Lucene search
K

116 matches found

OSV
OSV
added 2026/07/06 6:26 a.m.4 views

OESA-2026-2810 radvd security update

The router advertisement daemon radvd is run by Linux or BSD systems acting as IPv6 routers. It sends Router Advertisement messages, specified by RFC 2461, to a local Ethernet LAN periodically and when requested by a node sending a Router Solicitation message. These messages are required for IPv6...

8.8CVSS6.2AI score0.00203EPSS
Exploits0References2
OSV
OSV
added 2026/06/30 12:0 a.m.3 views

OPENSUSE-SU-2026:11161-1 radvd-2.21-1.1 on GA media

These are all security issues fixed in the radvd-2.21-1.1 package on the GA media of openSUSE Tumbleweed...

8.8CVSS5.8AI score0.00203EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/06/19 7:18 p.m.5 views

CVE-2026-48715

radvd is a router advertisement daemon for IPv6. Prior to version 2.21, the radvdump utility shipped with radvd contains a stack buffer overflow in the Route Information option parser. When processing a crafted ICMPv6 Router Advertisement, printff copies up to 2032 bytes from attacker-controlled...

7.7CVSS6.1AI score0.00203EPSS
Exploits0References3Affected Software1
Amazon
Amazon
added 2026/06/08 12:0 a.m.11 views

Important: radvd

Issue Overview: Stack Buffer Overflow in radvdump Route Information Option Parser NOTE: https://github.com/radvd-project/radvd/security/advisories/GHSA-52px-gh9p-m379 CVE-2026-48715 Affected Packages: radvd Issue Correction: Run dnf update radvd --releasever 2023.12.20260608 or dnf update...

5.4AI score0.00203EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/05/26 12:0 a.m.13 views

Linux Distros Unpatched Vulnerability : CVE-2026-48715

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - radvd is a router advertisement daemon for IPv6. Prior to version 2.21, the radvdump utility shipped with radvd contains a stack buffer overflow in the Route...

8.8CVSS6.1AI score0.00203EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/04/28 8:0 a.m.6 views

CVE-2026-7243 Totolink A8000RU CGI cstecgi.cgi setRadvdCfg os command injection

A vulnerability was identified in Totolink A8000RU 7.1cu.643b20200521. The affected element is the function setRadvdCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipulation of the argument maxRtrAdvInterval leads to os command injection. It is possible to initiate the...

10CVSS8.4AI score0.02448EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/04/28 12:0 a.m.5 views

PT-2026-35692

A vulnerability was identified in Totolink A8000RU 7.1cu.643 b20200521. The affected element is the function setRadvdCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipulation of the argument maxRtrAdvInterval leads to os command injection. It is possible to initiate the...

10CVSS8.4AI score0.02448EPSS
Exploits0References6
NVD
NVD
added 2026/04/12 4:16 a.m.3 views

CVE-2026-6112

A weakness has been identified in Totolink A7100RU 7.4cu.2313b20191024. Affected is the function setRadvdCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. This manipulation of the argument maxRtrAdvInterval causes os command injection. The attack can be initiated remotely. The...

10CVSS0.01766EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/04/12 2:45 a.m.2 views

CVE-2026-6112

A weakness has been identified in Totolink A7100RU 7.4cu.2313b20191024. Affected is the function setRadvdCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. This manipulation of the argument maxRtrAdvInterval causes os command injection. The attack can be initiated remotely. The...

10CVSS7AI score0.01766EPSS
Exploits0References5Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/12 12:0 a.m.4 views

PT-2026-32145

Name of the Vulnerable Software and Affected Versions Totolink A7100RU version 7.4cu.2313 b20191024 Description A weakness exists in the Totolink A7100RU version 7.4cu.2313 b20191024. The issue is due to a flaw in the setRadvdCfg function within the CGI Handler component, specifically in the file...

10CVSS7.1AI score0.01766EPSS
Exploits0References12
OSV
OSV
added 2026/02/03 6:16 p.m.6 views

CVE-2025-67188

A buffer overflow vulnerability exists in TOTOLINK A950RG V4.1.2cu.5204B20210112. The issue resides in the setRadvdCfg interface of the /lib/cstemodules/ipv6.so module. The function fails to properly validate the length of the user-controlled radvdinterfacename parameter, allowing remote attacker...

9.8CVSS6.2AI score0.00628EPSS
Exploits1References1
NVD
NVD
added 2026/02/03 6:16 p.m.9 views

CVE-2025-67188

A buffer overflow vulnerability exists in TOTOLINK A950RG V4.1.2cu.5204B20210112. The issue resides in the setRadvdCfg interface of the /lib/cstemodules/ipv6.so module. The function fails to properly validate the length of the user-controlled radvdinterfacename parameter, allowing remote attacker...

9.8CVSS0.00628EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/02/03 12:0 a.m.38 views

CVE-2025-67188

A buffer overflow vulnerability exists in TOTOLINK A950RG V4.1.2cu.5204B20210112. The issue resides in the setRadvdCfg interface of the /lib/cstemodules/ipv6.so module. The function fails to properly validate the length of the user-controlled radvdinterfacename parameter, allowing remote attacker...

0.00628EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/02/03 12:0 a.m.6 views

CVE-2025-67188

A buffer overflow vulnerability exists in TOTOLINK A950RG V4.1.2cu.5204B20210112. The issue resides in the setRadvdCfg interface of the /lib/cstemodules/ipv6.so module. The function fails to properly validate the length of the user-controlled radvdinterfacename parameter, allowing remote attacker...

6AI score0.00628EPSS
Exploits1References2
EUVD
EUVD
added 2026/02/03 12:0 a.m.7 views

EUVD-2025-206713

A buffer overflow vulnerability exists in TOTOLINK A950RG V4.1.2cu.5204B20210112. The issue resides in the setRadvdCfg interface of the /lib/cstemodules/ipv6.so module. The function fails to properly validate the length of the user-controlled radvdinterfacename parameter, allowing remote attacker...

6AI score0.00628EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/02/03 12:0 a.m.10 views

TOTOLINK A950RG 安全漏洞

TOTOLINK A950RG is a super-generation Giga wireless router produced by TOTOLINK Corporation. The TOTOLINK A950RG V4.1.2cu.5204B20210112 version contains a security vulnerability. This vulnerability stems from insufficient length validation of the radvdinterfacename parameter in the setRadvdCfg...

9.8CVSS6.1AI score0.00628EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2011-3561

Malware in sbrugna...

6.4CVSS6AI score0.02794EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2014-7994

Malware in sbrugna...

4CVSS6.4AI score0.01919EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2011-3563

Malware in sbrugna...

7.5CVSS6AI score0.01552EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2011-3564

Malware in sbrugna...

5CVSS6AI score0.01595EPSS
Exploits0References7
Rows per page
Query Builder