PT-2024-40552 · Git +1 · Ntopng

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: A heap buffer overflow read issue is identified, related to the processing of packets by the NetworkInterface. The crash occurs in the processPacket and...

Rockwell Automation Stratix 5900 Exposure of Sensitive Information to an Unauthorized Actor (CVE-2016-6415)

A vulnerability in Internet Key Exchange version 1 IKEv1 packet processing code in Cisco IOS, Cisco IOS XE, and Cisco IOS XR Software could allow an unauthenticated, remote attacker to retrieve memory contents, which could lead to the disclosure of confidential information. The vulnerability is d...

PT-2023-35584 · Git +1 · Ntopng

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: A heap-buffer-overflow READ 1 crash has been reported. The crash occurs in the IEC104Stats::processPacket function, which is called by...

kernel: wifi: ath11k: fix monitor mode bringup crash

A null pointer dereference vulnerability was found in the ath11k wireless driver in the Linux kernel. When an interface is brought up in monitor mode, the driver attempts to extract packet type from RAW monitor ring packets, which lack the expected structure. This causes a kernel crash due to...

The vulnerability of PPMD in Juniper Networks Junos router series MX operating systems allows a attacker to cause a service failure.

The vulnerability of the PPMD module in Juniper Networks Junos routers of the MX series operating systems is related to improper handling of indeterminate values. Exploiting this vulnerability can allow an attacker to cause service interruptions remotely...

CVE-2023-20244

A vulnerability in the internal packet processing of Cisco Firepower Threat Defense FTD Software for Cisco Firepower 2100 Series Firewalls could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to improper handli...

Design/Logic Flaw

A vulnerability in the internal packet processing of Cisco Firepower Threat Defense FTD Software for Cisco Firepower 2100 Series Firewalls could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to improper handli...

PT-2023-7572 · Cisco · Cisco Ftd

Name of the Vulnerable Software and Affected Versions: Cisco Firepower Threat Defense FTD Software for Cisco Firepower 2100 Series Firewalls affected versions not specified Description: A vulnerability in the internal packet processing of Cisco Firepower Threat Defense FTD Software could allow an...

Cisco Firepower Threat Defense Security Vulnerability

Cisco Firepower Threat Defense FTD is a suite of unified software from Cisco that provides next-generation firewall services. A security vulnerability in Cisco Firepower Threat Defense for Cisco Firepower 2100 Series Firewalls arises from a flaw in internal packet processing that could allow an...

The vulnerability of the Suricata intrusion detection and prevention system arises from the operation going beyond the buffer boundaries in memory. This allows attackers to circumvent security restrictions and execute the TCP Reset attack.

The vulnerability of the Suricata intrusion detection and prevention system lies in the fact that the operation escapes the buffer in memory due to insufficient checking of the values of the FIN, SYN, and ACK parameters during packet processing. Exploiting this vulnerability allows a remote...

Juniper Networks Junos OS Security Vulnerability

Juniper Networks Junos OS is a Juniper Networks network operating system for the company's hardware devices. The OS provides a secure programming interface and the Junos SDK. A security vulnerability exists in Juniper Networks Junos OS that stems from a misauthorization vulnerability in CP packet...

Design/Logic Flaw

TouchLink packets processed after timeout or out of range due to Operation on a Resource after Expiration and Missing Release of Resource after Effective Lifetime may allow a device to be added outside of valid TouchLink range or pairing duration This issue affects Ember ZNet 7.1.x from 7.1.3...

The vulnerability of the packet-processing function in microprogramming software for Cisco Aironet Access Points allows a intruder to trigger a service failure.

The vulnerability of the packet-processing function in microprogrammed software for Cisco Aironet Access Points is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a attacker to cause service interruptions...

Cisco Access Point Software Uncontrolled Resource Consumption (cisco-sa-ap-dos-capwap-DDMCZS4m)

According to its self-reported version, Cisco Access Point Software Uncontrolled Resource Consumption is affected by a vulnerability. - A vulnerability in the packet processing functionality of Cisco access point AP software could allow an unauthenticated, adjacent attacker to exhaust resources o...

CVE-2023-20268

A vulnerability in the packet processing functionality of Cisco access point AP software could allow an unauthenticated, adjacent attacker to exhaust resources on an affected device. This vulnerability is due to insufficient management of resources when handling certain types of traffic. An...

CVE-2023-20268

Cisco CVE-2023-20268 affects Cisco Access Point (AP) software where the packet processing path can be abused by an unauthenticated, adjacent attacker sending specific wireless traffic to exhaust device resources. The vulnerability can disrupt CAPWAP tunnels and cause intermittent wireless client ...

The vulnerability of the DNS-server BIND daemon, which allows a hacker to cause a service failure.

The vulnerability of the DNS-server BIND daemon is related to the escape of operations beyond the buffer in memory due to uncontrolled recursion during the processing of incoming packets. Exploiting this vulnerability allows a malicious actor to cause service failures by sending specially crafted...

ROS-20230913-03

A vulnerability in libreswan software is related to a null pointer dereferencing error in the IKEv1 fast mode packets. Exploitation of the vulnerability could allow an attacker, remotely send specially crafted packets to the system and perform a denial-of-service attack. denial-of-service attack...

CVE-2023-37459 Out-of-bounds read when processing a received IPv6 packet

Contiki-NG is an operating system for internet-of-things devices. In versions 4.9 and prior, when a packet is received, the Contiki-NG network stack attempts to start the periodic TCP timer if it is a TCP packet with the SYN flag set. But the implementation does not first verify that a full TCP...

FreeBSD : FreeBSD -- pf incorrectly handles multiple IPv6 fragment headers (d35373ae-4d34-11ee-8e38-002590c1f29c)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the d35373ae-4d34-11ee-8e38-002590c1f29c advisory. - In pf packet processing with a 'scrub fragment reassemble' rule, a packet containing multiple IPv6...