CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

42 matches found

Tenable Nessus•added 2026/04/08 12:0 a.m.•1 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006721)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006721 advisory. In the Linux kernel, the following vulnerability has been resolved: tunnels: fix kasan splat when generating ipv4 pmtu error If we try to emit an icmp error in...

7.1CVSS5.8AI score0.00017EPSS

Exploits0References4

SUSE CVE•added 2026/03/26 2:43 p.m.•2 views

SUSE CVE-2026-23398

In the Linux kernel, the following vulnerability has been resolved: icmp: fix NULL pointer dereference in icmptagvalidation icmptagvalidation unconditionally dereferences the result of rcudereferenceinetprotosproto without checking for NULL. The inetprotos array is sparse -- only about 15 of 256...

5.9CVSS5.8AI score0.00031EPSS

Exploits2References19

OSV•added 2026/03/26 11:16 a.m.•1 views

DEBIAN-CVE-2026-23398

5.5CVSS5.2AI score0.00031EPSS

Exploits2References1

Cvelist•added 2026/03/26 10:22 a.m.•23 views

CVE-2026-23398 icmp: fix NULL pointer dereference in icmp_tag_validation()

0.00031EPSS

Exploits2References8

NVD•added 2025/10/04 4:15 p.m.•3 views

CVE-2023-53600

In the Linux kernel, the following vulnerability has been resolved: tunnels: fix kasan splat when generating ipv4 pmtu error If we try to emit an icmp error in response to a nonliner skb, we get BUG: KASAN: slab-out-of-bounds in ipcomputecsum+0x134/0x220 Read of size 4 at addr ffff88811c50db00 by...

7.1CVSS0.00017EPSS

Exploits0References5

OSV•added 2025/10/04 4:15 p.m.•0 views

UBUNTU-CVE-2023-53600

7.1CVSS5.9AI score0.00017EPSS

Exploits0References8

OSV•added 2025/10/04 3:44 p.m.•2 views

CVE-2023-53600 tunnels: fix kasan splat when generating ipv4 pmtu error

7.1CVSS6.4AI score0.00017EPSS

Exploits0References8

Positive Technologies•added 2025/10/04 12:0 a.m.•2 views

PT-2025-40763

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.5.0-rc3+ 309 Description A flaw exists in the Linux kernel related to handling IPv4 Path MTU Discovery PMTUD errors within tunnels. Specifically, the ip compute csum function is unable to process nonlinear skb...

7.8CVSS6.2AI score0.00218EPSS

Exploits4References989

Tenable Nessus•added 2025/08/30 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2022-30591

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - quic-go through 0.27.0 allows remote attackers to cause a denial of service CPU consumption via a Slowloris variant in which incomplete QUIC or HTTP/3 requests...

7.5CVSS7.3AI score0.151EPSS

Exploits2References2

Tenable Nessus•added 2025/08/27 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2024-53259

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - quic-go is an implementation of the QUIC protocol in Go. An off-path attacker can inject an ICMP Packet Too Large packet. Since affected quic-go versions used...

6.5CVSS6.6AI score0.00755EPSS

Exploits0References3

RedhatCVE•added 2025/05/22 9:50 p.m.•6 views

CVE-2022-30591

quic-go through 0.27.0 allows remote attackers to cause a denial of service CPU consumption via a Slowloris variant in which incomplete QUIC or HTTP/3 requests are sent. This occurs because mtudiscoverer.go misparses the MTU Discovery service and consequently overflows the probe timer. NOTE: the...

7.5CVSS6.9AI score0.151EPSS

Exploits2References1

Microsoft CVE•added 2025/03/14 12:0 a.m.•3 views

sctp: sysctl: plpmtud_probe_interval: avoid using current->nsproxy

...

5.5CVSS7.4AI score0.00023EPSS

Exploits0

SUSE CVE•added 2025/02/27 3:3 a.m.•2 views

SUSE CVE-2022-49663

In the Linux kernel, the following vulnerability has been resolved: tunnels: do not assume mac header is set in skbtunnelcheckpmtu Recently added debug in commit f9aefd6b2aa3 "net: warn if mac header was not set" caught a bug in skbtunnelcheckpmtu, as shown in this syzbot report 1. In ndostartxmi...

5.5CVSS6.2AI score0.00071EPSS

Exploits0References7

OSV•added 2025/02/26 7:1 a.m.•1 views

DEBIAN-CVE-2022-49604

In the Linux kernel, the following vulnerability has been resolved: ip: Fix data-races around sysctlipfwdusepmtu. While reading sysctlipfwdusepmtu, it can be changed concurrently. Thus, we need to add READONCE to its readers...

4.7CVSS5.3AI score0.00036EPSS

Exploits0References1

OSV•added 2025/02/26 7:1 a.m.•0 views

UBUNTU-CVE-2022-49604

4.7CVSS6AI score0.00036EPSS

Exploits0References9

RedHat Linux•added 2024/09/24 1:17 a.m.•2 views

kernel: tunnels: fix out of bounds access when building IPv6 PMTU error

A flaw was found in the Linux kernel. This issue occurs due to the improper handling of non-linear skbs socket buffers when calculating checksums for ICMPv6 PMTU error messages. This vulnerability can lead to out-of-bounds access, potentially causing memory corruption or crashes...

7.1CVSS7.2AI score0.00011EPSS

Exploits0References5

RedHat Linux•added 2024/09/24 12:40 a.m.•2 views

kernel: tunnels: fix out of bounds access when building IPv6 PMTU error

7.1CVSS7.2AI score0.00011EPSS

Exploits0References5

F5 Networks•added 2023/02/21 8:2 p.m.•38 views

K22843911: F5 Path MTU Discovery vulnerability CVE-2015-7759

Security Advisory Description BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, Link Controller, and PEM 12.0.0 before HF1, when the TCP profile for a virtual server is configured with Congestion Metrics Cache enabled, allow remote attackers to cause a denial of service Traffic Management Microkernel TM...

4.3CVSS4.9AI score0.00752EPSS

Exploits0Affected Software8