Lucene search
K

251 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/15 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-38248

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - bridge: mcast: Fix use-after-free during router port configuration The bridge maintains a global list of ports behind which a multicast router resides. The list...

7.8CVSS6.7AI score0.00248EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2025/07/09 11:23 p.m.5 views

SUSE CVE-2025-38248

In the Linux kernel, the following vulnerability has been resolved: bridge: mcast: Fix use-after-free during router port configuration The bridge maintains a global list of ports behind which a multicast router resides. The list is consulted during forwarding to ensure multicast packets are...

5.5CVSS7.9AI score0.00248EPSS
Exploits1References17
OSV
OSV
added 2025/07/09 11:15 a.m.11 views

AZL-70492 CVE-2025-38248 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: bridge: mcast: Fix use-after-free during router port configuration The bridge maintains a global list of ports behind which a multicast router resides. The list is consulted during forwarding to ensure multicast packets are...

7.8CVSS6.2AI score0.00248EPSS
Exploits1References1
NVD
NVD
added 2025/07/09 11:15 a.m.11 views

CVE-2025-38248

In the Linux kernel, the following vulnerability has been resolved: bridge: mcast: Fix use-after-free during router port configuration The bridge maintains a global list of ports behind which a multicast router resides. The list is consulted during forwarding to ensure multicast packets are...

7.8CVSS0.00248EPSS
Exploits1References4
OSV
OSV
added 2025/07/09 11:15 a.m.1 views

DEBIAN-CVE-2025-38248

In the Linux kernel, the following vulnerability has been resolved: bridge: mcast: Fix use-after-free during router port configuration The bridge maintains a global list of ports behind which a multicast router resides. The list is consulted during forwarding to ensure multicast packets are...

7.8CVSS5.9AI score0.00248EPSS
Exploits1References1
OSV
OSV
added 2025/07/09 11:15 a.m.10 views

UBUNTU-CVE-2025-38248

In the Linux kernel, the following vulnerability has been resolved: bridge: mcast: Fix use-after-free during router port configuration The bridge maintains a global list of ports behind which a multicast router resides. The list is consulted during forwarding to ensure multicast packets are...

7.8CVSS6.2AI score0.00248EPSS
Exploits1References41
Vulnrichment
Vulnrichment
added 2025/07/09 10:42 a.m.7 views

CVE-2025-38248 bridge: mcast: Fix use-after-free during router port configuration

In the Linux kernel, the following vulnerability has been resolved: bridge: mcast: Fix use-after-free during router port configuration The bridge maintains a global list of ports behind which a multicast router resides. The list is consulted during forwarding to ensure multicast packets are...

6.2AI score0.00248EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2025/07/09 10:42 a.m.5 views

CVE-2025-38248

In the Linux kernel, the following vulnerability has been resolved: bridge: mcast: Fix use-after-free during router port configuration The bridge maintains a global list of ports behind which a multicast router resides. The list is consulted during forwarding to ensure multicast packets are...

7.8CVSS5.6AI score0.00248EPSS
Exploits1References5Affected Software1
CVE
CVE
added 2025/07/09 10:42 a.m.106 views

CVE-2025-38248

CVE-2025-38248 : In the Linux kernel, a use-after-free flaw occurs in bridge multicast routing port handling. When per-VLAN multicast snooping is active, per-port multicast context is disabled and ports are removed from the global router port list, but can be re-added, leaving stale entries. This...

7.8CVSS6.5AI score0.00248EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2025/07/09 10:42 a.m.7 views

CVE-2025-38248 bridge: mcast: Fix use-after-free during router port configuration

In the Linux kernel, the following vulnerability has been resolved: bridge: mcast: Fix use-after-free during router port configuration The bridge maintains a global list of ports behind which a multicast router resides. The list is consulted during forwarding to ensure multicast packets are...

7.8CVSS6.6AI score0.00248EPSS
Exploits1References7
RedhatCVE
RedhatCVE
added 2025/05/23 7:9 a.m.11 views

CVE-2024-28771

IBM Security Directory Integrator 7.2.0 and IBM Security Verify Directory Integrator 10.0.0 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site the user...

6.5CVSS6.3AI score0.00175EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:8 a.m.5 views

CVE-2013-1141

The mDNS snooping functionality on Cisco Wireless LAN Controller WLC devices with software 7.4.1.54 and earlier does not properly manage buffers, which allows remote authenticated users to cause a denial of service device reload via crafted mDNS packets, aka Bug ID CSCue04153...

6.1CVSS6.7AI score0.00566EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/09 6:8 p.m.7 views

CVE-2025-20162

A vulnerability in the DHCP snooping security feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a full interface queue wedge, which could result in a denial of service DoS condition. This vulnerability is due to improper handling of DHCP request packets. An...

8.6CVSS7.4AI score0.00438EPSS
Exploits0References1
OSV
OSV
added 2025/05/07 6:15 p.m.7 views

CVE-2025-20162

A vulnerability in the DHCP snooping security feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a full interface queue wedge, which could result in a denial of service DoS condition. This vulnerability is due to improper handling of DHCP request packets. An...

8.6CVSS6.7AI score0.00438EPSS
Exploits0References1
NVD
NVD
added 2025/05/07 6:15 p.m.11 views

CVE-2025-20162

A vulnerability in the DHCP snooping security feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a full interface queue wedge, which could result in a denial of service DoS condition. This vulnerability is due to improper handling of DHCP request packets. An...

8.6CVSS0.00438EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/07 5:38 p.m.18 views

CVE-2025-20162

A vulnerability in the DHCP snooping security feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a full interface queue wedge, which could result in a denial of service DoS condition. This vulnerability is due to improper handling of DHCP request packets. An...

8.6CVSS0.00438EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/05/07 5:38 p.m.7 views

CVE-2025-20162

A vulnerability in the DHCP snooping security feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a full interface queue wedge, which could result in a denial of service DoS condition. This vulnerability is due to improper handling of DHCP request packets. An...

8.6CVSS8.7AI score0.00438EPSS
Exploits0References1
CVE
CVE
added 2025/05/07 5:38 p.m.60 views

CVE-2025-20162

CVE-2025-20162 affects Cisco IOS XE Software DHCP Snooping. A vulnerability due to improper handling of DHCP REQUEST packets can let an unauthenticated remote attacker wedge an interface queue, causing a DoS. Exploitation can use unicast or broadcast DHCP packets on a VLAN without DHCP snooping e...

8.6CVSS8.7AI score0.00438EPSS
Exploits0References1Affected Software1
Cisco
Cisco
added 2025/05/07 4:0 p.m.11 views

Cisco IOS XE Software DHCP Snooping Denial of Service Vulnerability

A vulnerability in the DHCP snooping security feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a full interface queue wedge, which could result in a denial of service DoS condition. This vulnerability is due to improper handling of DHCP request packets. An...

8.6CVSS8.8AI score0.00438EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/05/07 12:0 a.m.7 views

PT-2025-20254 · Cisco · Cisco Ios Xe

Name of the Vulnerable Software and Affected Versions: Cisco IOS XE Software affected versions not specified Description: A vulnerability in the DHCP snooping security feature could allow an unauthenticated, remote attacker to cause a full interface queue wedge, resulting in a denial of service D...

8.6CVSS6.5AI score0.00438EPSS
Exploits0References5
Rows per page
Query Builder