Lucene search
K

22 matches found

Cvelist
Cvelist
added 5 days ago34 views

CVE-2026-29008 U-Boot 2026.04-rc3 Integer Underflow DoS via tcp_rx_state_machine()

U-Boot through 2026.04-rc3 contains an integer underflow vulnerability in the tcprxstatemachine function net/tcp.c that allows a network-adjacent attacker to crash the bootloader by sending a malformed TCP SYN+ACK packet with a manipulated data offset field causing payloadlen to become negative...

8.7CVSS0.00432EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/06/25 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2026-53033

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - bpf, sockmap: Take state lock for afunix iter When a BPF iterator program updates a sockmap, there is a race condition in unixstreambpfupdateproto where the pe...

7.8CVSS6AI score0.00133EPSS
Exploits0References3
CVE
CVE
added 2026/06/24 4:29 p.m.16 views

CVE-2026-53033

CVE-2026-53033 affects the Linux kernel’s BPF sockmap path, causing a race in unix_stream_bpf_update_proto() that can yield a Use-After-Free when a BPF iterator updates a sockmap during a TCP state transition. The issue is resolved by taking the state lock for AF_UNIX iterations to keep the unix ...

7.8CVSS5.7AI score0.00133EPSS
Exploits0References9
NVD
NVD
added 2026/04/22 2:16 p.m.4 views

CVE-2026-31495

In the Linux kernel, the following vulnerability has been resolved: netfilter: ctnetlink: use netlink policy range checks Replace manual range and mask validations with netlink policy annotations in ctnetlink code paths, so that the netlink core rejects invalid values early and can generate extac...

5.5CVSS0.00123EPSS
Exploits0References8
Cvelist
Cvelist
added 2026/04/22 1:54 p.m.33 views

CVE-2026-31495 netfilter: ctnetlink: use netlink policy range checks

In the Linux kernel, the following vulnerability has been resolved: netfilter: ctnetlink: use netlink policy range checks Replace manual range and mask validations with netlink policy annotations in ctnetlink code paths, so that the netlink core rejects invalid values early and can generate extac...

0.00123EPSS
Exploits0References8
CVE
CVE
added 2026/04/22 1:54 p.m.26 views

CVE-2026-31495

The CVE-2026-31495 entry concerns the Linux kernel’s netfilter ctnetlink path. The issue stems from missing netlink policy range checks, allowing invalid values to slip through due to manual range validation in CTA_PROTOINFO_TCP_STATE, WSCALE, and related flags. The documented impact notes that c...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References8Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.9 views

PT-2026-34400

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the netfilter ctnetlink component where manual range and mask validations are used instead of netlink policy annotations. This can lead to undefined behavior when the...

5.5CVSS5.8AI score0.00123EPSS
Exploits0
OSV
OSV
added 2025/10/09 10:15 a.m.12 views

UBUNTU-CVE-2025-39955

In the Linux kernel, the following vulnerability has been resolved: tcp: Clear tcpsksk-fastopenrsk in tcpdisconnect. syzbot reported the splat below where a socket had tcpsksk-fastopenrsk in the TCPESTABLISHED state. 0 syzbot reused the server-side TCP Fast Open socket as a new client before the...

7.8CVSS6.5AI score0.00144EPSS
Exploits0References34
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2017-3891

Malware in sbrugna...

7.5CVSS7.6AI score0.01589EPSS
Exploits0References3
OSV
OSV
added 2025/06/18 9:33 a.m.17 views

CVE-2025-38035 nvmet-tcp: don't restore null sk_state_change

In the Linux kernel, the following vulnerability has been resolved: nvmet-tcp: don't restore null skstatechange queue-statechange is set as part of nvmettcpsetqueuesock, but if the TCP connection isn't established when nvmettcpsetqueuesock is called then queue-statechange isn't set and...

5.5CVSS5.9AI score0.00182EPSS
Exploits0References13
SUSE CVE
SUSE CVE
added 2023/02/15 6:6 a.m.4 views

SUSE CVE-2008-4609

The TCP implementation in 1 Linux, 2 platforms based on BSD Unix, 3 Microsoft Windows, 4 Cisco products, and probably other operating systems allows remote attackers to cause a denial of service connection queue exhaustion via multiple vectors that manipulate information in the TCP state table, a...

7.1CVSS8.2AI score0.32123EPSS
Exploits1References5
CNVD
CNVD
added 2017/11/21 12:0 a.m.5 views

Cisco RF Gateway 1 Denial of Service Vulnerability

Cisco RF Gateway 1 devices is a gateway device from Cisco USA.TCP state machine is one of the TCP state machines. A denial of service vulnerability exists in the TCP state machine in Cisco RF Gateway 1 devices. A remote attacker could exploit this vulnerability by establishing a large number of T...

7.5CVSS6.8AI score0.01589EPSS
Exploits0References1
NVD
NVD
added 2017/11/16 7:29 a.m.18 views

CVE-2017-12318

A vulnerability in the TCP state machine of Cisco RF Gateway 1 devices could allow an unauthenticated, remote attacker to prevent an affected device from delivering switched digital video SDV or video on demand VoD streams, resulting in a denial of service DoS condition. The vulnerability is due ...

7.5CVSS7.6AI score0.01589EPSS
Exploits0References2
Prion
Prion
added 2017/11/16 7:29 a.m.11 views

Race condition

A vulnerability in the TCP state machine of Cisco RF Gateway 1 devices could allow an unauthenticated, remote attacker to prevent an affected device from delivering switched digital video SDV or video on demand VoD streams, resulting in a denial of service DoS condition. The vulnerability is due ...

5CVSS7.5AI score0.01589EPSS
Exploits0References2
Cvelist
Cvelist
added 2017/11/16 7:0 a.m.20 views

CVE-2017-12318

A vulnerability in the TCP state machine of Cisco RF Gateway 1 devices could allow an unauthenticated, remote attacker to prevent an affected device from delivering switched digital video SDV or video on demand VoD streams, resulting in a denial of service DoS condition. The vulnerability is due ...

7.6AI score0.01589EPSS
Exploits0References2
Prion
Prion
added 2009/09/08 11:30 p.m.20 views

Code injection

Unspecified vulnerability in Cisco NX-OS before 4.01aN21, when running on Nexus 5000 platforms, allows remote attackers to cause a denial of service crash via an unspecified "sequence of TCP packets" related to "TCP State manipulation," possibly related to separate attacks against CVE-2008-4609...

7.8CVSS6.8AI score0.32123EPSS
Exploits3References2Affected Software1
CVE
CVE
added 2009/09/08 11:0 p.m.92 views

CVE-2009-0627

The CVE-2009-0627 entry concerns Cisco NX-OS on Nexus 5000 platforms (before 4.0(1a)N2(1)). It describes an unspecified vulnerability that lets remote attackers crash the device via a sequence of TCP packets related to TCP state manipulation, possibly linked to CVE-2008-4609 (sockstress). The con...

7.8CVSS8.9AI score0.02123EPSS
Exploits2References2Affected Software3
Cvelist
Cvelist
added 2009/09/08 11:0 p.m.33 views

CVE-2009-0627

Unspecified vulnerability in Cisco NX-OS before 4.01aN21, when running on Nexus 5000 platforms, allows remote attackers to cause a denial of service crash via an unspecified "sequence of TCP packets" related to "TCP State manipulation," possibly related to separate attacks against CVE-2008-4609...

6.4AI score0.02123EPSS
Exploits2References2
Cisco
Cisco
added 2009/09/08 12:0 a.m.128 views

TCP State Manipulation Denial of Service Vulnerabilities in Multiple Cisco Products

THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES TH...

7.8CVSS9.3AI score0.32123EPSS
Exploits1References1
Check Point Advisories
Check Point Advisories
added 2009/04/14 12:0 a.m.49 views

Workaround for Microsoft ISA Server TCP State Limited Denial of Service Vulnerability (MS09-016)

A denial of service vulnerability has been reported in Microsoft Internet Security and Acceleration ISA Server. ISA Server, originating as Microsoft Proxy Server, is a Firewall & Security product that provides Application-Layer Firewalling, acts as a VPN endpoint, and provides Internet Access for...

5CVSS6.1AI score0.78496EPSS
Exploits1
Rows per page
Query Builder