5 matches found
CVE-2026-21918
A Double Free vulnerability in the flow processing daemon flowd of Juniper Networks Junos OS on SRX and MX Series allows an unauthenticated, network-based attacker to cause a Denial-of-Service DoS. On all SRX and MX Series platforms, when during TCP session establishment a specific sequence of...
PT-2026-1779
Name of the Vulnerable Software and Affected Versions Sangfor Operation and Maintenance Management System versions up to 3.0.8 Description A remote OS command injection issue exists in the SessionController function within the /isomp-protocol/protocol/session file of the software. Manipulation of...
WAVLINK WN531G3 授权问题漏洞
The WAVLINK WN531G3 is a wireless router from the Chinese company WAVLINK. A security vulnerability exists in the WAVLINK WN531G3 firmware version M31G3.V5030.200325 and prior versions, which stems from the use of an IP address to maintain a session and does not use a session token, and can be...
Mozilla: Use-after-free in HTTP2 Session object
The Mozilla Foundation Security Advisory describes this flaw as: A use-after-free could have occured when an HTTP2 session object was released on a different thread, leading to memory corruption and a potentially exploitable crash...
CVE-2020-5596
TCP/IP function included in the firmware of Mitsubishi Electric GOT2000 series CoreOS with version -Y and earlier installed in GT27 Model, GT25 Model, and GT23 Model does not properly manage sessions, which may allow a remote attacker to stop the network functions of the products or execute a...