Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

AstraLinux
AstraLinuxadded 2026/05/03 11:59 p.m.5 views

Astra Linux – Vulnerability in StrongSwan

StrongSwan before version 5.9.12 has a buffer overflow vulnerability, and there is a possibility of unauthenticated remote code execution through a DH public key value that exceeds the internal buffer of charon-tkm’s DH proxy. The earliest affected version is 5.3.0. An attack can occur through a...

9.8CVSS9AI score0.0229EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2020-24501

Malware in sbrugna...

7.5CVSS7.6AI score0.01671EPSS
Exploits0References2
Cvelist
Cvelistadded 2024/08/21 6:10 a.m.36 views

CVE-2022-48882 net/mlx5e: Fix macsec possible null dereference when updating MAC security entity (SecY)

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix macsec possible null dereference when updating MAC security entity SecY Upon updating MAC security entity SecY in hw offload path, the macsec security association SA initialization routine is called. In case of...

0.00205EPSS
Exploits0References2
SUSE CVE
SUSE CVEadded 2023/11/22 12:12 a.m.1 views

SUSE CVE-2023-41913

strongSwan before 5.9.12 has a buffer overflow and possible unauthenticated remote code execution via a DH public value that exceeds the internal buffer in charon-tkm's DH proxy. The earliest affected version is 5.3.0. An attack can occur via a crafted IKESAINIT message...

7CVSS8.6AI score0.0229EPSS
Exploits0References7
SUSE CVE
SUSE CVEadded 2023/02/15 6:3 a.m.2 views

SUSE CVE-2009-1957

charon/sa/ikesa.c in the charon daemon in strongSWAN before 4.3.1 allows remote attackers to cause a denial of service NULL pointer dereference and crash via an invalid IKESAINIT request that triggers "an incomplete state," followed by a CREATECHILDSA request...

5CVSS6.8AI score0.02947EPSS
Exploits0References4
SUSE CVE
SUSE CVEadded 2023/02/15 4:11 a.m.1 views

SUSE CVE-2019-12312

In Libreswan 3.27 an assertion failure can lead to a pluto IKE daemon restart. An attacker can trigger a NULL pointer dereference by initiating an IKEv2 IKESAINIT exchange, followed by a bogus INFORMATIONAL exchange instead of the normallly expected IKEAUTH exchange. This affects...

4.3CVSS9.2AI score0.02748EPSS
Exploits1References3
Cvelist
Cvelistadded 2020/06/03 5:42 p.m.20 views

CVE-2020-3230 Cisco IOS and IOS XE Software Internet Key Exchange Version 2 Denial of Service Vulnerability

A vulnerability in the Internet Key Exchange Version 2 IKEv2 implementation in Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to prevent IKEv2 from establishing new security associations. The vulnerability is due to incorrect handling of crafted IKEv2...

7.5CVSS7.5AI score0.01671EPSS
Exploits0References1
Cisco
Ciscoadded 2020/06/03 4:0 p.m.42 views

Cisco IOS and IOS XE Software Internet Key Exchange Version 2 Denial of Service Vulnerability

A vulnerability in the Internet Key Exchange Version 2 IKEv2 implementation in Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to prevent IKEv2 from establishing new security associations. The vulnerability is due to incorrect handling of crafted IKEv2...

7.5CVSS2AI score0.01671EPSS
Exploits0References1
Rows per page
Query Builder