Lucene search
K

112 matches found

NVD
NVD
added 4 days ago9 views

CVE-2026-14461

mtr is vulnerable to Out-of-bound read vulnerability in ipinfolookup function. An attacker who can influence the TXT response used for AS lookups can trigger this bug by returning a DNS response that is larger than 512 bytes and uses a crafted compression pointer in the answer NAME...

5.1CVSS0.00303EPSS
Exploits0References2
Cvelist
Cvelist
added 4 days ago30 views

CVE-2026-14461 Out-of-bound read in mtr

mtr is vulnerable to Out-of-bound read vulnerability in ipinfolookup function. An attacker who can influence the TXT response used for AS lookups can trigger this bug by returning a DNS response that is larger than 512 bytes and uses a crafted compression pointer in the answer NAME...

5.1CVSS0.00303EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 4 days ago6 views

CVE-2026-14461

mtr is vulnerable to Out-of-bound read vulnerability in ipinfolookup function. An attacker who can influence the TXT response used for AS lookups can trigger this bug by returning a DNS response that is larger than 512 bytes and uses a crafted compression pointer in the answer NAME...

5.1CVSS6.1AI score0.00303EPSS
Exploits0References3
EUVD
EUVD
added 4 days ago5 views

EUVD-2026-42866

mtr is vulnerable to Out-of-bound read vulnerability in ipinfolookup function. An attacker who can influence the TXT response used for AS lookups can trigger this bug by returning a DNS response that is larger than 512 bytes and uses a crafted compression pointer in the answer NAME...

5.1CVSS6.1AI score0.00303EPSS
Exploits0References2
CVE
CVE
added 4 days ago8 views

CVE-2026-14461

The CVE-2026-14461 entry affects mtr up to version 0.96, where ipinfo_lookup() performs DNS AS lookups and can be triggered by a TXT response larger than 512 bytes with a crafted compression pointer, causing an out-of-bounds read. The function uses the response length as the end-of-message bounda...

5.1CVSS6.1AI score0.00303EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/01/27 5:1 a.m.3 views

Astra Linux – Vulnerability in mtr

In certain privileged contexts, mtr mishandles the execution of a program specified by the MTRPACKET environment variable. NOTE: On macOS, mtr may often be subject to sudo rules, as a direct result of Homebrew not installing setuid binaries...

7.8CVSS7AI score0.00142EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.6 views

Azure Linux 3.0 Security Update: mtr (CVE-2025-49809)

The version of mtr installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-49809 advisory. - mtr through 0.95, in certain privileged contexts, mishandles execution of a program specified by the MTRPACKET...

7.8CVSS5.8AI score0.00142EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2000-0171

Malware in sbrugna...

7.2CVSS6.4AI score0.00822EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2004-1221

Malware in sbrugna...

4.6CVSS6.4AI score0.00333EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2002-0493

Malware in sbrugna...

2.1CVSS6.4AI score0.00501EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2008-2353

Malware in sbrugna...

6.8CVSS6.1AI score0.04705EPSS
Exploits1References24
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-20020

Malicious code in bioql PyPI...

7.8CVSS6.3AI score0.00142EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/09/04 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2022-38249

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Nagios XI v5.8.6 was discovered to contain a cross-site scripting XSS vulnerability via the MTR component in version 1.0.4. CVE-2022-38249 Note that Nessus reli...

6.1CVSS6.4AI score0.01781EPSS
Exploits0References2
Amazon
Amazon
added 2025/08/08 12:0 a.m.5 views

Important: mtr

Issue Overview: mtr through 0.95, in certain privileged contexts, mishandles execution of a program specified by the MTRPACKET environment variable. CVE-2025-49809 Affected Packages: mtr Issue Correction: Run dnf update mtr --releasever 2023.8.20250808 or dnf update --advisory ALAS2023-2025-1102...

7.8CVSS6.9AI score0.00142EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/08/07 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2025-49809

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mtr through 0.95, in certain privileged contexts, mishandles execution of a program specified by the MTRPACKET environment variable. NOTE: mtr on macOS may ofte...

7.8CVSS7.2AI score0.00142EPSS
Exploits0References3
Redos
Redos
added 2025/08/06 12:0 a.m.8 views

ROS-20250806-12

A vulnerability in the mtr network diagnostic tool is related to improper handling of an item specified in the MTRPACKET environment variable. Exploitation of the vulnerability could allow an attacker to cause a denial of denial of service...

7.8CVSS6.1AI score0.00142EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/08/04 12:0 a.m.6 views

Amazon Linux 2023 : mtr, mtr-gtk (ALAS2023-2025-1102)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2025-1102 advisory. mtr through 0.95, in certain privileged contexts, mishandles execution of a program specified by the MTRPACKET environment variable. CVE-2025-49809 Tenable has extracted the preceding description block...

7.8CVSS7.5AI score0.00142EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/07/31 12:0 a.m.7 views

Amazon Linux 2 : mtr (ALAS-2025-2937)

The version of mtr installed on the remote host is prior to 0.92-2. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-2937 advisory. mtr through 0.95, in certain privileged contexts, mishandles execution of a program specified by the MTRPACKET environment variable...

7.8CVSS7.5AI score0.00142EPSS
Exploits0References4
Amazon
Amazon
added 2025/07/30 12:0 a.m.6 views

Important: mtr

Issue Overview: mtr through 0.95, in certain privileged contexts, mishandles execution of a program specified by the MTRPACKET environment variable. CVE-2025-49809 Affected Packages: mtr Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ section for the...

7.8CVSS7AI score0.00142EPSS
Exploits0
CBLMariner
CBLMariner
added 2025/07/17 9:12 p.m.9 views

CVE-2025-49809 affecting package mtr for versions less than 0.95-3

CVE-2025-49809 affecting package mtr for versions less than 0.95-3. A patched version of the package is available...

7.8CVSS7.3AI score0.00142EPSS
Exploits0
Rows per page
Query Builder