EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2021/03/05 12:0 a.m.36 views

Fedora 33 : 2:dpdk / openvswitch (2021-fba11d37ee)

The remote Fedora 33 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2021-fba11d37ee advisory. - Buffer overflow in the lldpdecode function in daemon/protocols/lldp.c in lldpd before 0.8.0 allows remote attackers to cause a denial of service...

9.8CVSS7.9AI score0.08026EPSS
Exploits0References4
ArchLinux
ArchLinux
added 2021/01/20 12:0 a.m.111 views

[ASA-202101-29] lldpd: information disclosure

Arch Linux Security Advisory ASA-202101-29 ========================================== Severity: Medium Date : 2021-01-20 CVE-ID : CVE-2020-27827 Package : lldpd Type : information disclosure Remote : Yes Link : https://security.archlinux.org/AVG-1451 Summary ======= The package lldpd before versi...

7.5CVSS7.5AI score0.03235EPSS
Exploits0References7
ArchLinux
ArchLinux
added 2021/01/20 12:0 a.m.115 views

[ASA-202101-28] openvswitch: multiple issues

Arch Linux Security Advisory ASA-202101-28 ========================================== Severity: Medium Date : 2021-01-20 CVE-ID : CVE-2015-8011 CVE-2020-27827 Package : openvswitch Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-1456 Summary ======= The package...

9.8CVSS8.5AI score0.05493EPSS
Exploits0References13
CNNVD
CNNVD
added 2021/01/13 12:0 a.m.6 views

lldpd Resource Management Error Vulnerability

lldpd is a daemon that can receive and send LLDP frames. A resource management error vulnerability exists in the Ubuntu lldpd software, which can be exploited by attackers to trigger a denial of service attack. The following products and models are affected: Ubuntu 20.10 openvswitch-common,Ubuntu...

7.5CVSS7.1AI score0.03235EPSS
Exploits0References31
RedHat Linux
RedHat Linux
added 2021/01/06 11:25 a.m.108 views

Important: Red Hat Security Advisory: Red Hat Virtualization security, bug fix, and enhancement update

An update for openvswitch2.11, ovn2.11, redhat-release-virtualization-host, and redhat-virtualization-host is now available for Red Hat Virtualization 4 for Red Hat Enterprise Linux 7 and Red Hat Virtualization Engine 4.3. Red Hat Product Security has rated this update as having a security impact...

9.8CVSS7.5AI score0.05493EPSS
Exploits0References3
Veracode
Veracode
added 2020/12/19 6:4 a.m.37 views

Denial Of Service(DoS)

lldpd is denial of serviceDoS. The buffer overflow in the lldpdecode function in daemon/protocols/lldp.c...

9.8CVSS3.4AI score0.05493EPSS
Exploits0References11Affected Software10
Tenable Nessus
Tenable Nessus
added 2020/12/18 12:0 a.m.52 views

RHEL 8 : Red Hat Virtualization (RHSA-2020:5611)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:5611 advisory. The redhat-virtualization-host packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host,...

9.8CVSS7.5AI score0.05493EPSS
Exploits1References13
Broadcom
Broadcom
added 2020/03/16 12:0 a.m.9 views

BSA-2020-937

Security Advisory ID : BSA-2020-937 Component : lldpd Revision : 1.0: Final Buffer overflow in the lldpdecode function in daemon/protocols/lldp.c in lldpd before 0.8.0 allows remote attackers to cause a denial of service daemon crash and possibly execute arbitrary code via vectors involving large...

9.8CVSS8.1AI score0.05493EPSS
Exploits0
OSV
OSV
added 2020/01/28 7:15 p.m.14 views

CVE-2015-8012

lldpd before 0.8.0 allows remote attackers to cause a denial of service assertion failure and daemon crash via a malformed packet...

7.5CVSS6.8AI score
Exploits0References10
Rows per page
Query Builder