Lucene search
K

28 matches found

AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.7 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: xfrm: fixed the race condition in ipRtbug for icmpRouteLookup reverse path icmpRouteLookup performs multiple route lookups to find a suitable route for sending ICMP error messages, with special handling for XFRM IPsec policies. T...

4.7CVSS5.7AI score0.00111EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/05/28 3:56 a.m.13 views

SUSE CVE-2026-45905

In the Linux kernel, the following vulnerability has been resolved: xfrm: fix iprtbug race in icmproutelookup reverse path icmproutelookup performs multiple route lookups to find a suitable route for sending ICMP error messages, with special handling for XFRM IPsec policies. The lookup sequence i...

4.7CVSS5.7AI score0.00111EPSS
Exploits0References3
EUVD
EUVD
added 2026/05/27 3:33 p.m.11 views

EUVD-2026-32371

In the Linux kernel, the following vulnerability has been resolved: xfrm: fix iprtbug race in icmproutelookup reverse path icmproutelookup performs multiple route lookups to find a suitable route for sending ICMP error messages, with special handling for XFRM IPsec policies. The lookup sequence i...

5.7AI score0.00111EPSS
Exploits0References7
NVD
NVD
added 2026/05/27 2:17 p.m.13 views

CVE-2026-45905

In the Linux kernel, the following vulnerability has been resolved: xfrm: fix iprtbug race in icmproutelookup reverse path icmproutelookup performs multiple route lookups to find a suitable route for sending ICMP error messages, with special handling for XFRM IPsec policies. The lookup sequence i...

4.7CVSS0.00111EPSS
Exploits0References6
OSV
OSV
added 2026/05/27 2:17 p.m.9 views

UBUNTU-CVE-2026-45905

In the Linux kernel, the following vulnerability has been resolved: xfrm: fix iprtbug race in icmproutelookup reverse path icmproutelookup performs multiple route lookups to find a suitable route for sending ICMP error messages, with special handling for XFRM IPsec policies. The lookup sequence i...

4.7CVSS5.7AI score0.00111EPSS
Exploits0References11
Cvelist
Cvelist
added 2026/05/27 12:17 p.m.41 views

CVE-2026-45905 xfrm: fix ip_rt_bug race in icmp_route_lookup reverse path

In the Linux kernel, the following vulnerability has been resolved: xfrm: fix iprtbug race in icmproutelookup reverse path icmproutelookup performs multiple route lookups to find a suitable route for sending ICMP error messages, with special handling for XFRM IPsec policies. The lookup sequence i...

0.00111EPSS
Exploits0References6
CVE
CVE
added 2026/05/27 12:17 p.m.28 views

CVE-2026-45905

CVE-2026-45905 is a Linux kernel networking vulnerability in the xfrm/icmp_route_lookup reverse path. The race occurs during ICMP error handling when a concurrent address change may cause ip_route_input() to return a LOCAL route with a dst that can trigger a WARN_ON in ip_rt_bug. The fix checks t...

4.7CVSS5.7AI score0.00111EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2026/05/27 12:17 p.m.2 views

CVE-2026-45905 xfrm: fix ip_rt_bug race in icmp_route_lookup reverse path

In the Linux kernel, the following vulnerability has been resolved: xfrm: fix iprtbug race in icmproutelookup reverse path icmproutelookup performs multiple route lookups to find a suitable route for sending ICMP error messages, with special handling for XFRM IPsec policies. The lookup sequence i...

4.7CVSS5.8AI score0.00111EPSS
Exploits0References9
Debian CVE
Debian CVE
added 2026/05/27 12:17 p.m.12 views

CVE-2026-45905

In the Linux kernel, the following vulnerability has been resolved: xfrm: fix iprtbug race in icmproutelookup reverse path icmproutelookup performs multiple route lookups to find a suitable route for sending ICMP error messages, with special handling for XFRM IPsec policies. The lookup sequence i...

4.7CVSS5.7AI score0.00111EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2026/05/27 12:0 a.m.21 views

CVE-2026-45905

xfrm: fix iprtbug race in icmproutelookup reverse path...

5.8AI score0.00111EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/05/27 12:0 a.m.15 views

Linux Distros Unpatched Vulnerability : CVE-2026-45905

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - xfrm: fix iprtbug race in icmproutelookup reverse path icmproutelookup performs multiple route lookups to find a suitable route for sending ICMP error messages,...

4.7CVSS6.1AI score0.00111EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/05/27 12:0 a.m.14 views

PT-2026-43772

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A race condition exists in the icmp route lookup function during the reverse path process for sending ICMP error messages with XFRM IPsec policies. When the system acts as a forwarding...

4.7CVSS5.4AI score0.00111EPSS
Exploits0
OpenVAS
OpenVAS
added 2025/05/07 12:0 a.m.4 views

Enable Reverse Path Filtering

Setting net.ipv4.conf.all.rpfilter and net.ipv4.conf.default.rpfilter to 1 forces the Linux kernel to perform reverse path filtering on a received packet and check the validity of its source address. If the Linux kernel queries the routing table in which the source address is included and finds...

6.4AI score
Exploits0References4
ThreatPost
ThreatPost
added 2019/12/06 4:54 p.m.106 views

Linux Bug Opens Most VPNs to Hijacking

A vulnerability in most Linux distros has been uncovered that allows a network-adjacent attacker to hijack VPN connections and inject rogue data into the secure tunnels that victims are using to communicate with remote servers. According to researchers at University of New Mexico and Breakpointin...

4.9CVSS0.6AI score0.00838EPSS
Exploits0References5
The Hacker News
The Hacker News
added 2019/12/06 11:2 a.m.145 views

New Linux Bug Lets Attackers Hijack Encrypted VPN Connections

A team of cybersecurity researchers has disclosed a new severe vulnerability affecting most Linux and Unix-like operating systems, including FreeBSD, OpenBSD, macOS, iOS, and Android, that could allow remote 'network adjacent attackers' to spy on and tamper with encrypted VPN connections. The...

7.4CVSS0.7AI score0.00838EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2019/12/05 12:0 a.m.6 views

PT-2019-5065

Name of the Vulnerable Software and Affected Versions Linux affected versions not specified FreeBSD affected versions not specified OpenBSD affected versions not specified MacOS affected versions not specified iOS affected versions not specified Android affected versions not specified Description...

7.4CVSS7.6AI score0.00838EPSS
Exploits0References40
OpenVAS
OpenVAS
added 2019/01/24 12:0 a.m.6 views

Linux: Reverse path filtering

Reverse Path Filtering is a process to confirm that a receiving packet source address is routable. If enabled, a not routable packet is dropped. This script tests whether the Linux host is configured to drop not routable packets. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions...

7.2AI score
Exploits0References5
seebug.org
seebug.org
added 2015/10/08 12:0 a.m.18 views

Cisco ASA Unicast Reverse Path Forwarding (uRPF) Bypass Vulnerability

No description provided by source...

7.1AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2015/09/08 12:0 a.m.9 views

The vulnerability of Cisco Adaptive Security Appliance’s network firewall, which allows attackers to bypass the uPRF inspection mechanism

The vulnerability of the Unicast Reverse Path Forwarding uRPF protection mechanism in Cisco Adaptive Security Appliances exists due to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to bypass the uRPF mechanism, which is designed to protect against I...

5CVSS5.5AI score0.01733EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2015/08/22 12:0 a.m.22 views

Cisco ASA uRFP Bypass Vulnerability (Cisco-SA-20150812-CVE-2015-4321)

Cisco ASA is prone to a Unicast Reverse Path Forwarding Bypass vulnerability. Copyright C 2015 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program i...

5CVSS6.6AI score0.01733EPSS
Exploits0References1
Rows per page
Query Builder