213 matches found
kernel: net: ena: Fix incorrect descriptor free behavior
This is a vulnerability in the Linux kernel's Elastic Network Adapter ENA driver, which manages network interfaces on certain platforms. The driver utilizes two types of transmit TX queues: one for packets from the network stack and another for packets directed by XDP eXpress Data Path operations...
DEBIAN-CVE-2024-35958
In the Linux kernel, the following vulnerability has been resolved: net: ena: Fix incorrect descriptor free behavior ENA has two types of TX queues: - queues which only process TX packets arriving from the network stack - queues which only process TX packets forwarded to it by XDPREDIRECT or XDPT...
CVE-2023-52352
In Network Adapter Service, there is a possible missing permission check. This could lead to local denial of service with no additional execution privileges needed...
CVE-2023-52352
In Network Adapter Service, there is a possible missing permission check. This could lead to local denial of service with no additional execution privileges needed...
CVE-2023-52352
Summary: CVE-2023-52352 concerns the Network Adapter Service where a missing permission check could allow local denial of service without extra execution privileges. The connected documents link this vulnerability to UNISOC chipsets and multiple trackers (Red Hat, NVD, CVE list, PT Security, CNNV...
CVE-2023-52352
In Network Adapter Service, there is a possible missing permission check. This could lead to local denial of service with no additional execution privileges needed...
CVE-2023-52352
In Network Adapter Service, there is a possible missing permission check. This could lead to local denial of service with no additional execution privileges needed...
UNISOC Chipsets 安全漏洞
UNISOC Chipsets is a chipset from China's Purple Spreadtrum UNISOC. A security vulnerability exists in UNISOC Chipsets due to a lack of privilege checking in the Network Adapter service...
PT-2024-14544 · Unknown · Network Adapter Service
Name of the Vulnerable Software and Affected Versions: Network Adapter Service affected versions not specified Description: The issue is related to a possible missing permission check in the Network Adapter Service. This could lead to a local denial of service with no additional execution...
CVE-2022-23087 Bhyve e82545 device emulation out-of-bounds write
The e1000 network adapters permit a variety of modifications to an Ethernet packet when it is being transmitted. These include the insertion of IP and TCP checksums, insertion of an Ethernet VLAN header, and TCP segmentation offload "TSO". The e1000 device model uses an on-stack buffer to generat...
An infinite loop flaw was found in the e1000 NIC emulator of the QEMU. This issue occurs while processing transmits (tx) descriptors in process_tx_desc if various descriptor fields are initialized with invalid values. This flaw allows a guest to consume CPU cycles on the host resulting in a denial of service. The highest threat from this vulnerability is to system availability.
...
K37283878: Intel I210 network adapter vulnerability CVE-2020-0522
Security Advisory Description Improper initialization in the firmware for the IntelR Ethernet I210 Controller series of network adapters before version 3.30 may allow a privileged user to potentially enable denial of service via local access. CVE-2020-0522 Impact The BIG-IP management network por...
K83504933: Intel I210 network adapter vulnerability CVE-2020-0524
Security Advisory Description Improper default permissions in the firmware for the IntelR Ethernet I210 Controller series of network adapters before version 3.30 may allow an authenticated user to potentially enable denial of service via local access. CVE-2020-0524 Impact The BIG-IP management...
CVE-2022-41314
Uncontrolled search path in some IntelR Network Adapter installer software may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2022-41314
Uncontrolled search path in some IntelR Network Adapter installer software may allow an authenticated user to potentially enable escalation of privilege via local access...
Privilege escalation
Uncontrolled search path in some IntelR Network Adapter installer software may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2022-41314
Uncontrolled search path in some IntelR Network Adapter installer software may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2022-41314
The CVE-2022-41314 issue is an Intel Network Adapter installer vulnerability caused by an uncontrolled search path, enabling local privilege escalation for an authenticated user. Intel lists affected components as Administrative Tools for Intel Network Adapters software prior to version 27.3 and ...
CVE-2022-41314
Uncontrolled search path in some IntelR Network Adapter installer software may allow an authenticated user to potentially enable escalation of privilege via local access...
PT-2023-13969 · Intel · Intel Network Adapter Installer
Name of the Vulnerable Software and Affected Versions: IntelR Network Adapter installer software affected versions not specified Description: The issue is related to an uncontrolled search path in some IntelR Network Adapter installer software. This may allow an authenticated user to potentially...