Lucene search
K

108 matches found

CVE
CVE
added 2 days ago11 views

CVE-2026-57019

CVE-2026-57019 affects Junos OS on MX Series. An issue in the Packet Forwarding Engine (pfe) due to improper validation of a specified quantity in input can allow an unauthenticated adjacent attacker to cause a Denial-of-Service by triggering an FPC major error and a reset, impacting traffic unti...

7.1CVSS6AI score0.00269EPSS
Exploits0References1
CVE
CVE
added 2026/06/18 7:29 p.m.27 views

CVE-2026-56099

OpenBSD before commit 6a23123 (2026-06-18) contains an out-of-bounds read in sys/netmpls/mpls_input.c:mpls_do_error, allowing remote disclosure of kernel stack memory by crafting MPLS frames with 16 labels and no Bottom-of-Stack bit. Affected component is the MPLS input handling path; root cause ...

6.9CVSS5.3AI score0.00423EPSS
Exploits2References5Affected Software1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in Linux 5.10, Linux

In the Linux kernel, the following vulnerability has been resolved: net/sched: actmpls: Fixed the warning during failed attribute validation The 'TCAMPLSLABEL' attribute is of 'NLAU32' type, but has a validation type of 'NLAVALIDATEFUNCTION'. This is an invalid combination according to the commen...

7.8CVSS6.2AI score0.00248EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/05/06 1:40 a.m.8 views

SUSE CVE-2026-43042

In the Linux kernel, the following vulnerability has been resolved: mpls: add seqcount to protect the platformlabel,s pair The RCU-protected codepaths mplsforward, mplsdumproutes can have an inconsistent view of platformlabels vs platformlabel in case of a concurrent resize...

7.1CVSS5.7AI score0.0011EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/05/02 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-43042

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mpls: add seqcount to protect the platformlabel,s pair The RCU-protected codepaths mplsforward, mplsdumproutes can have an inconsistent view of platformlabels v...

7.1CVSS6AI score0.0011EPSS
Exploits0References4
NVD
NVD
added 2026/05/01 3:16 p.m.51 views

CVE-2026-43042

In the Linux kernel, the following vulnerability has been resolved: mpls: add seqcount to protect the platformlabel,s pair The RCU-protected codepaths mplsforward, mplsdumproutes can have an inconsistent view of platformlabels vs platformlabel in case of a concurrent resize...

7.1CVSS0.0011EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/01 2:15 p.m.81 views

CVE-2026-43042 mpls: add seqcount to protect the platform_label{,s} pair

In the Linux kernel, the following vulnerability has been resolved: mpls: add seqcount to protect the platformlabel,s pair The RCU-protected codepaths mplsforward, mplsdumproutes can have an inconsistent view of platformlabels vs platformlabel in case of a concurrent resize...

7.1CVSS0.0011EPSS
Exploits0References2
CVE
CVE
added 2026/05/01 2:15 p.m.19 views

CVE-2026-43042

The CVE-2026-43042 issue affects the Linux kernel MPLS code. It describes a race condition where concurrent operations on platform label data can yield an inconsistent view during a resize of the platform_label tables, particularly in the RCU-protected paths mpls_forward and mpls_dump_routes unde...

7.1CVSS5.8AI score0.0011EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/01 2:15 p.m.2 views

CVE-2026-43042

In the Linux kernel, the following vulnerability has been resolved: mpls: add seqcount to protect the platformlabel,s pair The RCU-protected codepaths mplsforward, mplsdumproutes can have an inconsistent view of platformlabels vs platformlabel in case of a concurrent resize...

5.8AI score0.0011EPSS
Exploits0References3Affected Software1
EUVD
EUVD
added 2026/05/01 2:15 p.m.27 views

EUVD-2026-26641

In the Linux kernel, the following vulnerability has been resolved: mpls: add seqcount to protect the platformlabel,s pair The RCU-protected codepaths mplsforward, mplsdumproutes can have an inconsistent view of platformlabels vs platformlabel in case of a concurrent resize...

5.8AI score0.0011EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/04/27 10:49 a.m.6 views

CVE-2026-31679

A flaw was found in the Linux kernel's openvswitch component. This vulnerability arises from improper validation of Multiprotocol Label Switching MPLS payload lengths during SET/SETMASKED actions. An attacker could potentially exploit this by providing malformed MPLS key data, leading to unexpect...

7.1CVSS5.4AI score0.00117EPSS
Exploits0References4
Microsoft CVE
Microsoft CVE
added 2026/04/26 8:9 a.m.8 views

openvswitch: validate MPLS set/set_masked payload length

...

7.1CVSS5.2AI score0.00117EPSS
Exploits0
NVD
NVD
added 2026/04/25 9:16 a.m.4 views

CVE-2026-31679

In the Linux kernel, the following vulnerability has been resolved: openvswitch: validate MPLS set/setmasked payload length validateset accepted OVSKEYATTRMPLS as variable-sized payload for SET/SETMASKED actions. In action handling, OVS expects fixed-size MPLS key data struct ovskeympls. Use the...

7.1CVSS0.00117EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2026/04/25 8:46 a.m.5 views

CVE-2026-31679

In the Linux kernel, the following vulnerability has been resolved: openvswitch: validate MPLS set/setmasked payload length validateset accepted OVSKEYATTRMPLS as variable-sized payload for SET/SETMASKED actions. In action handling, OVS expects fixed-size MPLS key data struct ovskeympls. Use the...

7.1CVSS5.2AI score0.00117EPSS
Exploits0
Cvelist
Cvelist
added 2026/04/25 8:46 a.m.34 views

CVE-2026-31679 openvswitch: validate MPLS set/set_masked payload length

In the Linux kernel, the following vulnerability has been resolved: openvswitch: validate MPLS set/setmasked payload length validateset accepted OVSKEYATTRMPLS as variable-sized payload for SET/SETMASKED actions. In action handling, OVS expects fixed-size MPLS key data struct ovskeympls. Use the...

7.1CVSS0.00117EPSS
Exploits0References8
CVE
CVE
added 2026/04/25 8:46 a.m.18 views

CVE-2026-31679

Summary: CVE-2026-31679 affects the Linux kernel openvswitch code. The vulnerability arises from improper validation of MPLS payload lengths in SET/SET_MASKED actions: openvswitch accepted OVS_KEY_ATTR_MPLS as a variable-sized payload, while action handling expects fixed-size MPLS data (struct ov...

7.1CVSS5.3AI score0.00117EPSS
Exploits0References8Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/25 12:0 a.m.8 views

PT-2026-35139

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description In openvswitch, the validate set function accepted OVS KEY ATTR MPLS as a variable-sized payload for SET and SET MASKED actions. However, action handling expects fixed-size MPLS key data...

7.1CVSS5.8AI score0.00117EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/04/25 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2026-31679

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - openvswitch: validate MPLS set/setmasked payload length validateset accepted OVSKEYATTRMPLS as variable-sized payload for SET/SETMASKED actions. In action...

7.1CVSS6AI score0.00117EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/04/09 9:29 p.m.2 views

CVE-2026-33780 Junos OS and Junos OS Evolved: In an EVPN-MPLS scenario churn of ESI routes causes a memory leak in l2ald

A Missing Release of Memory after Effective Lifetime vulnerability in the Layer 2 Address Learning Daemon l2ald of Juniper Networks Junos OS and Junos OS Evolved allows an adjacent, unauthenticated attacker to cause a memory leak ultimately leading to a Denial of Service DoS. In an EVPN-MPLS...

7.1CVSS5.9AI score0.00173EPSS
Exploits0References1
Redos
Redos
added 2026/03/04 12:0 a.m.7 views

ROS-20260304-73-0022

A vulnerability in the keyextractl3l4 function of the net/openvswitch/flow.c module of the openvswitch component of the Linux operating systems kernel is related to unchecked array indexing. Exploitation of the vulnerability could allow an attacker to cause a denial of service by sending speciall...

7.8CVSS7.1AI score0.00174EPSS
Exploits0
Rows per page
Query Builder