Lucene search
+L

56 matches found

OSV
OSV
added 2026/05/27 12:0 a.m.9 views

UBUNTU-CVE-2026-46000

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix conn-level packet handling to unshare RESPONSE packets The security operations that verify the RESPONSE packets decrypt bits of it in place - however, the skbuff may be shared with a packet sniffer, which would lead to...

5.5CVSS5.7AI score0.00159EPSS
Exploits0References13
UbuntuCve
UbuntuCve
added 2026/05/11 8:16 a.m.16 views

CVE-2026-43500

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Also unshare DATA/RESPONSE packets when paged frags are present The DATA-packet handler in rxrpcinputcallevent and the RESPONSE handler in rxrpcverifyresponse copy the skb to a linear one before calling into the security o...

7.8CVSS6AI score0.92766EPSS
Exploits20References25
OSV
OSV
added 2026/05/11 8:16 a.m.7 views

UBUNTU-CVE-2026-43500

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Also unshare DATA/RESPONSE packets when paged frags are present The DATA-packet handler in rxrpcinputcallevent and the RESPONSE handler in rxrpcverifyresponse copy the skb to a linear one before calling into the security o...

7.8CVSS6AI score0.92766EPSS
Exploits20References26
Debian CVE
Debian CVE
added 2026/05/11 6:26 a.m.22 views

CVE-2026-43500

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Also unshare DATA/RESPONSE packets when paged frags are present The DATA-packet handler in rxrpcinputcallevent and the RESPONSE handler in rxrpcverifyresponse copy the skb to a linear one before calling into the security o...

7.8CVSS6AI score0.92766EPSS
Exploits20
CNNVD
CNNVD
added 2026/05/11 12:0 a.m.9 views

Linux kernel 缓冲区错误漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. The Linux kernel has a buffer error vulnerability, which stems from the lack of separation of paginated fragments during the processing of DATA and RESPONSE packets in...

7.8CVSS6.2AI score0.92766EPSS
Exploits20References2
Oracle linux
Oracle linux
added 2026/05/10 12:0 a.m.27 views

Unbreakable Enterprise kernel security update

6.12.0-202.76.4.1 - rxrpc: Also unshare DATA/RESPONSE packets when paged frags are present Hyunwoo Kim Orabug: 39344513 CVE-2026-43500 - rxrpc: Fix conn-level packet handling to unshare RESPONSE packets David Howells Orabug: 39344513 - rxrpc: only handle RESPONSE during service challenge Wang Jie...

9.8CVSS6.4AI score0.96267EPSS
Exploits261
OSV
OSV
added 2026/05/08 7:44 p.m.11 views

CLSA-2026-1778267481 Update of kernel-uek

rxrpc: Also unshare DATA/RESPONSE packets when paged frags are present - xfrm: esp: avoid in-place decrypt on shared skb frags...

5.8AI score
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/04/27 10:13 a.m.8 views

CVE-2026-31676

A flaw was found in the rxrpc subsystem of the Linux kernel. This vulnerability allows for duplicate or late RESPONSE packets to be processed outside of the expected service challenging state. An attacker could potentially exploit this by sending specially crafted RESPONSE packets, leading to the...

7.5CVSS5.3AI score0.00389EPSS
Exploits0References4
NVD
NVD
added 2026/04/25 9:16 a.m.6 views

CVE-2026-31676

In the Linux kernel, the following vulnerability has been resolved: rxrpc: only handle RESPONSE during service challenge Only process RESPONSE packets while the service connection is still in RXRPCCONNSERVICECHALLENGING. Check that state under statelock before running response verification and...

7.5CVSS0.00389EPSS
Exploits0References8
CNNVD
CNNVD
added 2026/04/25 12:0 a.m.9 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from improper state checking in the rxrpc service challenge phase. This vulnerability may lead to...

7.5CVSS5.8AI score0.00389EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 11:24 a.m.7 views

CVE-2021-31228

An issue was discovered in HCC embedded InterNiche 4.0.1. This vulnerability allows the attacker to predict a DNS query's source port in order to send forged DNS response packets that will be accepted as valid answers to the DNS client's requests without sniffing the specific request. Data is...

7.5CVSS6.7AI score0.0127EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2014-2208

Malware in sbrugna...

7.6CVSS6.3AI score0.02752EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2022-24647

Malicious code in bioql PyPI...

7.5CVSS7AI score0.01258EPSS
Exploits0References15
NVD
NVD
added 2024/04/10 5:15 p.m.20 views

CVE-2024-3388

A vulnerability in the GlobalProtect Gateway in Palo Alto Networks PAN-OS software enables an authenticated attacker to impersonate another user and send network packets to internal assets. However, this vulnerability does not allow the attacker to receive response packets from those internal...

5CVSS4.2AI score0.00349EPSS
Exploits0References1
NVD
NVD
added 2023/12/18 1:15 p.m.25 views

CVE-2023-35867

An improper handling of a malformed API answer packets to API clients in Bosch BT software products can allow an unauthenticated attacker to cause a Denial of Service DoS situation. To exploit this vulnerability an attacker has to replace an existing API server e.g. through Man-in-the-Middle...

5.9CVSS0.00556EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/09/29 12:0 a.m.5 views

PT-2023-22598 · Unknown · Bluetooth Le Stack

Name of the Vulnerable Software and Affected Versions: Bluetooth LE stack affected versions not specified Description: Forcing the Bluetooth LE stack to segment 'prepare write response' packets can lead to an out-of-bounds memory access. Recommendations: At the moment, there is no information abo...

6.5CVSS6.9AI score0.0026EPSS
Exploits0References6
CVE
CVE
added 2023/04/04 4:46 a.m.76 views

CVE-2022-33222

CVE-2022-33222 is a vulnerability described across multiple sources as an information disclosure caused by a buffer over-read when parsing DNS response packets in a Modem. The effect is a confidentiality impact (high) with no integrity/availability impact per the primary NVD entry, though CVSS ve...

8.2CVSS7.7AI score0.00354EPSS
Exploits0References1Affected Software1
RedHat Linux
RedHat Linux
added 2022/11/03 2:55 p.m.5 views

undertow: Double AJP response for 400 from EAP 7 results in CPING failures

A flaw was found in Undertow. For an AJP 400 response, EAP 7 is improperly sending two response packets, and those packets have the reuse flag set even though JBoss EAP closes the connection. A failure occurs when the connection is reused after a 400 by CPING since it reads in the second...

7.5CVSS7.3AI score0.01258EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/11/03 2:54 p.m.6 views

undertow: Double AJP response for 400 from EAP 7 results in CPING failures

A flaw was found in Undertow. For an AJP 400 response, EAP 7 is improperly sending two response packets, and those packets have the reuse flag set even though JBoss EAP closes the connection. A failure occurs when the connection is reused after a 400 by CPING since it reads in the second...

7.5CVSS7.3AI score0.01258EPSS
Exploits0References4
NVD
NVD
added 2022/08/31 4:15 p.m.40 views

CVE-2022-1319

A flaw was found in Undertow. For an AJP 400 response, EAP 7 is improperly sending two response packets, and those packets have the reuse flag set even though JBoss EAP closes the connection. A failure occurs when the connection is reused after a 400 by CPING since it reads in the second...

7.5CVSS0.01258EPSS
Exploits0References6
Rows per page
Query Builder