CVE-2019-1324

An information disclosure vulnerability exists when the Windows TCP/IP stack improperly handles IPv6 flowlabel filled in packets, aka 'Windows TCP/IP Information Disclosure Vulnerability'...

Siemens Simatic Uncontrolled Resource Consumption

A vulnerability has been identified in SIMATIC ET 200SP Open Controller All versions = V2.0 and = V2.0 and = V2.0 and V2.5. An attacker can cause a denial-of-service condition on the network stack by sending a large number of specially crafted packets to the PLC. The PLC will lose its ability to...

CISA Releases Advisory on Wind River VxWorks Platform

The Cybersecurity and Infrastructure Security Agency CISA has released an Industrial Control Systems ICS Advisory on multiple vulnerabilities in the Wind River VxWorks Platform. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. CISA encourages...

Kernel: tcp: excessive resource consumption while processing SACK blocks allows remote denial of service

An excessive resource consumption flaw was found in the way the Linux kernel's networking subsystem processed TCP Selective Acknowledgment SACK segments. While processing SACK segments, the Linux kernel's socket buffer SKB data structure becomes fragmented, which leads to increased resource...

Siemens SIMATIC ET 200SP 2.0 < 2.1.6 and SIMATIC S7-1500 2.0 < 2.5 DOS

Binary data 720164.prm...

Denial Of Service (DoS)

kernel is vulnerable to denial of service. It was found that the Linux kernel's IPv6 network stack did not properly validate the value of the MTU variable when it was set. A remote attacker could potentially use this flaw to disrupt a target system's networking packet loss by setting an invalid M...

CVE-2019-0688

An information disclosure vulnerability exists when the Windows TCP/IP stack improperly handles fragmented IP packets, aka 'Windows TCP/IP Information Disclosure Vulnerability'...

CVE-2018-19282

Rockwell Automation PowerFlex 525 AC Drives 5.001 and earlier allow remote attackers to cause a denial of service by crashing the Common Industrial Protocol CIP network stack. The vulnerability allows the attacker to crash the CIP in a way that it does not accept new connections, but keeps the...

Design/Logic Flaw

Rockwell Automation PowerFlex 525 AC Drives 5.001 and earlier allow remote attackers to cause a denial of service by crashing the Common Industrial Protocol CIP network stack. The vulnerability allows the attacker to crash the CIP in a way that it does not accept new connections, but keeps the...

CVE-2018-19282

Rockwell Automation PowerFlex 525 AC Drives 5.001 and earlier allow remote attackers to cause a denial of service by crashing the Common Industrial Protocol CIP network stack. The vulnerability allows the attacker to crash the CIP in a way that it does not accept new connections, but keeps the...

CVE-2018-19282

Summary: CVE-2018-19282 affects Rockwell Automation PowerFlex 525 AC Drives (version 5.001 and earlier). The root cause is improper handling of CIP/EtherNet/IP packets, allowing a remote, unauthenticated attacker to crash the CIP network stack and cause a denial of service. This crash prevents ne...

CVE-2018-19282

Rockwell Automation PowerFlex 525 AC Drives 5.001 and earlier allow remote attackers to cause a denial of service by crashing the Common Industrial Protocol CIP network stack. The vulnerability allows the attacker to crash the CIP in a way that it does not accept new connections, but keeps the...

CVE-2018-12178

Buffer overflow in network stack for EDK II may allow unprivileged user to potentially enable escalation of privilege and/or denial of service via network...

DEBIAN-CVE-2018-12178

Buffer overflow in network stack for EDK II may allow unprivileged user to potentially enable escalation of privilege and/or denial of service via network...

CVE-2018-12178

Buffer overflow in network stack for EDK II may allow unprivileged user to potentially enable escalation of privilege and/or denial of service via network...

UBUNTU-CVE-2018-12178

Buffer overflow in network stack for EDK II may allow unprivileged user to potentially enable escalation of privilege and/or denial of service via network...

CVE-2018-12178

Buffer overflow in network stack for EDK II may allow unprivileged user to potentially enable escalation of privilege and/or denial of service via network...

Buffer overflow

Buffer overflow in network stack for EDK II may allow unprivileged user to potentially enable escalation of privilege and/or denial of service via network...

CVE-2018-12178

CVE-2018-12178 is a buffer overflow in the EDK II network stack that could allow a remote attacker to escalate privileges or cause a denial of service via network input. Public advisories reference this CVE among multiple EDK II issues affecting Linux distributions (e.g., Ubuntu USN-4349-1 for 16...

CVE-2018-12178

Buffer overflow in network stack for EDK II may allow unprivileged user to potentially enable escalation of privilege and/or denial of service via network...