634 matches found
MAL-2026-285 Malicious code in focus-trap-v2 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 54f9667b65219caefb7d526b0ab3787b23c76689e9858e281ce10c5a744ffd10 The package focus-trap-v2 was found to contain malicious code. Source: ghsa-malware e80cecdd51ca03a6a75b249c73d4a4efda03c84e9bdc4a1ba3b2b66cbfd8c82d...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001591)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001591 advisory. A flaw was found in the Linux kernel before version 4.12 in the way the KVM module processed the trap flagTF bit in EFLAGS during emulation of the syscall instructio...
net-snmp: buffer overflow via a specially crafted packet can cause a crash in snmptrapd
A flaw was found in net-snmp. A remote attacker can trigger a buffer overflow in the snmptrapd daemon by sending a specially crafted SNMP packet, causing the daemon to crash and resulting in a denial of service...
ALSA-2026:0668 Important: net-snmp security update
The net-snmp packages provide various libraries and tools for the Simple Network Management Protocol SNMP, including an SNMP library, an extensible agent, tools for requesting or setting information from SNMP agents, tools for generating and handling SNMP traps, a version of the netstat command...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002799)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002799 advisory. A flaw was found in the Linux kernel before version 4.12 in the way the KVM module processed the trap flagTF bit in EFLAGS during emulation of the syscall instructio...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002573)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002573 advisory. A flaw was found in the Linux kernel before version 4.12 in the way the KVM module processed the trap flagTF bit in EFLAGS during emulation of the syscall instructio...
TencentOS Server 4: net-snmp (TSSA-2026:0003)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2026:0003 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...
CVE-2022-31458
RTX TRAP v1.0 was discovered to be vulnerable to host header poisoning...
CVE-2022-31457
RTX TRAP v1.0 allows attackers to perform a directory traversal via a crafted request sent to the endpoint /data/...
ThreatsDay Bulletin: RustFS Flaw, Iranian Ops, WebUI RCE, Cloud Leaks, and 12 More Stories
The internet never stays quiet. Every week, new hacks, scams, and security problems show up somewhere. This week's stories show how fast attackers change their tricks, how small mistakes turn into big risks, and how the same old tools keep finding new ways to break in. Read on to catch up before...
Exploit for CVE-2025-68615
CVE-2025-68615 Net-SNMP snmptrapd Stack Buffer Overflow...
Net-SNMP snmptrapd crash
...
CVE-2025-68615
A flaw was found in net-snmp. A remote attacker can trigger a buffer overflow in the snmptrapd daemon by sending a specially crafted SNMP packet, causing the daemon to crash and resulting in a denial of service. Mitigation Make sure to restrict network traffic to the snmptrapd daemon using firewa...
Integer Overflow or Wraparound
Overview Affected versions of this package are vulnerable to Integer Overflow or Wraparound in the snmptrapd daemon. An attacker can execute arbitrary code or cause a crash by sending a specially crafted packet. Remediation A fix was pushed into the master branch but not yet published. References...
AZL-73175 CVE-2025-68615 affecting package net-snmp for versions less than 5.9.5.2-1
net-snmp is a SNMP application library, tools and daemon. Prior to versions 5.9.5 and 5.10.pre2, a specially crafted packet to an net-snmp snmptrapd daemon can cause a buffer overflow and the daemon to crash. This issue has been patched in versions 5.9.5 and 5.10.pre2...
CVE-2025-68615
net-snmp snmptrapd is affected by CVE-2025-68615 via a buffer overflow triggered by a specially crafted trap packet, crashing the daemon. Affected versions are before 5.9.5 and 5.10.pre2; patch versions are 5.9.5 and 5.10.pre2. Remediation: upgrade to those patched releases (or newer).
PT-2025-52727
Name of the Vulnerable Software and Affected Versions net-snmp versions prior to 5.9.5 net-snmp version 5.10.pre2 Description net-snmp is a SNMP application library, tools and daemon. A specially crafted packet sent to the snmptrapd daemon can cause a buffer overflow, potentially leading to a...
NTPsec < 0.9.5 Multiple Vulnerabilities
NTPsec is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:ntpsec:ntpsec"; ifdescription...
Characterizing Large-Scale Adversarial Activities through Large-Scale Honey-Nets
The increasing sophistication of cyber threats demands novel approaches to characterize adversarial strategies, particularly those targeting critical infrastructure and IoT ecosystems. This paper presents a longitudinal analysis of attacker behavior using HoneyTrap, an adaptive honeypot framework...
CVE-2025-13373
Advantech iView versions 5.7.05.7057 and prior do not properly sanitize SNMP v1 trap Port 162 requests, which could allow an attacker to inject SQL commands...