Lucene search
K

32 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-1999-0305

Malware in sbrugna...

5CVSS6.4AI score0.01376EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-1999-0414

Malware in sbrugna...

5CVSS6.4AI score0.06863EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-46499

Malicious code in bioql PyPI...

9.1CVSS7AI score0.00565EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/23 12:1 a.m.10 views

CVE-2022-43501

KASAGO TCP/IP stack provided by Zuken Elmic generates ISNsInitial Sequence Number for TCP connections from an insufficiently random source. An attacker may be able to determine the ISN of the current or future TCP connections and either hijack existing ones or spoof future ones...

9.1CVSS6.8AI score0.00565EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/09/05 12:0 a.m.90 views

RHEL 8 : kernel (RHSA-2024:6206)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:6206 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel:TCP-spoofed ghost ACKs and leak...

9.1CVSS7.1AI score0.0117EPSS
Exploits0References69
RedHat Linux
RedHat Linux
added 2024/08/13 3:9 p.m.4 views

kernel: TCP-spoofed ghost ACKs and leak leak initial sequence number

A flaw was found in the Linux kernel. Two TCP spoofing primitives exist where an attacker can brute force the server-chosen send window by acknowledging data that was never sent, called "ghost ACKs." There are side channels that also allow the attacker to leak the otherwise secret server-chosen...

5.5CVSS6.8AI score0.00227EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2024/08/13 12:0 a.m.22 views

RHEL 8 : kernel (RHSA-2024:5281)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:5281 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel:TCP-spoofed ghost ACKs and leak...

7.8CVSS7.4AI score0.02701EPSS
Exploits1References38
OSV
OSV
added 2024/07/15 12:20 p.m.14 views

RXSA-2024:4211 Important: kernel security and bug fix update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: Bluetooth BR/EDR PIN Pairing procedure is vulnerable to an impersonation attack CVE-2020-26555 kernel: TCP-spoofed ghost ACKs and leak leak initial sequence number...

7CVSS7.5AI score0.01401EPSS
Exploits1References62
RedHat Linux
RedHat Linux
added 2024/07/08 2:5 a.m.3 views

kernel: TCP-spoofed ghost ACKs and leak leak initial sequence number

A flaw was found in the Linux kernel. Two TCP spoofing primitives exist where an attacker can brute force the server-chosen send window by acknowledging data that was never sent, called "ghost ACKs." There are side channels that also allow the attacker to leak the otherwise secret server-chosen...

5.5CVSS6.8AI score0.00227EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/07/02 9:2 a.m.4 views

kernel: TCP-spoofed ghost ACKs and leak leak initial sequence number

A flaw was found in the Linux kernel. Two TCP spoofing primitives exist where an attacker can brute force the server-chosen send window by acknowledging data that was never sent, called "ghost ACKs." There are side channels that also allow the attacker to leak the otherwise secret server-chosen...

5.5CVSS6.8AI score0.00227EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2024/07/02 12:0 a.m.102 views

AlmaLinux 8 : kernel (ALSA-2024:4211)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2024:4211 advisory. kernel: Bluetooth BR/EDR PIN Pairing procedure is vulnerable to an impersonation attack CVE-2020-26555 kernel:TCP-spoofed ghost ACKs and leak leak initial...

9.1CVSS7.6AI score0.01401EPSS
Exploits1References62
AlmaLinux
AlmaLinux
added 2024/07/02 12:0 a.m.92 views

Important: kernel security and bug fix update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: Bluetooth BR/EDR PIN Pairing procedure is vulnerable to an impersonation attack CVE-2020-26555 kernel:TCP-spoofed ghost ACKs and leak leak initial sequence number...

9.1CVSS7.4AI score0.01401EPSS
Exploits1References124
RedhatCVE
RedhatCVE
added 2024/05/29 12:25 p.m.51 views

CVE-2023-52881

A flaw was found in the Linux kernel. Two TCP spoofing primitives exist where an attacker can brute force the server-chosen send window by acknowledging data that was never sent, called "ghost ACKs." There are side channels that also allow the attacker to leak the otherwise secret server-chosen...

5.9CVSS6.3AI score0.00227EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/05/02 4:59 p.m.3 views

kernel: off-path attacker may inject data or terminate victim's TCP session

A TCP/IP packet spoofing attack flaw was found in the Linux kernel’s TCP/IP protocol, where a Man-in-the-Middle Attack MITM performs an IP fragmentation attack and an IPID collision. This flaw allows a remote user to pretend to be the sender of the TCP/IP packet for an existing TCP/IP session...

5.9CVSS6.7AI score0.00678EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/04/30 9:57 a.m.2 views

kernel: TCP-spoofed ghost ACKs and leak leak initial sequence number

A flaw was found in the Linux kernel. Two TCP spoofing primitives exist where an attacker can brute force the server-chosen send window by acknowledging data that was never sent, called "ghost ACKs." There are side channels that also allow the attacker to leak the otherwise secret server-chosen...

5.5CVSS6.8AI score0.00227EPSS
Exploits0References6
Cvelist
Cvelist
added 2023/12/13 8:12 a.m.27 views

CVE-2023-6534 TCP spoofing vulnerability in pf(4)

In versions of FreeBSD 14.0-RELEASE before 14-RELEASE-p2, FreeBSD 13.2-RELEASE before 13.2-RELEASE-p7 and FreeBSD 12.4-RELEASE before 12.4-RELEASE-p9, the pf4 packet filter incorrectly validates TCP sequence numbers. This could allow a malicious actor to execute a denial-of-service attack against...

7.8AI score0.00742EPSS
Exploits0References2
FreeBSD Advisory
FreeBSD Advisory
added 2023/12/05 12:0 a.m.21 views

FreeBSD-SA-23:17.pf

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-23:17.pf Security Advisory The FreeBSD Project Topic: TCP spoofing vulnerability in pf4 Category: core Module: pf Announced: 2023-12-05 Credits: Yuxiang Yang, A...

7.5CVSS7.2AI score0.00742EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/12/05 12:0 a.m.18 views

FreeBSD : FreeBSD -- TCP spoofing vulnerability in pf(4) (9cbbc506-93c1-11ee-8e38-002590c1f29c)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 9cbbc506-93c1-11ee-8e38-002590c1f29c advisory. - As part of its stateful TCP connection tracking implementation, pf performs sequence number validatio...

7.5CVSS7.4AI score0.00742EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2023/10/10 5:15 p.m.3 views

CVE-2020-27213

An issue was discovered in Ethernut Nut/OS 5.1. The code that generates Initial Sequence Numbers ISNs for TCP connections derives the ISN from an insufficiently random source. As a result, an attacker may be able to determine the ISN of current and future TCP connections and either hijack existin...

7.5CVSS5.5AI score0.00973EPSS
Exploits1References5
OSV
OSV
added 2023/10/10 5:15 p.m.3 views

CVE-2020-27213

An issue was discovered in Ethernut Nut/OS 5.1. The code that generates Initial Sequence Numbers ISNs for TCP connections derives the ISN from an insufficiently random source. As a result, an attacker may be able to determine the ISN of current and future TCP connections and either hijack existin...

7.5CVSS5.8AI score0.00973EPSS
Exploits1References4
Rows per page
Query Builder