CVE-2023-22412

An Improper Locking vulnerability in the SIP ALG of Juniper Networks Junos OS on MX Series with MS-MPC or MS-MIC card and SRX Series allows an unauthenticated, network-based attacker to cause a flow processing daemon flowd crash and thereby a Denial of Service DoS. Continued receipt of these...

Input validation

An Improper Locking vulnerability in the SIP ALG of Juniper Networks Junos OS on MX Series with MS-MPC or MS-MIC card and SRX Series allows an unauthenticated, network-based attacker to cause a flow processing daemon flowd crash and thereby a Denial of Service DoS. Continued receipt of these...

Juniper Networks Junos OS 安全漏洞

Juniper Networks Junos OS is a Juniper Networks network operating system for the company's hardware devices. The operating system provides a secure programming interface and the Junos SDK. Juniper Networks Junos OS has a security vulnerability that stems from an incorrect locking vulnerability in...

Juniper Junos OS Vulnerability (JSA70208)

The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA70208 advisory. - An Improper Locking vulnerability in the SIP ALG of Juniper Networks Junos OS on MX Series with MS-MPC or MS-MIC card and SRX Series allows an unauthenticated, network-bas...

CVE-2023-22412

CVE-2023-22412 is an improper locking vulnerability in Juniper Junos OS SIP ALG that can crash the flow processing daemon (flowd) on MX Series and SRX Series when certain SIP messages are processed concurrently with SIP ALG enabled, leading to DoS. Affected firmware ranges are: MX/SRX 20.4 prior ...

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2023-1147)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2023-20532

Insufficient input validation in the SMU may allow an attacker to improperly lock resources, potentially resulting in a denial of service...

Ubuntu 22.10 : Linux kernel (IBM) vulnerabilities (USN-5793-4)

The remote Ubuntu 22.10 host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5793-4 advisory. It was discovered that the iouring subsystem in the Linux kernel did not properly perform reference counting in some situations, leading to a use- after-free...

PT-2023-3062 · Juniper Networks · Junos

Name of the Vulnerable Software and Affected Versions: Juniper Networks Junos OS on MX Series and SRX Series versions prior to 20.4R3-S4 Juniper Networks Junos OS on MX Series and SRX Series versions prior to 21.1R3-S3 Juniper Networks Junos OS on MX Series and SRX Series versions prior to...

CVE-2023-20532

Insufficient input validation in the SMU may allow an attacker to improperly lock resources, potentially resulting in a denial of service...

EulerOS Virtualization 2.10.0 : kernel (EulerOS-SA-2023-1168)

According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A vulnerability was found in the Linux kernel, where accessing a deallocated instance in printerioctl printerioctl tries to acces...

Users can accidentally lock their stakes forever

Lines of code Vulnerability details Impact StakeManager accepts user deposits and stakes. When adding a new stake, it allows the arbitrary value of unstakeDelaySec supposedly it is higher than previous info.unstakeDelaySec: function addStakeuint32 unstakeDelaySec public payable DepositInfo storag...

PT-2025-49757

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains an issue within the ASoC ALSA System on Chip component related to mutex handling in the soc-compress module. Specifically, if the panic on warn setting is enabl...

Fedora 36 : xen (2022-5b594b82ac)

The remote Fedora 36 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-5b594b82ac advisory. Arm: unbounded memory consumption for 2nd-level page tables XSA-409, CVE-2022-33747 P2M pool freeing may take excessively long XSA-410, CVE-2022-337...

PT-2022-6622 · Trend Micro · Trend Micro Apex One +1

Name of the Vulnerable Software and Affected Versions: Trend Micro Apex One affected versions not specified Trend Micro Apex One as a Service affected versions not specified Description: A Time-of-Check Time-Of-Use vulnerability in the Trend Micro Apex One and Apex One as a Service agent could...

Fedora 35 : xen (2022-99af00f60e)

The remote Fedora 35 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-99af00f60e advisory. Xenstore: Guests can crash xenstored XSA-414, CVE-2022-42309 Xenstore: Guests can create orphaned Xenstore nodes XSA-415, CVE-2022-42310 Xenstore:...

Devolutions Remote Desktop Manager 授权问题漏洞

Devolutions Remote Desktop Manager is an application from Devolutions Canada. It provides remote desktop management functionality. An authorization issue vulnerability exists in Devolutions Remote Desktop Manager version 2022.3.26 and prior versions, which stems from its local application locking...

CVE-2022-20566

In l2capchanput of l2capcore, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...

DEBIAN-CVE-2022-20566

In l2capchanput of l2capcore, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...

CVE-2022-20566

In l2capchanput of l2capcore, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...