32 matches found
Revisiting and Expanding the IPv6 Network Periphery: Global-Scale Measurement and Security Analysis
As IPv6 deployment accelerates, understanding the evolving security posture of network peripheries becomes increasingly important. A DSN 2021 study introduced the first large-scale discovery of IPv6 network peripheries, uncovering risks like service exposure and routing loops. However, its scope...
CVE-2021-22161
In OpenWrt 19.07.x before 19.07.7, when IPv6 is used, a routing loop can occur that generates excessive network traffic between an affected device and its upstream ISP's router. This occurs when a link prefix route points to a point-to-point link, a destination IPv6 address belongs to the prefix...
EUVD-2021-26477
Malware in sbrugna...
EUVD-2021-10365
Malware in sbrugna...
EUVD-2021-9307
Malicious code in bioql PyPI...
CVE-2021-3128
In ASUS RT-AX3000, ZenWiFi AX XT8, RT-AX88U, and other ASUS routers with firmware 3.0.0.4.386.42095 or 9.0.0.4.386.41994, when IPv6 is used, a routing loop can occur that generates excessive network traffic between an affected device and its upstream ISP's router. This occurs when a link prefix...
CVE-2021-3125
In TP-Link TL-XDR3230 1.0.12, TL-XDR1850 1.0.9, TL-XDR1860 1.0.14, TL-XDR3250 1.0.2, TL-XDR6060 Turbo 1.1.8, TL-XDR5430 1.0.11, and possibly others, when IPv6 is used, a routing loop can occur that generates excessive network traffic between an affected device and its upstream ISP's router. This...
CVE-2021-23270
In Gargoyle OS 1.12.0, when IPv6 is used, a routing loop can occur that generates excessive network traffic between an affected device and its upstream ISP's router. This occurs when a link prefix route points to a point-to-point link, a destination IPv6 address belongs to the prefix and is not a...
OpenWRT < 19.07.7 DoS Vulnerability
OpenWRT is prone to a denial of service DoS vulnerability. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; yo...
Gargoyle OS has an unspecified vulnerability
Gargoyle OS is a Web management interface for small router devices. A security vulnerability exists in Gargoyle OS version 1.12.0 that stems from a routing loop that generates excessive network traffic between an affected device and the routers of its upstream ISP when IPv6 is used. No details of...
CVE-2021-3128
In ASUS RT-AX3000, ZenWiFi AX XT8, RT-AX88U, and other ASUS routers with firmware 3.0.0.4.386.42095 or 9.0.0.4.386.41994, when IPv6 is used, a routing loop can occur that generates excessive network traffic between an affected device and its upstream ISP's router. This occurs when a link prefix...
CVE-2021-23270
In Gargoyle OS 1.12.0, when IPv6 is used, a routing loop can occur that generates excessive network traffic between an affected device and its upstream ISP's router. This occurs when a link prefix route points to a point-to-point link, a destination IPv6 address belongs to the prefix and is not a...
CVE-2021-23270
In Gargoyle OS 1.12.0, when IPv6 is used, a routing loop can occur that generates excessive network traffic between an affected device and its upstream ISP's router. This occurs when a link prefix route points to a point-to-point link, a destination IPv6 address belongs to the prefix and is not a...
CVE-2021-3128
In ASUS RT-AX3000, ZenWiFi AX XT8, RT-AX88U, and other ASUS routers with firmware 3.0.0.4.386.42095 or 9.0.0.4.386.41994, when IPv6 is used, a routing loop can occur that generates excessive network traffic between an affected device and its upstream ISP's router. This occurs when a link prefix...
Code injection
In ASUS RT-AX3000, ZenWiFi AX XT8, RT-AX88U, and other ASUS routers with firmware 3.0.0.4.386.42095 or 9.0.0.4.386.41994, when IPv6 is used, a routing loop can occur that generates excessive network traffic between an affected device and its upstream ISP's router. This occurs when a link prefix...
Code injection
In Gargoyle OS 1.12.0, when IPv6 is used, a routing loop can occur that generates excessive network traffic between an affected device and its upstream ISP's router. This occurs when a link prefix route points to a point-to-point link, a destination IPv6 address belongs to the prefix and is not a...
CVE-2021-3128
CVE-2021-3128 affects ASUS devices (e.g., RT-AX3000, RT-AX88U, ZenWiFi AX XT8) with firmware below 3.0.0.4.386.42095 or 9.0.0.4.386.41994. When IPv6 is used, a routing loop can occur if a link prefix route points to a point-to-point link, a destination IPv6 address is within the prefix but not lo...
CVE-2021-3125
In TP-Link TL-XDR3230 1.0.12, TL-XDR1850 1.0.9, TL-XDR1860 1.0.14, TL-XDR3250 1.0.2, TL-XDR6060 Turbo 1.1.8, TL-XDR5430 1.0.11, and possibly others, when IPv6 is used, a routing loop can occur that generates excessive network traffic between an affected device and its upstream ISP's router. This...
CVE-2021-3125
The CVE-2021-3125 entry covers TP-Link TL-XDR routers (models TL-XDR3230 < 1.0.12; TL-XDR1850 < 1.0.9; TL-XDR1860 < 1.0.14; TL-XDR3250 < 1.0.2; TL-XDR6060 Turbo < 1.1.8; TL-XDR5430
CVE-2021-23270
In Gargoyle OS 1.12.0, when IPv6 is used, a routing loop can occur that generates excessive network traffic between an affected device and its upstream ISP's router. This occurs when a link prefix route points to a point-to-point link, a destination IPv6 address belongs to the prefix and is not a...