Oracle Linux 7 : kernel (ELSA-2020-4060)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-4060 advisory. - vfio vfio/pci: Fix SR-IOV VF handling with MMIO blocking Alex Williamson 1820632 CVE-2020-12888 - x86 mm: Fix mremap not considering huge pmd devmap...

CVE-2023-0861

NetModule NSRW web administration interface executes an OS command constructed with unsanitized user input. A successful exploit could allow an authenticated user to execute arbitrary commands with elevated privileges. This issue affects NSRW: from 4.3.0.0 before 4.3.0.119, from 4.4.0.0 before...

SUSE CVE-2019-12381

An issue was discovered in ipracontrol in net/ipv4/ipsockglue.c in the Linux kernel through 5.1.5. There is an unchecked kmalloc of newra, which might allow an attacker to cause a denial of service NULL pointer dereference and system crash. NOTE: this is disputed because newra is never used if it...

PT-2022-36595 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v4.9.334 Description: The issue is related to a potential security problem in the net/x25 module, specifically in the x25 lapb receive frame function, where a skb leak is fixed. The actual impact and attack...

CVE-2022-37006

Permission control vulnerability in the network module. Successful exploitation of this vulnerability may affect service availability...

CVE-2022-37006

Permission control vulnerability in the network module. Successful exploitation of this vulnerability may affect service availability...

Design/Logic Flaw

Permission control vulnerability in the network module. Successful exploitation of this vulnerability may affect service availability...

CVE-2022-37006

Permission control vulnerability in the network module. Successful exploitation of this vulnerability may affect service availability...

HUAWEI EMUI 安全漏洞

HUAWEI EMUI is an Android-based mobile operating system developed by China's Huawei HUAWEI. A security vulnerability exists in HUAWEI EMUI version 12.0.0, which stems from a permission control issue in the network module causing an attacker to impact service availability after successful...

CVE-2022-37006

Technical details (affected products, versions, root cause, or explicit fixes) are not publicly available in the provided connected documents. Monitor for updates from vendors and security advisories.

CVE-2022-37006

Permission control vulnerability in the network module. Successful exploitation of this vulnerability may affect service availability...

PT-2022-23751 · Huawei · Emui +1

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned. Description: A permission control vulnerability exists in the network module. Successful exploitation of this issue may affect service availability. Recommendations: At the moment, there is no...

Phoenix Contact Classic Line Controllers ILC1x0 and ILC1x1 安全漏洞

The Phoenix Contact Classic Line Controllers ILC1x0 and ILC1x1 are industrial control devices from Phoenix Contact, Germany. The protocol configuration for device management and communication does not include authentication measures. Phoenix Contact Classic Line Controllers versions ILC1x0 and...

NewStart CGSL CORE 5.04 / MAIN 5.04 : kernel Multiple Vulnerabilities (NS-SA-2021-0025)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has kernel packages installed that are affected by multiple vulnerabilities: - An issue was discovered in the Linux kernel before 5.2.3. There is a NULL pointer dereference caused by a malicious USB device in the...

CVE-2021-29083

Improper neutralization of special elements used in an OS command in SYNO.Core.Network.PPPoE in Synology DiskStation Manager DSM before 6.2.3-25426-3 allows remote authenticated users to execute arbitrary code via realname parameter...

CVE-2019-17056

llcpsockcreate in net/nfc/llcpsock.c in the AFNFC network module in the Linux kernel through 5.3.2 does not enforce CAPNETRAW, which means that unprivileged users can create a raw socket, aka CID-3a359798b176...

CVE-2019-17052

ax25create in net/ax25/afax25.c in the AFAX25 network module in the Linux kernel 3.16 through 5.3.2 does not enforce CAPNETRAW, which means that unprivileged users can create a raw socket, aka CID-0614e2b73768...

Oracle Linux 6 : kernel (ELSA-2020-0790)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-0790 advisory. - isdn mISDN: enforce CAPNETRAW for raw sockets Andrea Claudi 1779473 CVE-2019-17055 - net cfg80211: wext: avoid copying malformed SSIDs Jarod Wilson...

CVE-2019-17054

atalkcreate in net/appletalk/ddp.c in the AFAPPLETALK network module in the Linux kernel through 5.3.2 does not enforce CAPNETRAW, which means that unprivileged users can create a raw socket, aka CID-6cc03e8aa36c...

SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2019:3295-1)

The SUSE Linux Enterprise 15 SP1 RT kernel was updated to receive various security and bugfixes. The following security bugs were fixed : CVE-2019-15916: Fixed a memory leak in registerqueuekobjects which might have led denial of service bsc1149448. CVE-2019-0154: Fixed an improper access control...