EUVD-2026-29033

Zephyr sockets created with IPPROTOTLS13 can still negotiate a TLS 1.2 connection when both TLS versions are enabled in Kconfig, because the socket-level protocol selection is not propagated to mbedTLS e.g. via mbedtlssslconfmintlsversion. The ClientHello advertises both versions and the peer can...

CVE-2025-62818

An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 1580, 2500, 9110, W920, W930, W1000, Modem 5123, Modem 5300, and Modem 5400. An out-of-bounds write occurs due to a mismatch between the TP-UDHI...

CVE-2025-8671

A mismatch caused by client-triggered server-sent stream resets between HTTP/2 specifications and the internal architectures of some HTTP/2 implementations may result in excessive server resource consumption leading to denial-of-service DoS. By opening streams and then rapidly triggering the serv...

CVE-2025-8671

CVE-2025-8671 (MadeYouReset) targets HTTP/2 stream accounting: a server may be forced to process an unbounded number of concurrent streams on a single connection when a client triggers resets via invalid frames after stream shutdowns, potentially causing DoS. Public details in the Initial Descrip...

CVE-2025-8671 CVE-2025-8671

A mismatch caused by client-triggered server-sent stream resets between HTTP/2 specifications and the internal architectures of some HTTP/2 implementations may result in excessive server resource consumption leading to denial-of-service DoS. By opening streams and then rapidly triggering the serv...

CVE-2025-8671 CVE-2025-8671

A mismatch caused by client-triggered server-sent stream resets between HTTP/2 specifications and the internal architectures of some HTTP/2 implementations may result in excessive server resource consumption leading to denial-of-service DoS. By opening streams and then rapidly triggering the serv...

Linux Distros Unpatched Vulnerability : CVE-2025-38147

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - calipso: Don't call calipso functions for AFINET sk. syzkaller reported a null-ptr-deref in txoptget. 0 The offset 0x70 was of struct ipv6txoptions in struct...

GGP slashing mechanism is incomplete.

Lines of code Vulnerability details Impact The protocol docs mentions that "If the validator is failing at their duties, their GGP will be slashed and used to compensate the loss to our Liquid Stakers." But the actual implementation of the Staking.slashGGP function is very different from the abov...

Kippo SSH Honeypot Detector

This module will detect if an SSH server is running a Kippo honeypot. This is done by issuing unexpected data to the SSH service and checking the response returned for two particular non-standard error messages. This module requires Metasploit: https://metasploit.com/download Current source:...

OpenSSH 6.0p1 Backdoor Patch 1.2 Vulnerability 0day

This patch is for openssh-6.0p1 source which combines a known openssh backdoor and Sebastian Krahmer's openssh.reverse capabilities. Telnet to target openssh server and issue udcgamaimagic string for getting reverse openssh connection. $id: udc-hackssh-v3bajaulaut-v1, 2012/10/28 05:00:50 slash...

[SA14091] Squid Oversized Reply Header Handling Security Issue

TITLE: Squid Oversized Reply Header Handling Security Issue SECUNIA ADVISORY ID: SA14091 VERIFY ADVISORY: http://secunia.com/advisories/14091/ CRITICAL: Moderately critical IMPACT: Unknown WHERE: From remote SOFTWARE: Squid 2.x http://secunia.com/product/310/ DESCRIPTION: A security issue with an...

CVE-2001-0080

Cisco Catalyst 6000, 5000, or 4000 switches allow remote attackers to cause a denial of service by connecting to the SSH service with a non-SSH client, which generates a protocol mismatch error...

CVE-2001-0080

Cisco Catalyst 6000, 5000, or 4000 switches allow remote attackers to cause a denial of service by connecting to the SSH service with a non-SSH client, which generates a protocol mismatch error...

Cisco Multiple Products Automated Exploit Tool

Exploit for hardware platform in category dos / poc ============================================== Cisco Multiple Products Automated Exploit Tool ============================================== !/usr/bin/perl Written by hypoclear - http://hypoclear.cjb.net Thong-th-thong-th-thong.pl AKA thong.pl i...

DoS против Cisco Catalyst (SSH Protocol Mismatch)

Подключение к ssh порту по не-ssh протоколу приводит к отказу коммутатора...

Cisco Catalyst SSH Protocol Mismatch Vulnerability

We stumbled across the following, and wanted to share this with you: -- Cisco Catalyst SSH Protocol Mismatch Vulnerability Revision 1.0 For Public Release 2000 December 13 10:00 AM US/Pacific UTC+0700 Summary Non-Secure Shell SSH connection attempts to an enabled SSH service on a Cisco Catalyst...

Cisco Catalyst 400050006000 6.1 - SSH Protocol Mismatch Denial of Service

Cisco Catalyst 400050006000 6.1 - SSH Protocol Mismatch Denial of Service source: https://www.securityfocus.com/bid/2117/info Software versions 6.11, 6.11a and 6.11b for Catalyst 4000, 5000, and 6000 devices that support SSH and 3 DES encryption contain a vulnerability that may allow an attacker ...

Cisco Catalyst 4000/5000/6000 6.1 - SSH Protocol Mismatch Denial of Service

source: https://www.securityfocus.com/bid/2117/info Software versions 6.11, 6.11a and 6.11b for Catalyst 4000, 5000, and 6000 devices that support SSH and 3 DES encryption contain a vulnerability that may allow an attacker to cause a denial of service. If a connection is made to the SSH service o...