CVE-2025-47323

Memory corruption while routing GPR packets between user and root when handling large data packet...

CVE-2025-47323

Memory corruption while routing GPR packets between user and root when handling large data packet...

EUVD-2025-204028

Memory corruption while routing GPR packets between user and root when handling large data packet...

CVE-2025-47323

CVE-2025-47323 describes memory corruption when routing GPR packets between user and root space, in Qualcomm embedded platform firmware. Red Hat, NVD, CVE List and vuln enrichment entries all cite memory corruption on handling large data packets as the issue, with several sources also noting a re...

PT-2025-50084

Name of the Vulnerable Software and Affected Versions Qualcomm embedded platform firmware affected versions not specified Description A flaw exists in the Qualcomm embedded platform firmware related to an integer overflow. Exploitation may allow an attacker to cause a denial-of-service condition...

Disable the Source Packet Routing

In a network, source routing allows the sender to specify some or all routes for data packets to pass through the network. In regular routing, routers in the network determine the path based on the destination of the data packets. If a large number of packets are tampered with and pass through th...

CVE-2024-5801

Enabled IP Forwarding feature in B&R Automation Runtime versions before 6.0.2 may allow remote attack-ers to compromise network security by routing IP-based packets through the host, potentially by-passing firewall, router, or NAC filtering...

CVE-2024-26804

CVE-2024-26804 concerns a Linux kernel vulnerability in the net/ip_tunnel subsystem where headroom could inflate without bound when gre/ipip tunnels route in a cycle. The root cause, as described in the vulnerability report, is that ip_tunnel_xmit can trigger an ever-increasing needed_headroom on...

Design/Logic Flaw

A vulnerability in class-of-service CoS queue management in Juniper Networks Junos OS on the ACX2K Series devices allows an unauthenticated network-based attacker to cause a Denial of Service DoS. Specific packets are being incorrectly routed to a queue used for other high-priority traffic such a...

Linux: sysctl net.ipv6.conf.all.forwarding

IP forwarding is used to determine which path a packet can be sent over multiple networks. Note: This scripts looks for SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Circle with Disney Token Routing Vulnerability

Summary An exploitable routing vulnerability exists in the Circle with Disney cloud infrastructure. A specially crafted packet can make the Circle cloud route a packet to any arbitrary Circle device. An attacker needs network connectivity to the Internet to trigger this vulnerability. Tested...

USN-2562-1: Linux kernel (Trusty HWE) vulnerabilities

Sun Baoliang discovered a use after free flaw in the Linux kernel's SCTP Stream Control Transmission Protocol subsystem during INIT collisions. A remote attacker could exploit this flaw to cause a denial of service system crash or potentially escalate their privileges on the system. CVE-2015-1421...

Ubuntu 14.10 : linux vulnerabilities (USN-2546-1)

A flaw was discovered in the automatic loading of modules in the crypto subsystem of the Linux kernel. A local user could exploit this flaw to load installed kernel modules, increasing the attack surface and potentially using this to gain administrative privileges. CVE-2013-7421 A flaw was...

Cisco IOS XR Software Malformed Border Gateway Protocol Attribute Vulnerability (cisco-sa-20120926-bgp)

Cisco IOS XR Software contains a vulnerability in the Border Gateway Protocol BGP routing protocol feature. The vulnerability can be triggered when the router receives a malformed attribute from a peer on an existing BGP session. Successful exploitation of this vulnerability can cause all BGP...

D-Link Router Detection

The remote device is a D-Link router. These devices route packets and may provide port forwarding, DMZ configuration and other networking services. C Tenable, Inc. include"compat.inc"; if description scriptid44319; scriptversion"1.17"; scriptsetattributeattribute:"pluginmodificationdate",...

Cisco IOS GRE报文路由选项解析溢出漏洞

Cisco互联网操作系统（IOS）是Cisco设备所使用的操作系统。 Cisco Systems IOS在解析包含有GRE源路由信息的GRE报文时存在漏洞，远程攻击者可能导致设备处理报文出错。 如果收到了特制的GRE报文的话，IOS设备没有验证偏移字段是否指向报文内，如果偏移值被设置为负值，IOS直接从包含有IP报文全长的整数中减去了偏移，导致缓冲区访问越界溢出。这可能导致将报文环缓冲区（ring buffer）的其他内存内容解释为负载IP报文并以很大的长度信息重新注入到路由队列中： GRE decapsulated IP 0.3.74.0-0.0.1.30 len=65407,...

CVE-2000-0289

IP masquerading in Linux 2.2.x allows remote attackers to route UDP packets through the internal interface by modifying the external source IP address and port number to match those of an established connection...