ovn: egress ACLs may be bypassed via specially crafted UDP packet

A flaw was found in the Open Virtual Network OVN. Specially crafted UDP packets may bypass egress access control lists ACLs in OVN installations configured with a logical switch with DNS records set on it and if the same switch has any egress ACLs configured. This issue can lead to unauthorized...

CVE-2021-40365

Affected devices don't process correctly certain special crafted packets sent to port 102/tcp, which could allow an attacker to cause a denial of service in the device...

CVE-2021-44694

Affected devices don't process correctly certain special crafted packets sent to port 102/tcp, which could allow an attacker to cause a denial of service in the device...

Denial of service

Affected devices don't process correctly certain special crafted packets sent to port 102/tcp, which could allow an attacker to cause a denial of service in the device...

Wago PFC200 Denial of Service (CVE-2021-21000)

On WAGO PFC200 devices in different firmware versions with special crafted packets an attacker with network access to the device could cause a denial of service for the login service of the runtime. - On WAGO PFC200 devices in different firmware versions with special crafted packets an attacker...

CVE-2021-20609

Uncontrolled Resource Consumption vulnerability in Mitsubishi Electric MELSEC iQ-R Series R00/01/02CPU, MELSEC iQ-R Series R04/08/16/32/120ENCPU, MELSEC iQ-R Series R08/16/32/120SFCPU, MELSEC iQ-R Series R08/16/32/120PCPU, MELSEC iQ-R Series R08/16/32/120PSFCPU, MELSEC iQ-R Series R16/32/64MTCPU,...

PT-2020-6155 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Red Hat Enterprise Linux affected versions not specified Description: The issue is related to errors in handling certain AMP packets by the Bluetooth stack implementation in the Linux kernel. This can allow a remote attacker to gain...

The vulnerabilities of SIPROTEC relay protection devices stem from insufficient validation of input data, allowing attackers to trigger malfunctions in the service.

The vulnerability of SIPROTEC relay protection devices is related to insufficient verification of input data. Exploiting this vulnerability can allow attackers to trigger a service failure using specially created packets sent to port 50000/UDP...

Schneider Electric SCADA多个产品异常处理拒绝服务漏洞

CVE ID:CVE-2013-2824 施耐德电气为100多个国家的能源及基础设施、工业、数据中心及网络、楼宇和住宅市场提供整体解决方案。其中多个产品使用的SESU工具用于更新windows PC系统上的软件。 Schneider Electric多个产品服务器存在拒绝服务攻击，允许远程攻击者利用漏洞发送特制的报文，可使进程停止响应，造成拒绝服务攻击。 0 Schneider Electric StruxureWare SCADA Expert Vijeo Citect 7.40 Schneider Electric Vijeo Citect 7.20 - 7.30SP1...