Lucene search
K

61 matches found

Microsoft CVE
Microsoft CVE
added 2025/09/03 10:31 p.m.5 views

udp: Deal with race between UDP socket address change and rehash

...

4.7CVSS6.9AI score0.00137EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/09/02 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-38618

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - vsock: Do not allow binding to VMADDRPORTANY It is possible for a vsock to autobind to VMADDRPORTANY. This can cause a use-after-free when a connection is made ...

7.8CVSS7.1AI score0.00152EPSS
Exploits0References3
CVE
CVE
added 2025/07/03 8:35 a.m.87 views

CVE-2025-38147

Technical details about CVE-2025-38147 (affected software, impact, exploitability, and fix specifics) are not publicly provided in the supplied documents. Please monitor for updates from vendors and security bulletins.

5.5CVSS6.9AI score0.0017EPSS
Exploits0References10Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/03/06 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2024-57974

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - udp: Deal with race between UDP socket address change and rehash If a UDP socket changes its local address while it's receiving datagrams, as a result of connec...

4.7CVSS6.7AI score0.00137EPSS
Exploits0References4
OSV
OSV
added 2025/02/27 2:15 a.m.6 views

AZL-68748 CVE-2024-57974 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: udp: Deal with race between UDP socket address change and rehash If a UDP socket changes its local address while it's receiving datagrams, as a result of connect, there is a period during which a lookup operation might fail to fi...

4.7CVSS6.6AI score0.00137EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/01/29 12:0 a.m.7 views

PT-2025-3998 · Freebsd · Freebsd

Name of the Vulnerable Software and Affected Versions: FreeBSD affected versions not specified Description: The ktrace facility logs the contents of kernel structures to userspace. In one case, ktrace dumps a variable-sized sockaddr to userspace, copying the full sockaddr even when it is shorter...

4.9CVSS6.7AI score0.00348EPSS
Exploits0References9
Veracode
Veracode
added 2023/06/02 7:50 a.m.13 views

Denial Of Service (DoS)

proxy is vulnerable to Denial of Service DoS attacks. A malicious user is able to cause a TypeError exception via sending a crafted HTTP request through the socket.remoteAddress variable, resulting in denial of service conditions...

7.5CVSS6.6AI score0.01478EPSS
Exploits1References6Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 6:19 a.m.4 views

SUSE CVE-2005-0201

D-BUS dbus before 0.22 does not properly restrict access to a socket, if the socket address is known, which allows local users to listen or send arbitrary messages on another user's per-user session bus via that socket...

2.1CVSS6.7AI score0.00428EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 5:56 a.m.5 views

SUSE CVE-2010-3850

The ecdevioctl function in net/econet/afeconet.c in the Linux kernel before 2.6.36.2 does not require the CAPNETADMIN capability, which allows local users to bypass intended access restrictions and configure econet addresses via an SIOCSIFADDR ioctl call...

2.1CVSS6.4AI score0.00801EPSS
Exploits11References9
SUSE CVE
SUSE CVE
added 2023/02/15 3:51 a.m.4 views

SUSE CVE-2020-35920

An issue was discovered in the socket2 crate before 0.3.16 for Rust. It has false expectations about the std::net::SocketAddr memory representation...

5.5CVSS7AI score0.00398EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 3:51 a.m.6 views

SUSE CVE-2020-35921

An issue was discovered in the miow crate before 0.3.6 for Rust. It has false expectations about the std::net::SocketAddr memory representation...

5.5CVSS7AI score0.00387EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 3:51 a.m.4 views

SUSE CVE-2020-35922

An issue was discovered in the mio crate before 0.7.6 for Rust. It has false expectations about the std::net::SocketAddr memory representation...

5.5CVSS7AI score0.00389EPSS
Exploits1References3
Fedora
Fedora
added 2022/07/17 1:15 a.m.22 views

[SECURITY] Fedora 35 Update: golang-github-hashicorp-sockaddr-1.0.2-11.fc35

Socket address convenience functions for Go. go-sockaddr is a convenience library that makes doing the right thing with IP addresses easy. go-sockaddr is loosely modeled after the UNIX sockaddrt and creates a union of the family of sockaddrt types see below for an ascii diagram. Library...

9.3CVSS7.9AI score0.05994EPSS
Exploits4
Fedora
Fedora
added 2022/07/04 1:35 a.m.29 views

[SECURITY] Fedora 36 Update: golang-github-hashicorp-sockaddr-1.0.2-11.fc36

Socket address convenience functions for Go. go-sockaddr is a convenience library that makes doing the right thing with IP addresses easy. go-sockaddr is loosely modeled after the UNIX sockaddrt and creates a union of the family of sockaddrt types see below for an ascii diagram. Library...

9.3CVSS7.9AI score0.05994EPSS
Exploits4
OSV
OSV
added 2021/08/25 9:0 p.m.2 views

GHSA-P5W9-856P-8Q4G Assumed memory layout of std::net::SocketAddr

The socket2 crate has assumed std::net::SocketAddrV4 and std::net::SocketAddrV6 have the same memory layout as the system C representation sockaddr. It has simply casted the pointers to convert the socket addresses to the system representation. The standard library does not say anything about the...

7AI score
Exploits0References3
Prion
Prion
added 2021/03/05 9:15 a.m.14 views

Design/Logic Flaw

An issue was discovered in the quinn crate before 0.7.0 for Rust. It may have invalid memory access for certain versions of the standard library because it relies on a direct cast of std::net::SocketAddrV4 and std::net::SocketAddrV6 data structures...

5CVSS7.5AI score0.0125EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2021/02/18 4:15 a.m.5 views

CVE-2021-27376

An issue was discovered in the nb-connect crate before 1.0.3 for Rust. It may have invalid memory access for certain versions of the standard library because it relies on a direct cast of std::net::SocketAddrV4 and std::net::SocketAddrV6 data structures...

9.8CVSS7.3AI score0.01448EPSS
Exploits1References1
CNNVD
CNNVD
added 2021/02/17 12:0 a.m.8 views

Rust nb-connect buffer error vulnerability

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A security vulnerability exists in Rust nb-connect. The vulnerability stems from a forced data type conversion using std::net::SocketAddrV4 and std::net::SocketAddrV6 in some versions of the standard library,...

9.8CVSS7.3AI score0.01448EPSS
Exploits1References2
OSV
OSV
added 2020/12/31 9:15 a.m.5 views

DEBIAN-CVE-2020-35921

An issue was discovered in the miow crate before 0.3.6 for Rust. It has false expectations about the std::net::SocketAddr memory representation...

5.5CVSS5.7AI score0.00387EPSS
Exploits1References1
OSV
OSV
added 2020/12/31 9:15 a.m.7 views

DEBIAN-CVE-2020-35920

An issue was discovered in the socket2 crate before 0.3.16 for Rust. It has false expectations about the std::net::SocketAddr memory representation...

5.5CVSS5.7AI score0.00398EPSS
Exploits1References1
Rows per page
Query Builder