Lucene search
K

14 matches found

Tenable Nessus
Tenable Nessus
added 3 days ago6 views

Linux Distros Unpatched Vulnerability : CVE-2026-53148

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - thunderbolt: Clamp XDomain response data copy to allocation size tbxdppropertiesrequest derives the per-packet copy length from the response header without...

7CVSS5.8AI score0.0014EPSS
Exploits0References3
CVE
CVE
added 6 days ago17 views

CVE-2026-53148

The CVE affects the Linux kernel Thunderbolt driver (tb_xdp_properties_request) where per-packet copy length is derived from the response header without bounds checking against the allocated data buffer, causing a potential out-of-bounds memcpy and memory corruption. The issue can lead to denial ...

7CVSS5.7AI score0.0014EPSS
Exploits0References11
NVD
NVD
added 2026/05/06 12:16 p.m.20 views

CVE-2026-43254

In the Linux kernel, the following vulnerability has been resolved: ovpn: tcp - fix packet extraction from stream When processing TCP stream data in ovpntcprecv, we receive large cloned skbs from strprcv that may contain multiple coalesced packets. The current implementation has two bugs: 1. Head...

7.5CVSS0.00451EPSS
Exploits0References3
AlpineLinux
AlpineLinux
added 2026/01/27 6:33 p.m.5 views

CVE-2026-22264

Suricata is a network IDS, IPS and NSM engine. Prior to version 8.0.3 and 7.0.14, an unsigned integer overflow can lead to a heap use-after-free condition when generating excessive amounts of alerts for a single packet. Versions 8.0.3 and 7.0.14 contain a patch. As a workaround, do not run...

9.1CVSS6AI score0.00344EPSS
Exploits0References5
OSV
OSV
added 2026/01/26 11:10 a.m.8 views

CLSA-2026-1769424072 unbound: Fix of CVE-2024-8508

CVE-2024-8508: limit number of name compression calculations per packet to prevent CPU locking and potential denial of service...

5.3CVSS6.8AI score0.00806EPSS
Exploits0References1
OSV
OSV
added 2025/12/19 5:38 p.m.6 views

CLSA-2025-1765997462 unbound: Fix of CVE-2024-8508

CVE-2024-8508: limit number of name compression calculations per packet to prevent denial of service attacks...

5.3CVSS7.2AI score0.00806EPSS
Exploits0References1
OSV
OSV
added 2025/12/16 4:12 p.m.5 views

CLSA-2025-1765901537 unbound: Fix of CVE-2024-8508

CVE-2024-8508: limit number of name compression calculations per packet to prevent denial of service attacks...

5.3CVSS6.8AI score0.00806EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/27 6:54 a.m.10 views

CVE-2025-64330

A flaw was found in Suricata. This vulnerability allows a denial of service DoS via a single byte read heap overflow when logging the verdict in eve.alert and eve.drop records, requiring the per packet alert queue to be filled with alerts followed by a pass rule...

7.5CVSS6.5AI score0.0032EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/11/26 11:3 p.m.10 views

CVE-2025-64330 Suricata is vulnerable to a heap buffer overflow on verdict

Suricata is a network IDS, IPS and NSM engine developed by the OISF Open Information Security Foundation and the Suricata community. Prior to versions 7.0.13 and 8.0.2, a single byte read heap overflow when logging the verdict in eve.alert and eve.drop records can lead to crashes. This requires t...

7.5CVSS0.0032EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2025/05/20 5:29 p.m.3 views

unbound: Unbounded name compression could lead to Denial of Service

A flaw was found in Unbound which can lead to degraded performance and an eventual denial of service when handling replies with very large RRsets that require name compression to be applied. Versions prior to 1.21.1 do not have a hard limit on the number of name compression calculations that...

5.3CVSS7.2AI score0.00806EPSS
Exploits0References5
OSV
OSV
added 2025/01/10 10:9 a.m.9 views

CLSA-2025-1736503760 unbound: Fix of CVE-2024-8508

CVE-2024-8508: Limit number of name compression calculations per packet to prevent CPU lock and potential denial of service...

5.3CVSS6.7AI score0.00806EPSS
Exploits0References1
OSV
OSV
added 2024/10/03 5:15 p.m.7 views

UBUNTU-CVE-2024-8508

NLnet Labs Unbound up to and including version 1.21.0 contains a vulnerability when handling replies with very large RRsets that it needs to perform name compression for. Malicious upstreams responses with very large RRsets can cause Unbound to spend a considerable time applying name compression ...

5.3CVSS6.9AI score0.00806EPSS
Exploits0References4
OSV
OSV
added 2019/07/02 9:15 p.m.4 views

CVE-2019-5599

In FreeBSD 12.0-STABLE before r349197 and 12.0-RELEASE before 12.0-RELEASE-p6, a bug in the non-default RACK TCP stack can allow an attacker to cause several linked lists to grow unbounded and cause an expensive list traversal on every packet being processed, leading to resource exhaustion and a...

7.5CVSS7.1AI score0.05226EPSS
Exploits1References10
OSV
OSV
added 2018/08/06 8:29 p.m.3 views

DEBIAN-CVE-2018-5390

Linux kernel versions 4.9+ can be forced to make very expensive calls to tcpcollapseofoqueue and tcppruneofoqueue for every incoming packet which can lead to a denial of service...

7.5CVSS7.6AI score0.7354EPSS
Exploits0References1
Rows per page
Query Builder