Lucene search
K

76 matches found

OSV
OSV
added 2022/06/20 8:14 p.m.10 views

MAL-2022-5911 Malicious code in sal-stack-lwip (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d946218f7aa8ac2e92c864ffba5062ee0a2a88093365218e2ba69cbf1ac25df7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2022/04/05 12:0 a.m.6 views

The vulnerability of the zepif_linkoutput() function in the lwIP protocol implementation allows a attacker to access confidential data.

The vulnerability of the zepiflinkoutput function in the lwIP protocol set is related to the copying of buffers without checking the input data. Exploiting this vulnerability allows a remote attacker to gain access to confidential data using a specially created 6LoWPAN packet...

7.8CVSS7.2AI score0.01173EPSS
Exploits0References5Affected Software2
NVD
NVD
added 2021/07/22 8:15 p.m.11 views

CVE-2020-22284

A buffer overflow vulnerability in the zepiflinkoutput function of Free Software Foundation lwIP git head version and version 2.1.2 allows attackers to access sensitive information via a crafted 6LoWPAN packet...

7.5CVSS0.01173EPSS
Exploits0References1
OSV
OSV
added 2021/07/22 8:15 p.m.4 views

CVE-2020-22283

A buffer overflow vulnerability in the icmp6sendresponsewithaddrsandnetif function of Free Software Foundation lwIP version git head allows attackers to access sensitive information via a crafted ICMPv6 packet...

7.5CVSS7.5AI score
Exploits0References3
NVD
NVD
added 2021/07/22 8:15 p.m.27 views

CVE-2020-22283

A buffer overflow vulnerability in the icmp6sendresponsewithaddrsandnetif function of Free Software Foundation lwIP version git head allows attackers to access sensitive information via a crafted ICMPv6 packet...

7.5CVSS0.01366EPSS
Exploits0References2
OSV
OSV
added 2021/07/22 8:15 p.m.16 views

CVE-2020-22284

A buffer overflow vulnerability in the zepiflinkoutput function of Free Software Foundation lwIP git head version and version 2.1.2 allows attackers to access sensitive information via a crafted 6LoWPAN packet...

7.5CVSS6.8AI score
Exploits0References1
OSV
OSV
added 2021/07/22 8:15 p.m.3 views

DEBIAN-CVE-2020-22284

A buffer overflow vulnerability in the zepiflinkoutput function of Free Software Foundation lwIP git head version and version 2.1.2 allows attackers to access sensitive information via a crafted 6LoWPAN packet...

7.5CVSS7.6AI score0.01173EPSS
Exploits0References1
Prion
Prion
added 2021/07/22 8:15 p.m.14 views

Buffer overflow

A buffer overflow vulnerability in the icmp6sendresponsewithaddrsandnetif function of Free Software Foundation lwIP version git head allows attackers to access sensitive information via a crafted ICMPv6 packet...

5CVSS7.5AI score0.01366EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2021/07/22 8:15 p.m.25 views

CVE-2020-22283

A buffer overflow vulnerability in the icmp6sendresponsewithaddrsandnetif function of Free Software Foundation lwIP version git head allows attackers to access sensitive information via a crafted ICMPv6 packet...

7.5CVSS7.3AI score0.01366EPSS
Exploits0References2
Prion
Prion
added 2021/07/22 8:15 p.m.21 views

Buffer overflow

A buffer overflow vulnerability in the zepiflinkoutput function of Free Software Foundation lwIP git head version and version 2.1.2 allows attackers to access sensitive information via a crafted 6LoWPAN packet...

5CVSS7.5AI score0.01173EPSS
Exploits0References1Affected Software1
UbuntuCve
UbuntuCve
added 2021/07/22 8:15 p.m.19 views

CVE-2020-22284

A buffer overflow vulnerability in the zepiflinkoutput function of Free Software Foundation lwIP git head version and version 2.1.2 allows attackers to access sensitive information via a crafted 6LoWPAN packet...

7.5CVSS7.3AI score0.01173EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2021/07/22 7:38 p.m.13 views

CVE-2020-22284

A buffer overflow vulnerability in the zepiflinkoutput function of Free Software Foundation lwIP git head version and version 2.1.2 allows attackers to access sensitive information via a crafted 6LoWPAN packet...

7.5CVSS7.5AI score0.01173EPSS
Exploits0
CVE
CVE
added 2021/07/22 7:38 p.m.91 views

CVE-2020-22284

The CVE-2020-22284 entry affects lwIP (Free Software Foundation) in git head and v2.1.2, where a buffer overflow in the zepif_linkoutput() function can be triggered by a crafted 6LoWPAN packet. This vulnerability could allow an attacker to access sensitive information as described in the NVD entr...

7.5CVSS7.5AI score0.01173EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2021/07/22 12:0 a.m.105 views

CVE-2020-22283

Summary: CVE-2020-22283 is a buffer overflow in the lwIP implementation (Free Software Foundation) specifically in the function icmp6_send_response_with_addrs_and_netif() on the git head. This flaw could enable an attacker to retrieve sensitive information via a crafted ICMPv6 packet, with impact...

7.5CVSS7.4AI score0.01366EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/07/22 12:0 a.m.22 views

CVE-2020-22283

A buffer overflow vulnerability in the icmp6sendresponsewithaddrsandnetif function of Free Software Foundation lwIP version git head allows attackers to access sensitive information via a crafted ICMPv6 packet...

7.4AI score0.01366EPSS
Exploits0References2
CNNVD
CNNVD
added 2021/07/22 12:0 a.m.5 views

lwip 缓冲区错误漏洞

lwip is an open source TCP/IP stack implementation. lwip suffers from a buffer error vulnerability that originates in the icmp6sendresponsewithaddrsandnetif function of the git head of the Free Software Foundation version of lwIP, which allows an attacker to exploit the vulnerability via a crafte...

7.5CVSS7.5AI score0.01366EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2021/07/22 12:0 a.m.24 views

CVE-2020-22283

A buffer overflow vulnerability in the icmp6sendresponsewithaddrsandnetif function of Free Software Foundation lwIP version git head allows attackers to access sensitive information via a crafted ICMPv6 packet...

7.5CVSS7.4AI score0.01366EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2021/05/14 12:0 a.m.14 views

lwIP TCP/IP Stack - HTTP Detection

Binary data lwiptcpipstackhttpdetect.nbin...

7.3AI score
Exploits0References1
OpenVAS
OpenVAS
added 2020/07/30 12:0 a.m.340 views

lwIP TCP/IP Stack Detection (HTTP)

HTTP based detection of the lwIP TCP/IP stack. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.3AI score
Exploits0References1
OpenVAS
OpenVAS
added 2020/07/30 12:0 a.m.13 views

lwIP TCP/IP Stack DNS Resolver <= 1.4.1 Cache-Poisoning Attack Vulnerability

The lwIP TCP/IP Stack DNS Resolver is vulnerable against a cache-poisoning attack. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This...

4.3CVSS6.7AI score0.00572EPSS
Exploits0References2
Rows per page
Query Builder