Lucene search
K

301 matches found

OSV
OSV
added 2025/05/07 6:15 p.m.5 views

CVE-2025-20151

A vulnerability in the implementation of the Simple Network Management Protocol Version 3 SNMPv3 feature of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacker to poll an affected device using SNMP, even if the device is configured to deny SNMP traffic from ...

4.3CVSS5.8AI score0.00328EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/16 2:12 p.m.2 views

CVE-2025-22063 netlabel: Fix NULL pointer exception caused by CALIPSO on IPv4 sockets

In the Linux kernel, the following vulnerability has been resolved: netlabel: Fix NULL pointer exception caused by CALIPSO on IPv4 sockets When calling netlblconnsetattr, addr-safamily is used to determine the function behavior. If sk is an IPv4 socket, but the connect function is called with an...

7.5AI score0.00231EPSS
Exploits0References9
Vulnrichment
Vulnrichment
added 2025/03/27 2:57 p.m.1 views

CVE-2025-21891 ipvlan: ensure network headers are in skb linear part

In the Linux kernel, the following vulnerability has been resolved: ipvlan: ensure network headers are in skb linear part syzbot found that ipvlanprocessv6outbound was assuming the IPv6 network header isis present in skb-head 1 Add the needed pskbnetworkmaypull calls for both IPv4 and IPv6...

6.7AI score0.0018EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/03/25 12:0 a.m.5 views

SUSE SLES15 Security Update : rsync (SUSE-SU-2025:0991-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2025:0991-1 advisory. - CVE-2024-12747: Fixed race condition in handling symbolic links bsc1235475 - Broken rsyncd after protocol bump, regression reported...

5.6CVSS7.2AI score0.00377EPSS
Exploits0References5
OSV
OSV
added 2025/03/24 1:56 p.m.3 views

SUSE-SU-2025:0991-1 Security update for rsync

This update for rsync fixes the following issues: - CVE-2024-12747: Fixed race condition in handling symbolic links bsc1235475 - Broken rsyncd after protocol bump, regression reported bsc1237187. - Bump protocol version to 32 - make it easier to show server is patched...

5.6CVSS7.1AI score0.00377EPSS
Exploits0References4
OSV
OSV
added 2025/02/27 3:15 a.m.8 views

UBUNTU-CVE-2025-21768

In the Linux kernel, the following vulnerability has been resolved: net: ipv6: fix dst ref loops in rpl, seg6 and ioam6 lwtunnels Some lwtunnels have a dst cache for post-transformation dst. If the packet destination did not change we may end up recording a reference to the lwtunnel in its own...

5.5CVSS6.2AI score0.00187EPSS
Exploits0References15
Vulnrichment
Vulnrichment
added 2025/02/26 2:24 a.m.6 views

CVE-2022-49704 9p: fix fid refcount leak in v9fs_vfs_get_link

In the Linux kernel, the following vulnerability has been resolved: 9p: fix fid refcount leak in v9fsvfsgetlink we check for protocol version later than required, after a fid has been obtained. Just move the version check earlier...

6.3AI score0.00237EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/02/26 12:0 a.m.1 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from not releasing skb when IPv6 is disabled...

5.5CVSS5.5AI score0.0024EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2025/02/13 3:42 p.m.6 views

nodejs: GOAWAY HTTP/2 frames cause memory leak outside heap

A vulnerability was found in NodeJS when handling HTTP/2 connections, where the remote peer abruptly closes the socket without sending the proper HTTP/2 notification to the server, leading to a memory leak. This flaw allows an attacker to force the targeted process in the targeted host to an...

5.3CVSS5.8AI score0.01282EPSS
Exploits0References5
SUSE Linux
SUSE Linux
added 2025/02/10 11:49 a.m.1 views

Security update for rsync

This update for rsync fixes the following issues: Bump rsync protocol version to 32 to show server is patched against recent vulnerabilities. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you c...

7.3AI score
Exploits0References2
OSV
OSV
added 2025/02/10 11:49 a.m.3 views

SUSE-SU-2025:0404-1 Security update for rsync

This update for rsync fixes the following issues: - Bump rsync protocol version to 32 to show server is patched against recent vulnerabilities...

7.2AI score
Exploits0References2
SUSE Linux
SUSE Linux
added 2025/02/07 9:57 a.m.3 views

Security update for rsync

This update for rsync fixes the following issues: Bump protocol version to 32 - make it easier to show server is patched. Fix FLAGGOTDIRFLIST collission with FLAGHLINKED Security update,CVE-2024-12747, bsc1235475 race condition in handling symbolic links Security update, fix multiple...

9.8CVSS7.5AI score0.72059EPSS
Exploits8References24
OSV
OSV
added 2025/02/07 9:56 a.m.4 views

SUSE-SU-2025:20223-1 Security update for rsync

This update for rsync fixes the following issues: - Bump protocol version to 32 - make it easier to show server is patched. - Fix FLAGGOTDIRFLIST collission with FLAGHLINKED - Security update,CVE-2024-12747, bsc1235475 race condition in handling symbolic links - Security update, fix multiple...

9.8CVSS7.3AI score0.72059EPSS
Exploits8References13
SUSE Linux
SUSE Linux
added 2025/02/03 4:32 p.m.0 views

Security update for rsync

This update for rsync fixes the following issues: Bump rsync protocol version to 32 to show server is patched against recent vulnerabilities. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you c...

7.2AI score
Exploits0References2
OSV
OSV
added 2025/02/03 4:32 p.m.2 views

SUSE-SU-2025:0340-1 Security update for rsync

This update for rsync fixes the following issues: - Bump rsync protocol version to 32 to show server is patched against recent vulnerabilities...

7.2AI score
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/02/03 12:0 a.m.3 views

PT-2025-5680 · Rsync · Rsync

Name of the Vulnerable Software and Affected Versions: rsync affected versions not specified Description: The issue concerns recent vulnerabilities in rsync. An update bumps the rsync protocol version to 32, indicating that the server is patched against these vulnerabilities. Recommendations: At...

7AI score
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2025/01/20 12:0 a.m.7 views

The vulnerability of the Juniper Tunnel Driver (JTD) driver for Juniper Networks’ Junos OS Evolved operating systems allows a hacker to induce a service failure.

The vulnerability of the Juniper Tunnel Driver JTD driver for Juniper Networks’ Junos OS Evolved operating systems is related to the lack of memory release after the effective lifespan of the driver. Exploiting this vulnerability can allow a malicious actor to trigger a service failure by sending...

7.8CVSS5.5AI score0.00587EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2025/01/09 7:15 p.m.3 views

CVE-2025-21598

An Out-of-bounds Read vulnerability in Juniper Networks Junos OS and Junos OS Evolved's routing protocol daemon rpd allows an unauthenticated, network-based attacker to send malformed BGP packets to a device configured with packet receive trace options enabled to crash rpd. This issue affects:...

8.2CVSS5.8AI score0.00702EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/01/01 12:0 a.m.6 views

PT-2025-4310

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.74 Description The issue concerns the Linux kernel's handling of IPv6 packets with extension headers. Specifically, it affects devices that advertise NETIF F IPV6 CSUM, which is a feature for checksumming pla...

5.5CVSS6.6AI score0.00208EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2024/12/20 12:0 a.m.6 views

The vulnerability of the Linux operating system’s kernel’s ipv6 component, which allows a hacker to trigger a service failure

The vulnerability of the ipv6 component in the Linux operating system’s kernel is related to the assignment of the NULL pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...

4.7CVSS6.4AI score0.00272EPSS
Exploits0References45Affected Software6
Rows per page
Query Builder