Lucene search
K

7 matches found

OSV
OSV
added 2026/06/25 8:39 a.m.2 views

CVE-2026-53266 netfilter: bridge: make ebt_snat ARP rewrite writable

In the Linux kernel, the following vulnerability has been resolved: netfilter: bridge: make ebtsnat ARP rewrite writable The ebtables SNAT target keeps the Ethernet source address rewrite behind skbensurewritableskb, 0. This is intentional: at the bridge ebtables hooks the Ethernet header is...

8.8CVSS5.8AI score0.00129EPSS
Exploits0References11
Positive Technologies
Positive Technologies
added 2026/06/25 12:0 a.m.8 views

PT-2026-52361

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the netfilter bridge ebtables SNAT target regarding how the ARP sender hardware address rewrite is handled. While the Ethernet source address rewrite is managed via sk...

8.8CVSS6.1AI score0.00184EPSS
Exploits0References388
ATTACKERKB
ATTACKERKB
added 2026/05/08 1:31 p.m.7 views

CVE-2026-43329

In the Linux kernel, the following vulnerability has been resolved: netfilter: flowtable: strictly check for maximum number of actions The maximum number of flowtable hardware offload actions in IPv6 is: ethernet mangling 4 payload actions, 2 for each ethernet address SNAT 4 payload actions DNAT ...

5.8AI score0.00141EPSS
Exploits0References8Affected Software1
OSV
OSV
added 2026/05/08 1:31 p.m.3 views

CVE-2026-43329 netfilter: flowtable: strictly check for maximum number of actions

In the Linux kernel, the following vulnerability has been resolved: netfilter: flowtable: strictly check for maximum number of actions The maximum number of flowtable hardware offload actions in IPv6 is: ethernet mangling 4 payload actions, 2 for each ethernet address SNAT 4 payload actions DNAT ...

7.8CVSS5.8AI score0.00141EPSS
Exploits0References25
Positive Technologies
Positive Technologies
added 2025/10/03 12:0 a.m.5 views

PT-2025-46740

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw related to a metadata destination metadata dst leak within the bpf redirect neigh v4,6 function. This issue occurs in systems utilizing the Cilium BPF...

4.6CVSS7.6AI score0.00202EPSS
Exploits1
CNNVD
CNNVD
added 2025/04/16 12:0 a.m.4 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from a missing IPv6 SNAT raw tuple lookup...

5.5CVSS6.5AI score0.00172EPSS
Exploits0References9
Citrix
Citrix
added 2019/03/06 12:0 a.m.10 views

Configuring Source NAT for Direct Internet Breakout on Branch SDWAN

After setting up Direct Internet Breakout DIA on a Branch Site, it can be seen that packets forwarded to the internet will retain the private IP address as the Source IP. This will result in packets not returning form public IP destinations. To resolve this, you can configure Source NAT on the...

7AI score
Exploits0
Rows per page
Query Builder