Lucene search
K

25 matches found

RedhatCVE
RedhatCVE
added 2026/06/26 12:14 p.m.7 views

CVE-2026-52981

A flaw was found in the Linux kernel. The neighxmit function, when called with an uninitialized neighbor table such as NEIGHNDTABLE when IPv6 is disabled, can return an error without properly releasing the allocated skb socket buffer. This can lead to a memory leak, potentially impacting system...

7.5CVSS5.7AI score0.00539EPSS
Exploits0References4
EUVD
EUVD
added 2026/06/24 6:32 p.m.4 views

EUVD-2026-38849

In the Linux kernel, the following vulnerability has been resolved: neigh: let neighxmit take skb ownership neighxmit always releases the skb, except when no neighbour table is found. But even the first added user of neighxmit mpls relied on neighxmit to release the skb or queue it for tx. sashik...

5.8AI score0.00539EPSS
Exploits0References7
NVD
NVD
added 2026/06/24 5:17 p.m.5 views

CVE-2026-52981

In the Linux kernel, the following vulnerability has been resolved: neigh: let neighxmit take skb ownership neighxmit always releases the skb, except when no neighbour table is found. But even the first added user of neighxmit mpls relied on neighxmit to release the skb or queue it for tx. sashik...

7.5CVSS0.00539EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/06/24 4:28 p.m.5 views

CVE-2026-52981

In the Linux kernel, the following vulnerability has been resolved: neigh: let neighxmit take skb ownership neighxmit always releases the skb, except when no neighbour table is found. But even the first added user of neighxmit mpls relied on neighxmit to release the skb or queue it for tx. sashik...

5.8AI score0.00539EPSS
Exploits0References7Affected Software1
CVE
CVE
added 2026/06/24 4:28 p.m.8 views

CVE-2026-52981

CVE-2026-52981 concerns a Linux kernel issue in neigh_xmit: when called with an uninitialized neighbor table (e.g., NEIGH_ND_TABLE with IPv6 disabled), neigh_xmit can return -EAFNOSUPPORT without releasing the skb, risking a memory leak. The fix removes the remaining code path that could neither ...

7.5CVSS5.8AI score0.00539EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/06/24 12:0 a.m.9 views

PT-2026-51875

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the neigh xmit function where the socket buffer skb is not properly released when no neighbor table is found. Specifically, if the function is called with an...

7.5CVSS5.9AI score0.00539EPSS
Exploits0References8
SUSE CVE
SUSE CVE
added 2026/03/25 4:57 p.m.5 views

SUSE CVE-2026-23293

In the Linux kernel, the following vulnerability has been resolved: net: vxlan: fix ndtbl NULL dereference when IPv6 is disabled When booting with the 'ipv6.disable=1' parameter, the ndtbl is never initialized because inet6init exits before ndiscinit is called which initializes it. If an IPv6...

5.9CVSS5.7AI score0.00123EPSS
Exploits0References19
EUVD
EUVD
added 2026/03/25 12:30 p.m.7 views

EUVD-2026-15224

In the Linux kernel, the following vulnerability has been resolved: net: vxlan: fix ndtbl NULL dereference when IPv6 is disabled When booting with the 'ipv6.disable=1' parameter, the ndtbl is never initialized because inet6init exits before ndiscinit is called which initializes it. If an IPv6...

5.7AI score0.00123EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2026/03/25 10:26 a.m.2 views

CVE-2026-23293

In the Linux kernel, the following vulnerability has been resolved: net: vxlan: fix ndtbl NULL dereference when IPv6 is disabled When booting with the 'ipv6.disable=1' parameter, the ndtbl is never initialized because inet6init exits before ndiscinit is called which initializes it. If an IPv6...

5.6AI score0.00123EPSS
Exploits0References9Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/23 12:36 a.m.9 views

CVE-2022-20339

In Android, there is a possible access of network neighbor table information due to an insecure SEpolicy configuration. This could lead to local information disclosure of network topography with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

3.3CVSS6.2AI score0.00094EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2025/04/02 1:29 p.m.9 views

SUSE CVE-2025-21903

In the Linux kernel, the following vulnerability has been resolved: mctp i3c: handle NULL header address daddr can be NULL if there is no neighbour table entry present, in that case the tx packet should be dropped. saddr will usually be set by MCTP core, but check for NULL in case a packet is...

5.5CVSS7.8AI score0.00187EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2024/03/19 3:50 a.m.4 views

SUSE CVE-2021-47109

In the Linux kernel, the following vulnerability has been resolved: neighbour: allow NUDNOARP entries to be forced GCed IFFPOINTOPOINT interfaces use NUDNOARP entries for IPv6. It's possible to fill up the neighbour table with enough entries that it will overflow for valid connections after that...

5.5CVSS7.8AI score0.00235EPSS
Exploits0References6
Prion
Prion
added 2022/08/12 3:15 p.m.21 views

Information disclosure

In Android, there is a possible access of network neighbor table information due to an insecure SEpolicy configuration. This could lead to local information disclosure of network topography with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

1.7CVSS4.5AI score0.00094EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/08/11 3:30 p.m.31 views

CVE-2022-20339

In Android, there is a possible access of network neighbor table information due to an insecure SEpolicy configuration. This could lead to local information disclosure of network topography with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

4.9AI score0.00094EPSS
Exploits0References1
OSV
OSV
added 2021/09/23 3:15 a.m.2 views

CVE-2021-34703

A vulnerability in the Link Layer Discovery Protocol LLDP message parser of Cisco IOS Software and Cisco IOS XE Software could allow an attacker to trigger a reload of an affected device, resulting in a denial of service DoS condition. This vulnerability is due to improper initialization of a...

6.5CVSS5.8AI score
Exploits0References1
Cisco
Cisco
added 2021/09/22 4:0 p.m.74 views

Cisco IOS and IOS XE Software Link Layer Discovery Protocol Denial of Service Vulnerability

A vulnerability in the Link Layer Discovery Protocol LLDP message parser of Cisco IOS Software and Cisco IOS XE Software could allow an attacker to trigger a reload of an affected device, resulting in a denial of service DoS condition. This vulnerability is due to improper initialization of a...

6.8CVSS6.6AI score0.01149EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2021/09/22 12:0 a.m.4 views

PT-2021-4741 · Cisco · Cisco Ios Xe +1

Name of the Vulnerable Software and Affected Versions: Cisco IOS Software affected versions not specified Cisco IOS XE Software affected versions not specified Description: A vulnerability in the Link Layer Discovery Protocol LLDP message parser could allow an attacker to trigger a reload of an...

6.8CVSS6.5AI score0.01149EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2021/06/07 12:0 a.m.8 views

PT-2024-11161 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue allows an attacker to fill up the neighbour table with enough entries that it will overflow for valid connections after that. This behaviour is more prevalent after commit...

7.8CVSS7AI score0.01549EPSS
Exploits5References814
Virtuozzo
Virtuozzo
added 2017/06/13 12:0 a.m.62 views

Kernel security update: CVE-2017-9077 and other; new kernel 2.6.32-042stab123.4, Virtuozzo 6.0 Update 12 Hotfix 10 (6.0.12-3677)

This update provides a new kernel 2.6.32-042stab123.4 for Virtuozzo 6.0. The new kernel is based on the Red Hat Enterprise Linux 6.9 kernel 2.6.32-696.el6 and provides security fixes as well as stability bug fixes. Vulnerability id: CVE-2017-9077 The tcpv6synrecvsock function in net/ipv6/tcpipv6....

7.8CVSS2.7AI score0.01372EPSS
Exploits5References5
Tenable Nessus
Tenable Nessus
added 2013/12/02 12:0 a.m.31 views

Cisco Nexus 4000 Series Switches IPv6 Denial of Service (CSCtd15904)

A vulnerability in the IP version 6 IPv6 packet handling routine of Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a device to stop responding to neighbor solicitation NS requests, causing a limited denial of service DoS condition. The vulnerability is due to...

6.1CVSS5.5AI score0.00739EPSS
Exploits0References2
Rows per page
Query Builder