Lucene search
K

143 matches found

SUSE CVE
SUSE CVE
added 2025/09/13 11:22 p.m.7 views

SUSE CVE-2025-39797

In the Linux kernel, the following vulnerability has been resolved: xfrm: Duplicate SPI Handling The issue originates when Strongswan initiates an XFRMMSGALLOCSPI Netlink message, which triggers the kernel function xfrmallocspi. This function is expected to ensure uniqueness of the Security...

5.9CVSS6.8AI score0.00147EPSS
Exploits0References43
OSV
OSV
added 2025/09/12 4:15 p.m.8 views

AZL-67334 CVE-2025-39797 affecting package kernel for versions less than 6.6.104.2-1

In the Linux kernel, the following vulnerability has been resolved: xfrm: Duplicate SPI Handling The issue originates when Strongswan initiates an XFRMMSGALLOCSPI Netlink message, which triggers the kernel function xfrmallocspi. This function is expected to ensure uniqueness of the Security...

7.8CVSS5.8AI score0.00147EPSS
Exploits0References1
NVD
NVD
added 2025/09/12 4:15 p.m.9 views

CVE-2025-39797

In the Linux kernel, the following vulnerability has been resolved: xfrm: Duplicate SPI Handling The issue originates when Strongswan initiates an XFRMMSGALLOCSPI Netlink message, which triggers the kernel function xfrmallocspi. This function is expected to ensure uniqueness of the Security...

7.8CVSS0.00147EPSS
Exploits0References5
OSV
OSV
added 2025/09/12 4:15 p.m.12 views

AZL-70760 CVE-2025-39797 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: xfrm: Duplicate SPI Handling The issue originates when Strongswan initiates an XFRMMSGALLOCSPI Netlink message, which triggers the kernel function xfrmallocspi. This function is expected to ensure uniqueness of the Security...

7.8CVSS5.8AI score0.00147EPSS
Exploits0References1
OSV
OSV
added 2025/09/12 4:15 p.m.2 views

UBUNTU-CVE-2025-39797

In the Linux kernel, the following vulnerability has been resolved: xfrm: Duplicate SPI Handling The issue originates when Strongswan initiates an XFRMMSGALLOCSPI Netlink message, which triggers the kernel function xfrmallocspi. This function is expected to ensure uniqueness of the Security...

7.8CVSS5.9AI score0.00147EPSS
Exploits0References24
OSV
OSV
added 2025/09/12 3:59 p.m.10 views

CVE-2025-39797 xfrm: Duplicate SPI Handling

In the Linux kernel, the following vulnerability has been resolved: xfrm: Duplicate SPI Handling The issue originates when Strongswan initiates an XFRMMSGALLOCSPI Netlink message, which triggers the kernel function xfrmallocspi. This function is expected to ensure uniqueness of the Security...

7.8CVSS6.5AI score0.00147EPSS
Exploits0References8
CNNVD
CNNVD
added 2025/09/12 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an incorrect handling of security parameter index duplicates, which could lead to packet processing failures...

7.8CVSS5.9AI score0.00147EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/09/05 12:34 a.m.14 views

CVE-2025-55852

Tenda AC8 v16.03.34.06 is vulnerable to Buffer Overflow in the formWifiBasicSet function via the parameter security or security5g...

7.5CVSS7.2AI score0.0037EPSS
Exploits1References1
OSV
OSV
added 2025/09/03 4:15 p.m.3 views

CVE-2025-55852

Tenda AC8 v16.03.34.06 is vulnerable to Buffer Overflow in the formWifiBasicSet function via the parameter security or security5g...

7.5CVSS5.8AI score0.0037EPSS
Exploits1References1
NVD
NVD
added 2025/09/03 4:15 p.m.7 views

CVE-2025-55852

Tenda AC8 v16.03.34.06 is vulnerable to Buffer Overflow in the formWifiBasicSet function via the parameter security or security5g...

7.5CVSS0.0037EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/09/03 12:0 a.m.2 views

CVE-2025-55852

Tenda AC8 v16.03.34.06 is vulnerable to Buffer Overflow in the formWifiBasicSet function via the parameter security or security5g...

6.7AI score0.0037EPSS
Exploits1References1
CVE
CVE
added 2025/09/03 12:0 a.m.20 views

CVE-2025-55852

The CVE-2025-55852 entry affects Tenda AC8 devices (v16.03.34.06). A buffer overflow in the formWifiBasicSet function is triggered by the security or security_5g input parameter, as described by multiple sources, with the documented impact being denial of service. The issue is rooted in improper ...

7.5CVSS6.7AI score0.0037EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/09/03 12:0 a.m.7 views

PT-2025-35775

Name of the Vulnerable Software and Affected Versions: Tenda AC8 version 16.03.34.06 Description: The Tenda AC8 version 16.03.34.06 is susceptible to a buffer overflow issue in the formWifiBasicSet function. The vulnerability is triggered through the security or security 5g parameter...

7.5CVSS6.9AI score0.0037EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/09/03 12:0 a.m.8 views

CVE-2025-55852

Tenda AC8 v16.03.34.06 is vulnerable to Buffer Overflow in the formWifiBasicSet function via the parameter security or security5g...

0.0037EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/08/29 12:0 a.m.3 views

PT-2025-41787

Name of the Vulnerable Software and Affected Versions Linux Kernel affected versions not specified Description The Linux kernel contains a flaw within the xfrm alloc spi function in the net/xfrm/xfrm state.c module. Specifically, the function incorrectly handles Security Parameter Index SPI...

5.5CVSS7.2AI score0.00177EPSS
Exploits0
CNNVD
CNNVD
added 2025/08/28 12:0 a.m.4 views

Tenda AC10 安全漏洞

Tenda AC10 is a dual-band Gigabit wireless router launched by Shenzhen Jixiang Tenda Technology Co., Ltd, mainly for 200M and above fiber optic users. Tenda AC10 has a stack buffer overflow vulnerability, the vulnerability stems from the security5g parameter in the sub46284C function fails to...

5.3CVSS7.4AI score0.00546EPSS
Exploits1References2
NVD
NVD
added 2025/07/21 5:15 p.m.4 views

CVE-2025-44649

In the configuration file of racoon in the TRENDnet TEW-WLC100P 2.03b03, the first item of exchagemode is set to aggressive. Aggressive mode in IKE Phase 1 exposes identity information in plaintext, is vulnerable to offline dictionary attacks, and lacks flexibility in negotiating security...

7.5CVSS0.00273EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/23 10:5 a.m.16 views

CVE-2024-30633

Tenda FH1205 v2.0.0.7775 has a stack overflow vulnerability in the security parameter from the formWifiBasicSet function...

6.5CVSS7.5AI score0.00528EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 10:4 a.m.7 views

CVE-2024-30597

Tenda FH1203 v2.0.1.6 firmware has a stack overflow vulnerability in the security parameter of the formWifiBasicSet function...

6.5CVSS7.6AI score0.00528EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:57 a.m.4 views

CVE-2024-30632

Tenda FH1205 v2.0.0.7775 has a stack overflow vulnerability in the security5g parameter from formWifiBasicSet function...

6.5CVSS7.4AI score0.00528EPSS
Exploits1References1
Rows per page
Query Builder