Lucene search
+L

75 matches found

redhat
redhat
added 2022/06/30 9:7 p.m.4 views

kernel: buffer overflow in IPsec ESP transformation code

A heap buffer overflow flaw was found in IPsec ESP transformation code in net/ipv4/esp4.c and net/ipv6/esp6.c. This flaw allows a local attacker with a normal user privilege to overwrite kernel heap objects and may cause a local privilege escalation threat...

7.8CVSS6.8AI score0.05524EPSS
Exploits2References5
redhat
redhat
added 2022/06/28 12:32 p.m.4 views

kernel: buffer overflow in IPsec ESP transformation code

A heap buffer overflow flaw was found in IPsec ESP transformation code in net/ipv4/esp4.c and net/ipv6/esp6.c. This flaw allows a local attacker with a normal user privilege to overwrite kernel heap objects and may cause a local privilege escalation threat...

7.8CVSS6.8AI score0.05524EPSS
Exploits2References5
redhat
redhat
added 2022/06/28 6:58 a.m.2 views

kernel: buffer overflow in IPsec ESP transformation code

A heap buffer overflow flaw was found in IPsec ESP transformation code in net/ipv4/esp4.c and net/ipv6/esp6.c. This flaw allows a local attacker with a normal user privilege to overwrite kernel heap objects and may cause a local privilege escalation threat...

7.8CVSS6.8AI score0.05524EPSS
Exploits2References5
redhat
redhat
added 2022/06/08 8:38 a.m.2 views

kernel: buffer overflow in IPsec ESP transformation code

A heap buffer overflow flaw was found in IPsec ESP transformation code in net/ipv4/esp4.c and net/ipv6/esp6.c. This flaw allows a local attacker with a normal user privilege to overwrite kernel heap objects and may cause a local privilege escalation threat...

7.8CVSS6.8AI score0.05524EPSS
Exploits2References5
redhat
redhat
added 2022/05/31 12:23 p.m.5 views

kernel: buffer overflow in IPsec ESP transformation code

A heap buffer overflow flaw was found in IPsec ESP transformation code in net/ipv4/esp4.c and net/ipv6/esp6.c. This flaw allows a local attacker with a normal user privilege to overwrite kernel heap objects and may cause a local privilege escalation threat...

7.8CVSS6.8AI score0.05524EPSS
Exploits2References5
redhat
redhat
added 2022/05/31 9:15 a.m.2 views

kernel: buffer overflow in IPsec ESP transformation code

A heap buffer overflow flaw was found in IPsec ESP transformation code in net/ipv4/esp4.c and net/ipv6/esp6.c. This flaw allows a local attacker with a normal user privilege to overwrite kernel heap objects and may cause a local privilege escalation threat...

7.8CVSS6.8AI score0.05524EPSS
Exploits2References5
mscve
mscve
added 2022/03/30 7:0 a.m.2 views

A heap buffer overflow flaw was found in IPsec ESP transformation code in net/ipv4/esp4.c and net/ipv6/esp6.c. This flaw allows a local attacker with a normal user privilege to overwrite kernel heap objects and may cause a local privilege escalation threat.

...

7.8CVSS7.1AI score0.05524EPSS
Exploits2
osv
osv
added 2022/03/23 6:15 a.m.10 views

AZL-13228 CVE-2022-27666 affecting package hyperv-daemons for versions less than 5.15.92.1-1

A heap buffer overflow flaw was found in IPsec ESP transformation code in net/ipv4/esp4.c and net/ipv6/esp6.c. This flaw allows a local attacker with a normal user privilege to overwrite kernel heap objects and may cause a local privilege escalation threat...

7.8CVSS6.9AI score0.05524EPSS
Exploits2References1
attackerkb
attackerkb
added 2022/03/23 6:15 a.m.2 views

CVE-2022-27666

A heap buffer overflow flaw was found in IPsec ESP transformation code in net/ipv4/esp4.c and net/ipv6/esp6.c. This flaw allows a local attacker with a normal user privilege to overwrite kernel heap objects and may cause a local privilege escalation threat...

7.8CVSS6.1AI score0.05524EPSS
Exploits2References8
cnvd
cnvd
added 2020/06/04 12:0 a.m.4 views

Cisco 4300 Series Integrated Services Routers and Cisco Catalyst 9800-L Wireless Controllers IOS XE Data Forgery Issue Vulnerability

Cisco IOS XE is the United States Cisco Cisco company's set of operating system developed for its network equipment. A data forgery vulnerability exists in Cisco IOS XE IPsec VPN in Cisco 4300 Series Integrated Services Routers and Cisco Catalyst 9800-L Wireless Controllers, which arises from the...

7.1CVSS6.9AI score0.00529EPSS
Exploits0References1
osv
osv
added 2018/10/05 2:29 p.m.4 views

CVE-2018-0472

A vulnerability in the IPsec driver code of multiple Cisco IOS XE Software platforms and the Cisco ASA 5500-X Series Adaptive Security Appliance ASA could allow an unauthenticated, remote attacker to cause the device to reload. The vulnerability is due to improper processing of malformed IPsec...

8.6CVSS5.8AI score0.16221EPSS
Exploits0References5
cnvd
cnvd
added 2015/08/03 12:0 a.m.4 views

Cisco ASR 1000 Series Aggregation Services Routers Denial of Service Vulnerability

The Cisco ASR1000 Series Aggregation Services Routers provide a WAN edge solution that integrates information, communication, collaboration, and commerce. A vulnerability in the Cisco IOS XE Software for Cisco ASR 1000 Series Aggregation Services Routers in the code that reassembles fragmented IP...

7.8CVSS7.2AI score0.01982EPSS
Exploits0References1
nessus
nessus
added 2013/10/29 12:0 a.m.10 views

Encapsulating Security Payload (ESP) Session Setup

Binary data 8041.prm...

7.3AI score
Exploits0References1
ptsecurity
ptsecurity
added 2010/02/10 12:0 a.m.4 views

PT-2010-2040 · Microsoft · Windows Vista +2

Name of the Vulnerable Software and Affected Versions: Microsoft Windows Vista versions Gold, SP1, and SP2 Microsoft Windows Server 2008 versions Gold and SP2 Description: A remote code execution issue exists due to improper handling of local fragmentation of Encapsulating Security Payload ESP ov...

10CVSS7.7AI score0.48764EPSS
Exploits1References6
redhat
redhat
added 2008/05/20 9:57 a.m.2 views

IPSec ESP kernel panics

The IPsec implementation in Linux kernel before 2.6.25 allows remote routers to cause a denial of service crash via a fragmented ESP packet in which the first fragment does not contain the entire ESP header and IV...

7.1CVSS5.8AI score0.02452EPSS
Exploits1References4
Rows per page
Query Builder