Lucene search
K

1130 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/07 12:0 a.m.3 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000348)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000348 advisory. A flaw was found in the HDLCPPP module of the Linux kernel in versions before 5.9-rc7. Memory corruption and a read overflow is caused by improper input validation i...

7.5CVSS6.2AI score0.03292EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2026/01/05 12:0 a.m.4 views

Huawei EulerOS: Security Advisory for ppp (EulerOS-SA-2026-1002)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS6.7AI score0.00196EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2026/01/05 12:0 a.m.2 views

Huawei EulerOS: Security Advisory for ppp (EulerOS-SA-2026-1005)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS6.7AI score0.00196EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2025/12/24 9:2 a.m.6 views

netfilter: flowtable: account for Ethernet header in nf_flow_pppoe_proto()

...

5.5CVSS5.4AI score0.00156EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2025/12/10 12:38 a.m.9 views

SUSE CVE-2022-50655

In the Linux kernel, the following vulnerability has been resolved: ppp: associate skb with a device at tx Syzkaller triggered flow dissector warning with the following: r0 = openat$ppp0xffffffffffffff9c, &0x7f0000000000, 0xc0802, 0x0 ioctl$PPPIOCNEWUNITr0, 0xc004743e, &0x7f00000000c0...

6.5AI score0.00183EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/12/10 12:35 a.m.5 views

SUSE CVE-2023-53809

In the Linux kernel, the following vulnerability has been resolved: l2tp: Avoid possible recursive deadlock in l2tptunnelregister When a file descriptor of pppol2tp socket is passed as file descriptor of UDP socket, a recursive deadlock occurs in l2tptunnelregister. This situation is reproduced b...

5.5CVSS6.3AI score0.00162EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/12/10 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2022-50655

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ppp: associate skb with a device at tx Syzkaller triggered flow dissector warning with the following: r0 = openat$ppp0xffffffffffffff9c, &0x7f0000000000, 0xc080...

6.2AI score0.00183EPSS
Exploits0References3
EUVD
EUVD
added 2025/12/09 3:31 a.m.2 views

EUVD-2023-60097

In the Linux kernel, the following vulnerability has been resolved: l2tp: Avoid possible recursive deadlock in l2tptunnelregister When a file descriptor of pppol2tp socket is passed as file descriptor of UDP socket, a recursive deadlock occurs in l2tptunnelregister. This situation is reproduced b...

5.8AI score0.00162EPSS
Exploits0References6
EUVD
EUVD
added 2025/12/09 3:31 a.m.4 views

EUVD-2022-55701

In the Linux kernel, the following vulnerability has been resolved: ppp: associate skb with a device at tx Syzkaller triggered flow dissector warning with the following: r0 = openat$ppp0xffffffffffffff9c, &0x7f0000000000, 0xc0802, 0x0 ioctl$PPPIOCNEWUNITr0, 0xc004743e, &0x7f00000000c0...

5.9AI score0.00183EPSS
Exploits0References10
RedhatCVE
RedhatCVE
added 2025/12/09 2:17 a.m.11 views

CVE-2025-14208

A security flaw has been discovered in D-Link DIR-823X up to 20250416. This affects the function sub415028 of the file /goform/setwansettings. The manipulation of the argument pppusername results in command injection. It is possible to launch the attack remotely. The exploit has been released to...

6.5CVSS7AI score0.02936EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2025/12/09 12:0 a.m.3 views

CVE-2022-50655

In the Linux kernel, the following vulnerability has been resolved: ppp: associate skb with a device at tx Syzkaller triggered flow dissector warning with the following: r0 = openat$ppp0xffffffffffffff9c, &0x7f0000000000, 0xc0802, 0x0 ioctl$PPPIOCNEWUNITr0, 0xc004743e, &0x7f00000000c0...

5.3AI score0.00183EPSS
Exploits0
NVD
NVD
added 2025/12/08 1:16 a.m.16 views

CVE-2025-14208

A security flaw has been discovered in D-Link DIR-823X up to 20250416. This affects the function sub415028 of the file /goform/setwansettings. The manipulation of the argument pppusername results in command injection. It is possible to launch the attack remotely. The exploit has been released to...

6.5CVSS0.02936EPSS
Exploits1References6
CVE
CVE
added 2025/12/08 1:2 a.m.12 views

CVE-2025-14208

CVE-2025-14208 affects D-Link DIR-823X devices up to 20250416. The vulnerability resides in the function sub_415028 of /goform/set_wan_settings, where manipulating the argument ppp_username leads to command injection. Exploitation can be performed remotely, and public proof-of-concept/exploit mat...

6.5CVSS6.8AI score0.02936EPSS
Exploits1References6Affected Software1
Vulnrichment
Vulnrichment
added 2025/12/08 1:2 a.m.7 views

CVE-2025-14208 D-Link DIR-823X set_wan_settings sub_415028 command injection

A security flaw has been discovered in D-Link DIR-823X up to 20250416. This affects the function sub415028 of the file /goform/setwansettings. The manipulation of the argument pppusername results in command injection. It is possible to launch the attack remotely. The exploit has been released to...

6.5CVSS6.8AI score0.02936EPSS
Exploits1References6
Cvelist
Cvelist
added 2025/12/08 1:2 a.m.45 views

CVE-2025-14208 D-Link DIR-823X set_wan_settings sub_415028 command injection

A security flaw has been discovered in D-Link DIR-823X up to 20250416. This affects the function sub415028 of the file /goform/setwansettings. The manipulation of the argument pppusername results in command injection. It is possible to launch the attack remotely. The exploit has been released to...

6.5CVSS0.02936EPSS
Exploits1References6
CNNVD
CNNVD
added 2025/12/08 12:0 a.m.9 views

D-Link DIR-823X 命令注入漏洞

The D-Link DIR-823X is a wireless router from China-based AUO D-Link. A command injection vulnerability exists in the D-Link DIR-823X 20250416 and earlier versions, which stems from incorrect manipulation of the parameter pppusername in the file /goform/setwansettings, which can lead to command...

6.5CVSS6.9AI score0.02936EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2025/12/03 12:0 a.m.6 views

SUSE SLES15: cluster-md-kmp-rt / dlm-kmp-rt / gfs2-kmp-rt / kernel-devel-rt / etc (SUSE-SU-2025:4301-1)

The remote SUSE Linux SLES15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:4301-1 advisory. The SUSE Linux Enterprise 15 SP6 RT kernel was updated to fix various security issues The following security issues were fixed: -...

9.8CVSS6.6AI score0.08942EPSS
Exploits3References596
SUSE Linux
SUSE Linux
added 2025/11/28 12:59 p.m.5 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP6 RT kernel was updated to fix various security issues The following security issues were fixed: CVE-2025-38008: mm/pagealloc: fix race condition in unaccepted memory handling bsc1244939. CVE-2025-38539: trace/fgraph: Fix the warning caused by missing unregister...

8.5CVSS7.4AI score0.08942EPSS
Exploits3References850
OSV
OSV
added 2025/11/28 12:59 p.m.7 views

SUSE-SU-2025:4301-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP6 RT kernel was updated to fix various security issues The following security issues were fixed: - CVE-2025-38008: mm/pagealloc: fix race condition in unaccepted memory handling bsc1244939. - CVE-2025-38539: trace/fgraph: Fix the warning caused by missing unregister...

9.8CVSS8.1AI score0.08942EPSS
Exploits3References406
OSV
OSV
added 2025/11/25 4:39 p.m.3 views

SUSE-SU-2025:21064-1 Security update for the Linux Kernel

The SUSE Linux Enterprise Micro 6.0 and 6.1 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2025-38008: mm/pagealloc: fix race condition in unaccepted memory handling bsc1244939. - CVE-2025-38539: trace/fgraph: Fix the warning caused by...

9.8CVSS6.5AI score0.08942EPSS
Exploits3References406
Rows per page
Query Builder