CVE-2023-4809

In pf packet processing with a 'scrub fragment reassemble' rule, a packet containing multiple IPv6 fragment headers would be reassembled, and then immediately processed. That is, a packet with multiple fragment extension headers would not be recognized as the correct ultimate payload. Instead a...

CVE-2023-4809 pf incorrectly handles multiple IPv6 fragment headers

In pf packet processing with a 'scrub fragment reassemble' rule, a packet containing multiple IPv6 fragment headers would be reassembled, and then immediately processed. That is, a packet with multiple fragment extension headers would not be recognized as the correct ultimate payload. Instead a...

CVE-2023-4809

The CVE-2023-4809 issue affects FreeBSD pf: in a scrub fragment reassemble scenario, a packet carrying multiple IPv6 fragment headers can be reassembled and then misinterpreted as its payload, allowing IPv6 fragments to bypass pf rules that assume reassembly. Impact: fragmented packets may be for...

Memory corruption

Memory corruption in Graphics while processing user packets for command submission...

PT-2023-35985 · Git +1 · Ntopng

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: A heap-buffer-overflow READ 4 crash has been reported. The crash occurs in the ICMPinfo::dissectICMP function, which is called by...

Juniper Junos OS Vulnerability (JSA71639)

The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA71639 advisory. - An Improper Handling of Exceptional Conditions vulnerability in packet processing of Juniper Networks Junos OS on MX Series allows an unauthenticated network-based attacke...

The vulnerability of the microprogrammed software of SIMATIC MV540, MV550, and MV560 barcode readers, related to uncontrolled resource consumption, allows a intruder to cause malfunctions during maintenance operations.

The vulnerability of the microprogramming software for SIMATIC MV540, MV550, and MV560 barcode readers is related to an uncontrolled consumption of resources during the processing of IP packets. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

kernel: cls_flower: out-of-bounds write in fl_set_geneve_opt()

A flaw was found in the TC flower classifier clsflower in the Networking subsystem of the Linux kernel. This issue occurs when sending two TCAFLOWERKEYENCOPTSGENEVE packets with a total size of 252 bytes, which results in an out-of-bounds write when the third packet enters flsetgeneveopt,...

Cisco Nexus 5000, 6000, and 7000 Series Switches Software IS-IS Packet Processing Denial of Service (CVE-2017-3804)

A vulnerability in Intermediate System-to-Intermediate System IS-IS protocol packet processing of Cisco Nexus 5000, 6000, and 7000 Series Switches software could allow an unauthenticated, adjacent attacker to cause a reload of the affected device. Switches in the FabricPath domain crash because o...

CVE-2023-36834

An Incomplete Internal State Distinction vulnerability in the packet forwarding engine PFE of Juniper Networks Junos OS on SRX 4600 and SRX 5000 Series allows an adjacent attacker to cause a Denial of Service DoS. If an SRX is configured in L2 transparent mode the receipt of a specific genuine...

CVE-2023-36834 Junos OS: SRX 4600 and SRX 5000 Series: The receipt of specific genuine packets by SRXes configured for L2 transparency will cause a DoS

An Incomplete Internal State Distinction vulnerability in the packet forwarding engine PFE of Juniper Networks Junos OS on SRX 4600 and SRX 5000 Series allows an adjacent attacker to cause a Denial of Service DoS. If an SRX is configured in L2 transparent mode the receipt of a specific genuine...

CVE-2023-36832

An Improper Handling of Exceptional Conditions vulnerability in packet processing of Juniper Networks Junos OS on MX Series allows an unauthenticated network-based attacker to send specific packets to an Aggregated Multiservices AMS interface on the device, causing the packet forwarding engine PF...

Design/Logic Flaw

An Improper Handling of Exceptional Conditions vulnerability in packet processing of Juniper Networks Junos OS on MX Series allows an unauthenticated network-based attacker to send specific packets to an Aggregated Multiservices AMS interface on the device, causing the packet forwarding engine PF...

CVE-2023-36832 Junos OS: MX Series: PFE crash upon receipt of specific packet destined to an AMS interface

An Improper Handling of Exceptional Conditions vulnerability in packet processing of Juniper Networks Junos OS on MX Series allows an unauthenticated network-based attacker to send specific packets to an Aggregated Multiservices AMS interface on the device, causing the packet forwarding engine PF...

CVE-2023-36832 Junos OS: MX Series: PFE crash upon receipt of specific packet destined to an AMS interface

An Improper Handling of Exceptional Conditions vulnerability in packet processing of Juniper Networks Junos OS on MX Series allows an unauthenticated network-based attacker to send specific packets to an Aggregated Multiservices AMS interface on the device, causing the packet forwarding engine PF...

CVE-2023-36832

Summary: CVE-2023-36832 is an Improper Handling of Exceptional Conditions in Junos OS on MX Series, where unauthenticated attackers can send packets to the AMS interface to crash the PFE and cause DoS. Affected products/versions (MX Series Junos OS): all prior to 19.1R3-S10; 19.2 prior to 19.2R3-...

Juniper Networks Junos OS MX 安全漏洞

Juniper Networks Junos OS MX is a Juniper Networks network operating system for the company's hardware devices. The operating system provides a secure programming interface and the Junos SDK. A security vulnerability exists in Juniper Networks Junos OS MX that originates from allowing an attacker...

PT-2023-25722 · Juniper Networks · Junos

Name of the Vulnerable Software and Affected Versions: Juniper Networks Junos OS on SRX 4600 and SRX 5000 Series versions 20.1R1 and later versions Juniper Networks Junos OS on SRX 4600 and SRX 5000 Series versions 20.2 through 20.2R3-S6 Juniper Networks Junos OS on SRX 4600 and SRX 5000 Series...

PT-2023-4003 · Juniper Networks · Junos

Name of the Vulnerable Software and Affected Versions: Juniper Networks Junos OS on MX Series versions prior to 19.1R3-S10 Juniper Networks Junos OS on MX Series 19.2 versions prior to 19.2R3-S7 Juniper Networks Junos OS on MX Series 19.3 versions prior to 19.3R3-S8 Juniper Networks Junos OS on M...

PT-2023-35862 · Git +1 · Ntopng

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a heap-buffer-overflow read error. The crash occurs in the IEC104Stats::processPacket function, which is called by...