Lucene search
K

17 matches found

Debian CVE
Debian CVE
added 2026/06/24 4:37 a.m.6 views

CVE-2026-9539

An out-of-bounds heap read and integer underflow in the TCP urgent data handling sosendoob in freedesktop.org libslirp version before v4.9.2 on hypervisor host environments e.g., QEMU allows a privileged guest VM attacker root or CAPNETRAW to leak gigabytes of sensitive host-process heap memory v...

6.5CVSS5.9AI score0.00106EPSS
Exploits0
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in open-iscsi

A issue was discovered in uIP 1.0, as used in Contiki 3.0 and other products. When the Urgent flag is set in a TCP packet, and the stack is configured to ignore the urgent data, the stack attempts to use the value of the Urgent pointer bytes to separate the Urgent data from the normal data. It...

8.2CVSS7.8AI score0.02751EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-52827

Malicious code in bioql PyPI...

7.5CVSS6.3AI score0.00524EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/07/28 11:33 p.m.4 views

SUSE CVE-2024-55629

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.8, TCP streams with TCP urgent data out of band data can lead to Suricata analyzing data differently than the applications at the TCP endpoints, leading to possible...

7.5CVSS6.8AI score0.00524EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 2025/06/10 12:0 a.m.7 views

VulnCheck KEV: CVE-2019-12263

Wind River VxWorks 6.9.4 and vx7 has a Buffer Overflow in the TCP component issue 4 of 4. There is an IPNET security vulnerability: TCP Urgent Pointer state confusion due to race condition...

8.1CVSS5.8AI score0.03189EPSS
Exploits0References1
NVD
NVD
added 2025/01/06 6:15 p.m.41 views

CVE-2024-55629

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.8, TCP streams with TCP urgent data out of band data can lead to Suricata analyzing data differently than the applications at the TCP endpoints, leading to possible...

7.5CVSS0.00524EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/01/06 6:4 p.m.17 views

CVE-2024-55629 Suricata generic detection bypass using TCP urgent support

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.8, TCP streams with TCP urgent data out of band data can lead to Suricata analyzing data differently than the applications at the TCP endpoints, leading to possible...

7.5CVSS6.8AI score0.00524EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/01/06 6:4 p.m.44 views

CVE-2024-55629 Suricata generic detection bypass using TCP urgent support

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.8, TCP streams with TCP urgent data out of band data can lead to Suricata analyzing data differently than the applications at the TCP endpoints, leading to possible...

7.5CVSS0.00524EPSS
Exploits0References4
OSV
OSV
added 2025/01/06 6:4 p.m.19 views

CVE-2024-55629 Suricata generic detection bypass using TCP urgent support

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.8, TCP streams with TCP urgent data out of band data can lead to Suricata analyzing data differently than the applications at the TCP endpoints, leading to possible...

7.5CVSS6.4AI score0.00524EPSS
Exploits0References6
CVE
CVE
added 2025/01/06 6:4 p.m.87 views

CVE-2024-55629

CVE-2024-55629 affects Suricata prior to 7.0.8, where TCP urgent data handling could cause data to be analyzed differently than at endpoints, enabling evasions. In IPS mode, administrator can drop urgent-data packets via rules (e.g., tcp.flags:U*). The issue is addressed in Suricata 7.0.8 and lat...

7.5CVSS6.8AI score0.00524EPSS
Exploits0References4Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.31 views

RHEL 6 : open-iscsi (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - Open-iSCSI: invalid handing of the TCP urgent data pointer CVE-2020-17437 - An issue was discovered in...

8.3AI score0.03912EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.27 views

RHEL 5 : open-iscsi (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - Open-iSCSI: invalid handing of the TCP urgent data pointer CVE-2020-17437 - An issue was discovered in...

8.1AI score0.03912EPSS
Exploits0References3
NVD
NVD
added 2021/08/19 11:15 a.m.18 views

CVE-2021-31400

An issue was discovered in tcppulloutofband in tcpin.c in HCC embedded InterNiche 4.0.1. The TCP out-of-band urgent-data processing function invokes a panic function if the pointer to the end of the out-of-band data points outside of the TCP segment's data. If the panic function hadn't a trap...

7.5CVSS0.01493EPSS
Exploits0References2
OSV
OSV
added 2019/08/09 9:15 p.m.2 views

CVE-2019-12260

Wind River VxWorks 6.9 and vx7 has a Buffer Overflow in the TCP component issue 2 of 4. This is an IPNET security vulnerability: TCP Urgent Pointer state confusion caused by a malformed TCP AO option...

9.8CVSS7.5AI score0.22844EPSS
Exploits0References11
NVD
NVD
added 2019/08/09 8:15 p.m.30 views

CVE-2019-12255

Wind River VxWorks has a Buffer Overflow in the TCP component issue 1 of 4. This is a IPNET security vulnerability: TCP Urgent Pointer = 0 that leads to an integer underflow...

9.8CVSS9.6AI score0.7525EPSS
Exploits5References11
Prion
Prion
added 2019/08/09 7:15 p.m.26 views

Race condition

Wind River VxWorks 6.9.4 and vx7 has a Buffer Overflow in the TCP component issue 4 of 4. There is an IPNET security vulnerability: TCP Urgent Pointer state confusion due to race condition...

6.8CVSS8.8AI score0.03189EPSS
Exploits0References9Affected Software11
OSV
OSV
added 2017/04/25 1:26 a.m.5 views

USN-3265-1 linux, linux-aws, linux-gke, linux-raspi2, linux-snapdragon vulnerabilities

It was discovered that a use-after-free flaw existed in the filesystem encryption subsystem in the Linux kernel. A local attacker could use this to cause a denial of service system crash. CVE-2017-7374 Andrey Konovalov discovered an out-of-bounds access in the IPv6 Generic Routing Encapsulation G...

9.8CVSS7AI score0.04953EPSS
Exploits0References11
Rows per page
Query Builder