Lucene search
+L

25 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2006-1625

Malware in sbrugna...

7.8CVSS6.4AI score0.02783EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/07/08 12:0 a.m.14 views

FreeBSD : traefik -- Bypassing IP allow-lists via HTTP/3 early data requests (767dfb2d-3c9e-11ef-a829-5404a68ad561)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 767dfb2d-3c9e-11ef-a829-5404a68ad561 advisory. The traefik authors report: There is a vulnerability in Traefik that allows bypassing IP allow-lists vi...

7.5CVSS8AI score0.00594EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2024/07/07 3:55 p.m.12 views

CVE-2024-39321

An authorization bypass vulnerability was found in Traefik. This flaw allows bypassing IP allow-lists via HTTP/3 early data requests in QUIC 0-RTT handshakes sent with spoofed IP addresses. Mitigation Mitigation for this issue is either not available or the currently available options do not meet...

7.5CVSS7.2AI score0.00594EPSS
Exploits0References7
NVD
NVD
added 2024/07/05 6:15 p.m.21 views

CVE-2024-39321

Traefik is an HTTP reverse proxy and load balancer. Versions prior to 2.11.6, 3.0.4, and 3.1.0-rc3 have a vulnerability that allows bypassing IP allow-lists via HTTP/3 early data requests in QUIC 0-RTT handshakes sent with spoofed IP addresses. Versions 2.11.6, 3.0.4, and 3.1.0-rc3 contain a patc...

7.5CVSS0.00594EPSS
Exploits0References4
AlpineLinux
AlpineLinux
added 2024/07/05 6:15 p.m.17 views

CVE-2024-39321

Traefik is an HTTP reverse proxy and load balancer. Versions prior to 2.11.6, 3.0.4, and 3.1.0-rc3 have a vulnerability that allows bypassing IP allow-lists via HTTP/3 early data requests in QUIC 0-RTT handshakes sent with spoofed IP addresses. Versions 2.11.6, 3.0.4, and 3.1.0-rc3 contain a patc...

7.5CVSS7.2AI score0.00594EPSS
Exploits0
CVE
CVE
added 2024/07/05 5:32 p.m.73 views

CVE-2024-39321

Traefik vulnerability CVE-2024-39321 affects Traefik versions prior to 2.11.14 and 3.2.1, where the API/dashboard validates X-Forwarded-Prefix but can be bypassed by a crafted header, potentially enabling cache poisoning. Remediation: upgrade to Traefik 2.11.14+ or 3.2.1+. Exploitation status not...

7.5CVSS7.3AI score0.00594EPSS
Exploits0References4Affected Software1
FreeBSD
FreeBSD
added 2024/07/02 12:0 a.m.13 views

traefik -- Bypassing IP allow-lists via HTTP/3 early data requests

The traefik authors report: There is a vulnerability in Traefik that allows bypassing IP allow-lists via HTTP/3 early data requests in QUIC 0-RTT handshakes sent with spoofed IP addresses...

7.5CVSS6.9AI score0.00594EPSS
Exploits0References1
Veracode
Veracode
added 2024/02/12 5:52 p.m.24 views

Insufficient Verification Of Data Authenticity

Open vSwitch is vulnerable to Insufficient Verification of Data Authenticity. The vulnerability is due to improper handling of ICMPv6 packets, specifically allowing packets with modified or spoofed target IP addresses to redirect traffic to arbitrary destinations...

7.1CVSS7.2AI score0.00389EPSS
Exploits0References8Affected Software1
Prion
Prion
added 2023/10/06 6:15 p.m.25 views

Design/Logic Flaw

A flaw was found in Open vSwitch that allows ICMPv6 Neighbor Advertisement packets between virtual machines to bypass OpenFlow rules. This issue may allow a local attacker to create specially crafted packets with a modified or spoofed target IP address field that can redirect ICMPv6 traffic to...

1.7CVSS5.6AI score0.00389EPSS
Exploits0References4Affected Software4
Citrix
Citrix
added 2023/08/07 12:0 a.m.9 views

Spoofed IP Addresses for FQDN Based Tunneling

To understand the concept of Spoofed IP address in Split Tunnel of FQDN based tunneling...

7.1AI score
Exploits0
Veracode
Veracode
added 2022/06/15 12:45 a.m.51 views

Information Disclosure

kernel is vulnerable to information disclosure. The vulnerability exists due to a flaw was found in the Linux SCTP stack allowing an attacker to kill an existing SCTP association through invalid chunks if the attacker knows the IP-addresses and port numbers being used and the attacker can send...

6.5CVSS6.4AI score0.0124EPSS
Exploits0References13Affected Software4
Tenable Nessus
Tenable Nessus
added 2022/04/05 12:0 a.m.49 views

Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2022-9260)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-9260 advisory. - drm/i915: Flush TLBs before releasing backing store Tvrtko Ursulin Orabug: 33835812 CVE-2022-0330 - drm/i915: Reduce locking in execlist command...

7.8CVSS6.8AI score0.06846EPSS
Exploits0References6
OSV
OSV
added 2022/03/02 11:15 p.m.38 views

CVE-2021-3772

A flaw was found in the Linux SCTP stack. A blind attacker may be able to kill an existing SCTP association through invalid chunks if the attacker knows the IP-addresses and port numbers being used and the attacker can send packets with spoofed IP addresses...

6.5CVSS6.5AI score0.0124EPSS
Exploits0References8
OSV
OSV
added 2021/10/05 2:8 p.m.10 views

CLSA-2021-1633442934 Fix of CVE: CVE-2020-11868

CVE-2020-11868: incorrect handling of packets from unauthenticated synchronization source with spoofed IP address leads to denial of service...

7.5CVSS6.5AI score0.02081EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2021/09/09 12:0 a.m.71 views

CVE-2021-3772

A flaw was found in the Linux SCTP stack. A blind attacker may be able to kill an existing SCTP association through invalid chunks if the attacker knows the IP-addresses and port numbers being used and the attacker can send packets with spoofed IP addresses...

6.5CVSS6.7AI score0.0124EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 2021/09/08 7:42 a.m.70 views

CVE-2021-3772

A flaw was found in the Linux SCTP stack. A blind attacker may be able to kill an existing SCTP association through invalid chunks if the attacker knows the IP-addresses and port numbers being used and the attacker can send packets with spoofed IP addresses. Mitigation As the SCTP module will be...

6.5CVSS6.8AI score0.0124EPSS
Exploits0References3
Veracode
Veracode
added 2019/01/15 9:26 a.m.44 views

Denial Of Service (DoS)

Linux kernel is vulnerable to denial of service. A flaw named SegmentSmack was found in the way the Linux kernel handled specially crafted TCP packets. A remote attacker could use this flaw to trigger time and calculation expensive calls to tcpcollapseofoqueue and tcppruneofoqueue functions by...

7.5CVSS7AI score0.7354EPSS
Exploits0References45Affected Software3
Tenable Nessus
Tenable Nessus
added 2018/10/26 12:0 a.m.51 views

EulerOS Virtualization 2.5.0 : kernel (EulerOS-SA-2018-1345)

According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide...

7.8CVSS7.1AI score0.7354EPSS
Exploits0References4
Prion
Prion
added 2018/06/18 6:29 p.m.12 views

Authentication flaw

An improper authentication vulnerability in CA Privileged Access Manager 2.x allows attackers to spoof IP addresses in a log file...

5CVSS5.3AI score0.01125EPSS
Exploits0References2Affected Software1
RedhatCVE
RedhatCVE
added 2015/10/30 9:30 a.m.26 views

CVE-2006-1624

The default configuration of syslogd in the Linux sysklogd package does not enable the -x disable name lookups option, which allows remote attackers to cause a denial of service traffic amplification via messages with spoofed source IP addresses...

7.8CVSS7.2AI score0.02783EPSS
Exploits0References2
Rows per page
Query Builder