EUVD-2025-199886

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Prior to versions 1.16.17, 1.17.10, and 1.18.4, CiliumNetworkPolicys which use egress.toGroups.aws.securityGroupsIds to reference AWS security group IDs that do not exist or are not attached to any network...

EUVD-2019-16188

Malware in sbrugna...

EUVD-2020-27072

Malware in sbrugna...

EUVD-2020-7909

Malware in sbrugna...

EUVD-2024-42513

Malicious code in bioql PyPI...

EUVD-2022-30697

Malicious code in bioql PyPI...

EUVD-2024-0762

Malicious code in bioql PyPI...

EUVD-2024-1011

Malicious code in bioql PyPI...

EUVD-2025-10517

Malicious code in bioql PyPI...

EUVD-2024-30454

Malicious code in bioql PyPI...

CVE-2020-5872

On BIG-IP 14.1.0-14.1.2.3, 14.0.0-14.0.1, 13.1.0-13.1.3.1, and 12.1.0-12.1.4.1, when processing TLS traffic with hardware cryptographic acceleration enabled on platforms with Intel QAT hardware, the Traffic Management Microkernel TMM may stop responding and cause a failover event...

CVE-2025-30660 Junos OS: MX Series: Decapsulation of specific GRE packets leads to PFE reset

An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine pfe of Juniper Networks Junos OS on MX Series allows an unauthenticated, network-based attacker to cause a Denial-of-Service DoS.When processing a high rate of specific GRE traffic destined to th...

BIT-CILIUM-OPERATOR-2025-30162 East-west traffic not subject to egress policy enforcement for requests via Gateway API load balancers

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. For Cilium users who use Gateway API for Ingress for some services and use LB-IPAM or BGP for LB Service implementation and use network policies to block egress traffic from workloads in a namespace to...

CVE-2025-30334

In OpenBSD 7.6 before errata 006 and OpenBSD 7.5 before errata 015, traffic sent over wg4 could result in kernel crash...

CVE-2025-30334

CVE-2025-30334 affects OpenBSD 7.6 before errata 006 and OpenBSD 7.5 before errata 015. The issue is triggered by traffic sent over wg(4), which can cause a kernel crash. Public details in the CVE entry and patches indicate mitigations via OpenBSD patches 006_wg.patch.sig and 015_wg.patch.sig, ad...

CVE-2022-22235

An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS on SRX Series allows an unauthenticated, network-based, attacker to cause Denial of Service DoS. A PFE crash will happen when a GPRS Tunnel Protocol GTP packet is...

Code injection

On F5 BIG-IP 16.1.x versions prior to 16.1.2.2, 15.1.x versions prior to 15.1.5.1, 14.1.x versions prior to 14.1.4.6, and 13.1.x versions prior to 13.1.5, when an Active mode-enabled FTP profile is configured on a virtual server, undisclosed traffic can cause the virtual server to stop processing...

ICA traffic fail with asymmetric routing in SDWAN

ICA traffic fail with asymmetric routing. Ping is successful. In SDWANDiagnostics.log in STS, you can see packets drops with reason -“Not valid for current connection state"...

SUSE-SU-2017:0778-1 Security update for Linux Kernel Live Patch 2 for SLE 12 SP2

This update for the Linux Kernel 4.4.21-84 fixes several issues. The following security bug was fixed: - CVE-2017-5970: The ipv4pktinfoprepare function in net/ipv4/ipsockglue.c in the Linux kernel allowed attackers to cause a denial of service system crash via 1 an application that made crafted...