Lucene search
+L

172 matches found

nessus
nessus
added 2026/06/22 12:0 a.m.5 views

SUSE SLES15: libopenvswitch-3_5-0 / libovn-25_03-0 / openvswitch / etc (SUSE-SU-2026:2463-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2463-1 advisory. This update for openvswitch fixes the following issues Update ovn to 25.03.3: - CVE-2026-5265: heap over-read in ICMP error respons...

8.6CVSS5.9AI score0.00868EPSS
Exploits0References7
osv
osv
added 2026/06/17 8:36 a.m.2 views

SUSE-SU-2026:22152-1 Security update for openvswitch

This update for openvswitch fixes the following issues - CVE-2026-5265: heap over-read in ICMP error response generation bsc1262498. - CVE-2026-5367: heap over-read in OVN DHCPv6 client ID processing bsc1262499. - CVE-2026-34956: Invalid memory access in conntrack FTP alg bsc1261273. Changes for...

8.6CVSS6.1AI score0.00868EPSS
Exploits0References7
osv
osv
added 2026/06/17 8:36 a.m.4 views

SUSE-SU-2026:22145-1 Security update for openvswitch

This update for openvswitch fixes the following issues - CVE-2026-5265: heap over-read in ICMP error response generation bsc1262498. - CVE-2026-5367: heap over-read in OVN DHCPv6 client ID processing bsc1262499. - CVE-2026-34956: Invalid memory access in conntrack FTP alg bsc1261273. Changes for...

8.6CVSS6.1AI score0.00868EPSS
Exploits0References7
redhat
redhat
added 2026/06/01 12:15 a.m.16 views

ovn: OVN: Information disclosure via crafted DHCPv6 packets

A flaw was found in OVN Open Virtual Network. A remote attacker, by sending crafted DHCPv6 Dynamic Host Configuration Protocol for IPv6 SOLICIT packets with an inflated Client ID length, could cause the ovn-controller to read beyond the bounds of a packet. This out-of-bounds read can lead to the...

8.6CVSS5.8AI score0.00868EPSS
Exploits0References4
nessus
nessus
added 2026/06/01 12:0 a.m.14 views

RHEL 10 : ovn25.09 (RHSA-2026:22111)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:22111 advisory. OVN, the Open Virtual Network, is a system to support virtual network abstraction. OVN complements the existing capabilities of OVS to add...

8.6CVSS5.9AI score0.00868EPSS
Exploits0References13
redhatcve
redhatcve
added 2026/05/15 12:39 p.m.13 views

CVE-2026-40243

A flaw was found in Incus, a system container and virtual machine manager. The Open Virtual Network OVN database connection logic contains broken Transport Layer Security TLS validation. A remote attacker, by impersonating or intercepting the OVN endpoint on the management network, can present a...

4.8CVSS5.8AI score0.00173EPSS
Exploits1References2
susecve
susecve
added 2026/05/08 2:22 a.m.8 views

SUSE CVE-2026-40243

Incus is a system container and virtual machine manager. In versions before 7.0.0, broken TLS validation logic in the OVN database connection logic can allow connections to an attacker's OVN database. The OVN client implementations disable Go standard TLS server verification and replace it with...

2.3CVSS5.8AI score0.00173EPSS
Exploits1References3
nvd
nvd
added 2026/05/06 9:16 p.m.24 views

CVE-2026-40243

Incus is a system container and virtual machine manager. In versions before 7.0.0, broken TLS validation logic in the OVN database connection logic can allow connections to an attacker's OVN database. The OVN client implementations disable Go standard TLS server verification and replace it with...

4.8CVSS0.00173EPSS
Exploits1References5
cvelist
cvelist
added 2026/05/06 8:38 p.m.76 views

CVE-2026-40243 Incus OVN TLS verification accepts peer-supplied roots and permits endpoint impersonation

Incus is a system container and virtual machine manager. In versions before 7.0.0, broken TLS validation logic in the OVN database connection logic can allow connections to an attacker's OVN database. The OVN client implementations disable Go standard TLS server verification and replace it with...

2.3CVSS0.00173EPSS
Exploits1References5
attackerkb
attackerkb
added 2026/05/06 8:38 p.m.10 views

CVE-2026-40243

Incus is a system container and virtual machine manager. In versions before 7.0.0, broken TLS validation logic in the OVN database connection logic can allow connections to an attacker's OVN database. The OVN client implementations disable Go standard TLS server verification and replace it with...

2.3CVSS5.8AI score0.00173EPSS
Exploits1References6Affected Software1
snyk
snyk
added 2026/05/04 7:8 p.m.7 views

Improper Authentication

Overview Affected versions of this package are vulnerable to Improper Authentication in the OVN database connection process. An attacker can gain unauthorized access to sensitive network configuration data by presenting a rogue self-signed certificate chain during the TLS handshake, which is...

4.8CVSS5.8AI score0.00173EPSS
Exploits1References2
snyk
snyk
added 2026/05/04 7:8 p.m.8 views

Improper Authentication

Overview Affected versions of this package are vulnerable to Improper Authentication in the OVN database connection process. An attacker can gain unauthorized access to sensitive network configuration data by presenting a rogue self-signed certificate chain during the TLS handshake, which is...

4.8CVSS5.8AI score0.00173EPSS
Exploits1References2
snyk
snyk
added 2026/05/04 7:8 p.m.11 views

Improper Authentication

Overview Affected versions of this package are vulnerable to Improper Authentication in the OVN database connection process. An attacker can gain unauthorized access to sensitive network configuration data by presenting a rogue self-signed certificate chain during the TLS handshake, which is...

4.8CVSS5.8AI score0.00173EPSS
Exploits1References2
github
github
added 2026/05/04 7:8 p.m.14 views

Incus has an OVN TLS Verification that Accepts Peer-Supplied Roots

Summary Broken TLS validation logic in the OVN database connection logic could allow connections to an attacker's OVN database. OVN uses mTLS for authentication, so the attacker cannot actually perform a full man in the middle attack as they won't be able to authenticated with the real OVN...

4.8CVSS5.8AI score0.00173EPSS
Exploits1References7Affected Software1
osv
osv
added 2026/05/04 7:8 p.m.6 views

GHSA-C839-4QXR-J4X3 Incus has an OVN TLS Verification that Accepts Peer-Supplied Roots

Summary Broken TLS validation logic in the OVN database connection logic could allow connections to an attacker's OVN database. OVN uses mTLS for authentication, so the attacker cannot actually perform a full man in the middle attack as they won't be able to authenticated with the real OVN...

2.3CVSS5.8AI score0.00173EPSS
Exploits1References7
ptsecurity
ptsecurity
added 2026/05/04 12:0 a.m.16 views

PT-2026-37102

Name of the Vulnerable Software and Affected Versions Incus versions prior to 7.0.0 Description Broken TLS validation logic in the OVN database connection logic allows connections to an attacker's OVN database. The OVN client implementations disable standard Go TLS server verification and use a...

4.8CVSS5.8AI score0.00173EPSS
Exploits1References20
osv
osv
added 2026/04/30 10:10 a.m.5 views

RHSA-2026:11694 Red Hat Security Advisory: ovn-2021 security update

Bulletin has no description...

8.6CVSS4.8AI score0.00868EPSS
Exploits0References12
nessus
nessus
added 2026/04/30 12:0 a.m.8 views

RHEL 9 : ovn23.06 (RHSA-2026:11696)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:11696 advisory. OVN, the Open Virtual Network, is a system to support virtual network abstraction. OVN complements the existing capabilities of OVS to add...

8.6CVSS5.5AI score0.00868EPSS
Exploits0References7
nessus
nessus
added 2026/04/30 12:0 a.m.8 views

RHEL 8 : ovn-2021 (RHSA-2026:11694)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:11694 advisory. OVN, the Open Virtual Network, is a system to support virtual network abstraction. OVN complements the existing capabilities of OVS to add...

8.6CVSS5.7AI score0.00868EPSS
Exploits0References7
nessus
nessus
added 2026/04/30 12:0 a.m.7 views

RHEL 9 : ovn23.09 (RHSA-2026:11698)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:11698 advisory. OVN, the Open Virtual Network, is a system to support virtual network abstraction. OVN complements the existing capabilities of OVS to add...

8.6CVSS5.5AI score0.00868EPSS
Exploits0References7
Rows per page
Query Builder