Lucene search
K

15 matches found

NVD
NVD
added 8 hours ago5 views

CVE-2026-56015

Net::IP::LPM versions through 1.10 for Perl allow a heap out-of-bounds read via an unbounded prefix length. add passes the prefix string to the trie builder addPrefixToTrie without checking it against the address width. addPrefixToTrie then walks the prefix buffer by prefixlength bits, reading...

Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/04/30 12:0 a.m.10 views

HP Printer Cross-Site Request Forgery (CVE-2009-0940)

Multiple cross-site request forgery CSRF vulnerabilities in the HP Embedded Web Server EWS on HP LaserJet Printers, Edgeline Printers, and Digital Senders allow remote attackers to hijack the intranet connectivity of arbitrary users for requests that 1 print documents via unknown vectors, 2 modif...

5.1CVSS5.8AI score0.01082EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-19330

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00274EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/06/29 1:20 p.m.8 views

CVE-2025-40910

Net::IP::LPM version 1.10 for Perl does not properly consider leading zero characters in IP CIDR address strings, which could allow attackers to bypass access control that is based on IP addresses. Leading zeros are used to indicate octal numbers, which can confuse users who are intentionally usi...

6.5CVSS7.3AI score0.00274EPSS
Exploits0References1
NVD
NVD
added 2025/06/27 1:15 p.m.6 views

CVE-2025-40910

Net::IP::LPM version 1.10 for Perl does not properly consider leading zero characters in IP CIDR address strings, which could allow attackers to bypass access control that is based on IP addresses. Leading zeros are used to indicate octal numbers, which can confuse users who are intentionally usi...

6.5CVSS0.00274EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/06/27 12:19 p.m.5 views

CVE-2025-40910 Net::IP::LPM version 1.10 for Perl does not properly consider leading zero characters in IP CIDR address strings, which could allow attackers to bypass access control that is based on IP addresses

Net::IP::LPM version 1.10 for Perl does not properly consider leading zero characters in IP CIDR address strings, which could allow attackers to bypass access control that is based on IP addresses. Leading zeros are used to indicate octal numbers, which can confuse users who are intentionally usi...

7.2AI score0.00274EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/06/27 12:0 a.m.4 views

PT-2025-27144 · Unknown · Net::Ip::Lpm

Name of the Vulnerable Software and Affected Versions: Net::IP::LPM version 1.10 Description: The issue arises from the improper consideration of leading zero characters in IP CIDR address strings, potentially allowing attackers to bypass access control based on IP addresses. This confusion can...

6.5CVSS7AI score0.00274EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2024/08/22 12:20 p.m.2 views

golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses

A flaw was found in the Go language standard library net/netip. The method Is IsPrivate, IsPublic, etc doesn't behave properly when working with IPv6 mapped to IPv4 addresses. The unexpected behavior can lead to integrity and confidentiality issues, specifically when these methods are used to...

9.8CVSS7.2AI score0.01952EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/07/29 12:19 a.m.3 views

golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses

A flaw was found in the Go language standard library net/netip. The method Is IsPrivate, IsPublic, etc doesn't behave properly when working with IPv6 mapped to IPv4 addresses. The unexpected behavior can lead to integrity and confidentiality issues, specifically when these methods are used to...

9.8CVSS7.2AI score0.01952EPSS
Exploits0References4
OSV
OSV
added 2024/07/02 3:13 p.m.6 views

CLSA-2024-1719933179 kernel: Fix of 20 CVEs

net: iptunnel: make sure to pull inner header in iptunnelrcv CVE-2024-26882 - net: Set true network header for ECN decapsulation CVE-2024-26882 - media: dvb-core: Fix use-after-free due to race at dvbregisterdevice CVE-2022-45884 - media: dvbdev: fix error logic at dvbregisterdevice...

10CVSS7AI score0.54577EPSS
Exploits2References1
Positive Technologies
Positive Technologies
added 2024/06/04 12:0 a.m.4 views

PT-2024-4045

Name of the Vulnerable Software and Affected Versions net-ip version affected versions not specified Traefik version affected versions not specified Description The issue is related to the incorrect functioning of the Is methods such as IsPrivate, IsLoopback, etc. in the net-ip component of the...

9.8CVSS7.8AI score0.01952EPSS
Exploits0References197
Prion
Prion
added 2022/08/31 8:15 p.m.15 views

Out-of-bounds

In subsys/net/ip/tcp.c , function tcpflags , when the incoming parameter flags is ECN or CWR , the buf will out-of-bounds write a byte zero...

5CVSS5.5AI score0.00497EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/08/31 7:40 p.m.25 views

CVE-2022-1841 Out-of-bound write in tcp_flags

In subsys/net/ip/tcp.c , function tcpflags , when the incoming parameter flags is ECN or CWR , the buf will out-of-bounds write a byte zero...

7.2CVSS7.3AI score0.00497EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2022/06/13 12:0 a.m.24 views

SUSE: Security Advisory (SUSE-SU-2022:2038-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS6.9AI score0.01284EPSS
Exploits0References12
OpenVAS
OpenVAS
added 2022/06/11 12:0 a.m.22 views

openSUSE: Security Advisory for grub2 (SUSE-SU-2022:2035-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.1CVSS7.1AI score0.01284EPSS
Exploits0References2
Rows per page
Query Builder