Lucene search
K

1411 matches found

OSV
OSV
added 2026/07/06 5:30 p.m.8 views

GHSA-794R-5RP2-FPG8 flyto-core has SSRF guard bypass via IPv6 transition addresses (IPv4-mapped / 6to4 / NAT64) in validate_url_ssrf

Summary flyto-core's SSRF protection validateurlssrf / isprivateip in src/core/utils.py blocks private and metadata destinations by resolving the host and testing the resulting IP for membership in a hardcoded PRIVATEIPRANGES list. That list contains only the native RFC 1918 / loopback / link-loc...

7.1CVSS6.1AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/07/02 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2026-53349

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - netfilter: nfconntrack: destroy stale expectfn expectations on unregister NAT helpers such as nfnath323 store a raw pointer to module text in exp-expectfn e.g...

6AI score0.00161EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/07/01 7:42 p.m.6 views

CVE-2026-53349

A flaw was found in the Linux kernel's netfilter component, specifically within nfconntrack. When Network Address Translation NAT helpers are unregistered, a pending expectation can retain a pointer to freed module memory. If a connection matching this expectation arrives after the module is...

5.5CVSS5.8AI score0.00161EPSS
Exploits0References4
OSV
OSV
added 2026/07/01 2:16 p.m.3 views

UBUNTU-CVE-2026-53349

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfconntrack: destroy stale expectfn expectations on unregister NAT helpers such as nfnath323 store a raw pointer to module text in exp-expectfn e.g. ipnatq931expect. nfcthelperexpectfnunregister only unlinks the callba...

5.8AI score0.00161EPSS
Exploits0References9
EUVD
EUVD
added 2026/07/01 1:32 p.m.7 views

EUVD-2026-40983

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfconntrack: destroy stale expectfn expectations on unregister NAT helpers such as nfnath323 store a raw pointer to module text in exp-expectfn e.g. ipnatq931expect. nfcthelperexpectfnunregister only unlinks the callba...

5.9AI score0.00161EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/07/01 1:32 p.m.7 views

CVE-2026-53349

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfconntrack: destroy stale expectfn expectations on unregister NAT helpers such as nfnath323 store a raw pointer to module text in exp-expectfn e.g. ipnatq931expect. nfcthelperexpectfnunregister only unlinks the callba...

5.8AI score0.00161EPSS
Exploits0References7Affected Software1
NVD
NVD
added 2026/06/29 2:16 a.m.8 views

CVE-2026-13519

A vulnerability was found in Tenda JD12L 16.03.53.23. This impacts the function fromNatStaticSetting of the file /goform/NatStaticSetting. The manipulation of the argument page results in stack-based buffer overflow. The attack can be executed remotely. The exploit has been made public and could ...

9CVSS0.00466EPSS
Exploits0References6
NVD
NVD
added 2026/06/29 1:16 a.m.10 views

CVE-2026-13518

A vulnerability has been found in Tenda JD12L 16.03.53.23. This affects the function fromAddressNat of the file /goform/addressNat. The manipulation of the argument page leads to stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been disclosed to the publ...

9CVSS0.00466EPSS
Exploits0References6
EUVD
EUVD
added 2026/06/29 12:30 a.m.10 views

EUVD-2026-40016

A vulnerability was found in Tenda JD12L 16.03.53.23. This impacts the function fromNatStaticSetting of the file /goform/NatStaticSetting. The manipulation of the argument page results in stack-based buffer overflow. The attack can be executed remotely. The exploit has been made public and could ...

9CVSS8AI score0.00466EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/06/29 12:30 a.m.39 views

CVE-2026-13519 Tenda JD12L NatStaticSetting fromNatStaticSetting stack-based overflow

A vulnerability was found in Tenda JD12L 16.03.53.23. This impacts the function fromNatStaticSetting of the file /goform/NatStaticSetting. The manipulation of the argument page results in stack-based buffer overflow. The attack can be executed remotely. The exploit has been made public and could ...

9CVSS0.00466EPSS
Exploits0References6
CVE
CVE
added 2026/06/29 12:30 a.m.20 views

CVE-2026-13519

The CVE-2026-13519 entry describes a stack-based buffer overflow in Tenda JD12L (version 16.03.53.23) within the fromNatStaticSetting function of /goform/NatStaticSetting. The vulnerability is triggered by manipulation of an input argument (page), allowing remote execution without user interactio...

9CVSS8AI score0.00466EPSS
Exploits0References6
EUVD
EUVD
added 2026/06/29 12:15 a.m.9 views

EUVD-2026-40015

A vulnerability has been found in Tenda JD12L 16.03.53.23. This affects the function fromAddressNat of the file /goform/addressNat. The manipulation of the argument page leads to stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been disclosed to the publ...

9CVSS7.6AI score0.00466EPSS
Exploits0References6
CVE
CVE
added 2026/06/29 12:15 a.m.19 views

CVE-2026-13518

CVE-2026-13518 affects Tenda JD12L firmware 16.03.53.23. The vulnerability targets the function fromAddressNat in the file /goform/addressNat, where manipulation of the argument page causes a stack-based buffer overflow. Remote exploitation is possible, and the exploit has been disclosed publicly...

9CVSS7.6AI score0.00466EPSS
Exploits0References6
OSV
OSV
added 2026/06/26 7:17 p.m.4 views

GHSA-CG7W-RG45-PC59 pydantic-ai: SSRF blocklist bypass via IPv4-compatible, SIIT/IVI, and local NAT64 IPv6 addresses (incomplete fix of CVE-2026-46678)

Summary When an application using Pydantic AI opts a URL into forcedownload='allow-local' which disables the default block on private/internal IPs and runs on a network that routes the affected IPv6 transition forms NAT64- or ISATAP-configured networks, the cloud-metadata blocklist could be...

6.8CVSS5.8AI score0.00332EPSS
Exploits0References6
OSV
OSV
added 2026/06/25 8:39 a.m.1 views

CVE-2026-53266 netfilter: bridge: make ebt_snat ARP rewrite writable

In the Linux kernel, the following vulnerability has been resolved: netfilter: bridge: make ebtsnat ARP rewrite writable The ebtables SNAT target keeps the Ethernet source address rewrite behind skbensurewritableskb, 0. This is intentional: at the bridge ebtables hooks the Ethernet header is...

8.8CVSS5.8AI score0.00129EPSS
Exploits0References11
Positive Technologies
Positive Technologies
added 2026/06/25 12:0 a.m.8 views

PT-2026-52361

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the netfilter bridge ebtables SNAT target regarding how the ARP sender hardware address rewrite is handled. While the Ethernet source address rewrite is managed via sk...

8.8CVSS6.1AI score0.00184EPSS
Exploits0References388
Tenable Nessus
Tenable Nessus
added 2026/06/25 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2026-53017

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - f2fs: fix data loss caused by incorrect use of natentry flag Data loss can occur when fsync is performed on a newly created file before any checkpoint has been...

5.9AI score0.00162EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/24 6:32 p.m.5 views

EUVD-2026-38868

In the Linux kernel, the following vulnerability has been resolved: netfilter: nat: use kfreercu to release ops Florian Westphal says: "Historically this is not an issue, even for normal base hooks: the data path doesn't use the original nfhookops that are used to register the callbacks. However,...

5.8AI score0.00123EPSS
Exploits0References4
EUVD
EUVD
added 2026/06/24 6:32 p.m.6 views

EUVD-2026-38885

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix data loss caused by incorrect use of natentry flag Data loss can occur when fsync is performed on a newly created file before any checkpoint has been written concurrently with a checkpoint operation. The scenario is as...

5.7AI score0.00162EPSS
Exploits0References3
NVD
NVD
added 2026/06/24 5:17 p.m.11 views

CVE-2026-53017

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix data loss caused by incorrect use of natentry flag Data loss can occur when fsync is performed on a newly created file before any checkpoint has been written concurrently with a checkpoint operation. The scenario is as...

0.00162EPSS
Exploits0References2
Rows per page
Query Builder