Lucene search
K

892 matches found

NVD
NVD
added 2025/04/02 9:15 p.m.11 views

CVE-2025-2704

OpenVPN version 2.6.1 through 2.6.13 in server mode using TLS-crypt-v2 allows remote attackers to trigger a denial of service by corrupting and replaying network packets in the early handshake phase...

7.5CVSS0.00815EPSS
Exploits0References3
CVE
CVE
added 2025/04/02 9:0 p.m.147 views

CVE-2025-2704

CVE-2025-2704 affects OpenVPN server mode with TLS-crypt-v2, for versions 2.6.1–2.6.13. The vulnerability allows remote attackers to trigger a denial of service by corrupting and replaying network packets in the early handshake phase. Impact is described as Availability loss with a network attack...

7.5CVSS7.2AI score0.00815EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2025/04/02 9:0 p.m.6 views

CVE-2025-2704

OpenVPN version 2.6.1 through 2.6.13 in server mode using TLS-crypt-v2 allows remote attackers to trigger a denial of service by corrupting and replaying network packets in the early handshake phase...

6.8AI score0.00815EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/02 9:0 p.m.18 views

CVE-2025-2704

OpenVPN version 2.6.1 through 2.6.13 in server mode using TLS-crypt-v2 allows remote attackers to trigger a denial of service by corrupting and replaying network packets in the early handshake phase...

0.00815EPSS
Exploits0References2
NVD
NVD
added 2025/04/02 2:15 p.m.10 views

CVE-2024-45064

A buffer overflow vulnerability exists in the FileX Internal RAM interface functionality of STMicroelectronics X-CUBE-AZRTOS-WL 2.0.0. A specially crafted set of network packets can lead to code execution. An attacker can send a sequence of requests to trigger this vulnerability...

9.8CVSS0.00989EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/04/02 1:41 p.m.15 views

CVE-2024-45064

A buffer overflow vulnerability exists in the FileX Internal RAM interface functionality of STMicroelectronics X-CUBE-AZRTOS-WL 2.0.0. A specially crafted set of network packets can lead to code execution. An attacker can send a sequence of requests to trigger this vulnerability...

8.5CVSS0.00989EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/04/02 1:41 p.m.5 views

CVE-2024-45064

A buffer overflow vulnerability exists in the FileX Internal RAM interface functionality of STMicroelectronics X-CUBE-AZRTOS-WL 2.0.0. A specially crafted set of network packets can lead to code execution. An attacker can send a sequence of requests to trigger this vulnerability...

8.5CVSS7.9AI score0.00989EPSS
Exploits1References1
CVE
CVE
added 2025/04/02 1:41 p.m.70 views

CVE-2024-45064

CVE-2024-45064 concerns STMicroelectronics X-CUBE-AZRTOS-WL 2.0.0. Cisco Talos confirms a buffer overflow in the FileX Internal RAM interface that can enable code execution via a specially crafted sequence of network requests. The root cause is insufficient validation when calculating the RAM-dis...

9.8CVSS7.9AI score0.00989EPSS
Exploits1References2Affected Software10
Talos
Talos
added 2025/04/02 12:0 a.m.9 views

STMicroelectronics X-CUBE-AZRTOS-F7 FileX Internal RAM interface buffer overflow vulnerability

Talos Vulnerability Report TALOS-2024-2096 STMicroelectronics X-CUBE-AZRTOS-F7 FileX Internal RAM interface buffer overflow vulnerability April 2, 2025 CVE Number CVE-2024-45064 SUMMARY A buffer overflow vulnerability exists in the FileX Internal RAM interface functionality of STMicroelectronics...

9.8CVSS7.8AI score0.00989EPSS
Exploits1
CNNVD
CNNVD
added 2025/03/24 12:0 a.m.4 views

Linux Open Network Operating System(ONOS) 安全漏洞

Linux Open Network Operating System ONOS is an open source SDN network operating system from the Linux Foundation in the United States. A security vulnerability exists in the Linux Open Network Operating System ONOS version v2.7.0, which stems from specially crafted LLDP packets that could lead t...

9.8CVSS7.2AI score0.00511EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2020-24586

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The 802.11 standard that underpins Wi-Fi Protected Access WPA, WPA2, and WPA3 and Wired Equivalent Privacy WEP doesn't require that received fragments be cleare...

3.5CVSS7AI score0.05765EPSS
Exploits2References3
OSV
OSV
added 2025/02/26 2:11 a.m.15 views

CVE-2022-49369 amt: fix possible memory leak in amt_rcv()

In the Linux kernel, the following vulnerability has been resolved: amt: fix possible memory leak in amtrcv If an amt receives packets and it finds socket. If it can't find a socket, it should free a received skb. But it doesn't. So, a memory leak would possibly occur...

5.5CVSS5AI score0.00243EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/02/24 12:0 a.m.11 views

Siemens SIMATIC and SCALANCE Devices Use After Free (CVE-2023-4921)

A use-after-free vulnerability in the Linux kernel's net/sched: schqfq component can be exploited to achieve local privilege escalation. When the plug qdisc is used as a class of the qfq qdisc, sending network packets triggers use-after-free in qfqdequeue due to the incorrect .peek handler of...

7.8CVSS6.7AI score0.00396EPSS
Exploits1References7
BDU FSTEC
BDU FSTEC
added 2025/02/11 12:0 a.m.6 views

The vulnerability of the InnoDB component in the Oracle Database Server system allows a hacker to gain privileged access, modify data, or cause service failures.

The vulnerability of the InnoDB component in the Oracle Database Server system is related to deficiencies in the authentication process. Exploiting this vulnerability can allow a malicious actor to gain privileged access, modify data, or cause service failures through network packets...

7.5CVSS6.9AI score0.00702EPSS
Exploits0References6Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/02/11 12:0 a.m.5 views

The vulnerability of the Java VM component of the Oracle Database Server management system allows a hacker to gain access to read data or modify data.

The vulnerability of the Java VM component of the Oracle Database Server management system is related to deficiencies in the authentication process. Exploiting this vulnerability allows a malicious actor to gain read access to data or modify data using network packets...

4.2CVSS7.7AI score0.00237EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/02/10 12:0 a.m.5 views

Vulnerability of the Server component: The Information Schema of the Oracle MySQL Server database management system, which allows a hacker to cause a service failure.

Vulnerability of the Server component: The information schema of the Oracle MySQL Server database management system is related to the exhaustion of memory resources. Exploiting this vulnerability can allow a malicious actor to cause service interruptions through network packets...

6.8CVSS6.6AI score0.01021EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/02/10 12:0 a.m.6 views

Vulnerability of the Server component: Security: Privileges of the Oracle MySQL Server database management system, allowing attackers to gain read access to data, modify data, or obtain privileged access.

The vulnerability of the Server component, specifically the Security: Privileges section of the Oracle MySQL Server database management system, is related to deficiencies in the authentication mechanism. Exploiting this vulnerability allows a malicious actor to gain read access to data, modify...

5.5CVSS6.8AI score0.00481EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/02/10 12:0 a.m.5 views

Vulnerability of the Server component: The Optimizer component of the Oracle MySQL Server database management system, which allows a hacker to cause a service failure.

The vulnerability of the Oracle MySQL Server component of the database management system’s optimizer is related to the exhaustion of memory resources. Exploiting this vulnerability can allow a malicious actor to cause service interruptions through network packets...

6.8CVSS6.3AI score0.00928EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/02/10 12:0 a.m.6 views

Vulnerability of the Server component: The Oracle MySQL Server database management system’s packaging, which allows a hacker to trigger a service failure.

The vulnerability of the Oracle MySQL Server database management system component involves the exhaustion of memory resources. Exploiting this vulnerability can allow a malicious actor to cause service interruptions through network packets...

6.8CVSS6.6AI score0.00833EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/02/10 12:0 a.m.6 views

Vulnerability of the Server component: The Performance Schema of the Oracle MySQL Server database management system, which allows attackers to cause service interruptions.

The vulnerability of the Server component of the Oracle MySQL Server’s database management system is related to the exhaustion of memory resources. Exploiting this vulnerability can allow a malicious actor to cause service interruptions through network packets...

6.8CVSS6.6AI score0.00928EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder