87 matches found
PT-2024-22130 · Frrouting +4 · Frrouting +4
Name of the Vulnerable Software and Affected Versions: FRRouting FRR versions through 9.1 Description: The issue allows remote attackers to cause a denial of service, resulting in the ospfd daemon crash, via a malformed OSPF LSA packet. This occurs because of an attempted access to a missing...
CVE-2023-22406
A Missing Release of Memory after Effective Lifetime vulnerability in the kernel of Juniper Networks Junos OS and Junos OS Evolved allows an adjacent, unauthenticated attacker to cause a Denial of Service DoS. In a segment-routing scenario with OSPF as IGP, when a peer interface continuously flap...
Cisco NX-OS Software 缓冲区错误漏洞
Cisco NX-OS Software is a suite of data center-grade operating system software for switches from Cisco. A security vulnerability exists in Cisco NX-OS Software OSPFv3, which stems from incomplete validation of inputs to specific OSPFv3 messages allowing an unauthenticated, remote attacker to...
Siemens SCALANCE 安全漏洞
SCALANCE X switches are used to connect industrial components such as programmable logic controllers PLCs or human machine interfaces HMIs. An OSPF packet handling vulnerability exists in the SIEMENS SCALANCE XM-400 and XR-500, which stems from the implementation of the OSPF protocol in the devic...
Juniper Networks Junos OS 安全漏洞
Juniper Networks Junos OS is a Juniper Networks network operating system for the company's hardware devices. The OS provides a secure programming interface and the Junos SDK. Juniper Networks Junos OS has a security vulnerability that originates from incorrect initialization in the routing protoc...
CVE-2020-3528
A vulnerability in the OSPF Version 2 OSPFv2 implementation of Cisco Adaptive Security Appliance ASA Software and Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service DoS condition. The...
PT-2020-4460 · Cisco · Cisco Ftd +1
Name of the Vulnerable Software and Affected Versions: Cisco Adaptive Security Appliance ASA Software versions prior to the fixed version Cisco Firepower Threat Defense FTD Software versions prior to the fixed version Description: A vulnerability in the OSPF Version 2 OSPFv2 implementation could...
Cisco Firepower Threat Defense and Adaptive Security Appliances Software Memory Leak Vulnerability
Cisco Firepower Threat Defense FTD and Cisco Adaptive Security Appliances Software ASA Software are both products of Cisco, Inc.Cisco Firepower Threat Defense is a set of unified software that provides next-generation firewall services. Defense is a set of unified software to provide...
CVE-2020-5881
On versions 15.0.0-15.1.0.1, 14.1.0-14.1.2.3, and 13.1.0-13.1.3.3, when the BIG-IP Virtual Edition VE is configured with VLAN groups and there are devices configured with OSPF connected to it, the Network Device Abstraction Layer NDAL Interfaces can lock up and in turn disrupting the communicatio...
ALPINE-CVE-2018-14880
The OSPFv3 parser in tcpdump before 4.9.3 has a buffer over-read in print-ospf6.c:ospf6printlshdr...
CVE-2019-12676
A vulnerability in the Open Shortest Path First OSPF implementation of Cisco Adaptive Security Appliance ASA Software and Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, adjacent attacker to cause a reload of an affected device, resulting in a denial of service DoS...
CVE-2019-12676
A vulnerability in the Open Shortest Path First OSPF implementation of Cisco Adaptive Security Appliance ASA Software and Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, adjacent attacker to cause a reload of an affected device, resulting in a denial of service DoS...
CVE-2018-0466
A vulnerability in the Open Shortest Path First version 3 OSPFv3 implementation in Cisco IOS and IOS XE Software could allow an unauthenticated, adjacent attacker to cause an affected device to reload. The vulnerability is due to incorrect handling of specific OSPFv3 packets. An attacker could...
Cisco IOS and IOS XE Denial of Service Vulnerability (CNVD-2018-20235)
Cisco IOS Software and IOS XE Software are both operating systems developed by Cisco for its network devices. A denial of service vulnerability exists in the Open Shortest Path First version 3 OSPFv3 implementation in Cisco IOS Software and IOS XE Software. An attacker in close physical proximity...
UBUNTU-CVE-2017-3224
Open Shortest Path First OSPF protocol implementations may improperly determine Link State Advertisement LSA recency for LSAs with MaxSequenceNumber. According to RFC 2328 section 13.1, for two instances of the same LSA, recency is determined by first comparing sequence numbers, then checksums, a...
tcpdump: Buffer over-read in print-ospf6.c:ospf6_decode_v3() in OSPFv3 parser
The OSPFv3 parser in tcpdump before 4.9.2 has a buffer over-read in print-ospf6.c:ospf6decodev3...
MaxAge LSA Vulnerability in OSPF Protocol of Multiple Huawei Products Products
Huawei AC6005 and others are products of Huawei, China.Huawei AC6005 is an access control device.CloudEngine 12800 is a data center switch device. A MaxAge LSA vulnerability exists in the OSPF protocol of multiple Huawei products. When the device receives a specific LSA message, the LS Link Statu...
Security Bypass Vulnerabilities in Multiple Cisco Products
Cisco Nexus 7000 Series Switches and so on are the products of the United States Cisco Cisco.Cisco Nexus 7000 Series Switches are 7000 series switches; Cisco Adaptive Security Appliance ASA, Adaptive Security Appliance The Cisco Nexus 7000 Series Switches are 7000 series switches; the Cisco...
CVE-2017-1460
IBM i OSPF 6.1, 7.1, 7.2, and 7.3 is vulnerable when a rogue router spoofs its origin. Routing tables are affected by a missing LSA, which may lead to loss of connectivity. IBM X-Force ID: 128379...
Quagga: OSPFD Potential remote code exec (stack based buffer overflow)
A stack-based buffer overflow flaw was found in the way the Quagga OSPFD daemon handled LSA link-state advertisement packets. A remote attacker could use this flaw to crash the ospfd daemon resulting in denial of service...