Lucene search
K

4 matches found

FreeBSD
FreeBSD
added 2026/03/25 12:0 a.m.4 views

FreeBSD -- Remote denial of service via null pointer dereference

Problem Description: On a system exposing an NVMe/TCP target, a remote client can trigger a kernel panic by sending a CONNECT command for an I/O queue with a bogus or stale CNTLID. Impact: An attacker with network access to the NVMe/TCP target can trigger an unauthenticated Denial of Service...

7.5CVSS5.9AI score0.00367EPSS
Exploits0
OSV
OSV
added 2022/05/24 10:1 p.m.5 views

GHSA-442G-GCG6-MHM4 Play Framework Inadequate Encryption Strength vulnerability

An issue was discovered in Lightbend Play Framework 2.5.x through 2.6.23. When configured to make requests using an authenticated HTTP proxy, play-ws may sometimes, typically under high load, when connecting to a target host using https, expose the proxy credentials to the target host...

7.5CVSS5.9AI score0.00698EPSS
Exploits0References3
OSV
OSV
added 2021/02/02 7:23 a.m.10 views

USN-4709-1 linux-aws, linux-kvm, linux-raspi2, linux-snapdragon vulnerabilities

It was discovered that the LIO SCSI target implementation in the Linux kernel performed insufficient identifier checking in certain XCOPY requests. An attacker with access to at least one LUN in a multiple backstore environment could use this to expose sensitive information or modify data...

9.3CVSS6.9AI score0.06563EPSS
Exploits3References6
RedHat Linux
RedHat Linux
added 2018/11/27 1:25 a.m.3 views

kernel: stack-based buffer overflow in chap_server_compute_md5() in iscsi target

A flaw was found in the ISCSI target code in the Linux kernel. The flaw allows an unauthenticated, remote attacker to cause a stack buffer overflow of 17 bytes of the stack. Depending on how the kernel was compiled e.g. compiler, compile flags, and hardware architecture, the attack may lead to a...

8.3CVSS7.3AI score0.08743EPSS
Exploits0References4
Rows per page
Query Builder