Lucene search
K

634 matches found

OSV
OSV
added 2026/01/16 12:10 a.m.3 views

MAL-2026-285 Malicious code in focus-trap-v2 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 54f9667b65219caefb7d526b0ab3787b23c76689e9858e281ce10c5a744ffd10 The package focus-trap-v2 was found to contain malicious code. Source: ghsa-malware e80cecdd51ca03a6a75b249c73d4a4efda03c84e9bdc4a1ba3b2b66cbfd8c82d...

6.8AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.5 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001591)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001591 advisory. A flaw was found in the Linux kernel before version 4.12 in the way the KVM module processed the trap flagTF bit in EFLAGS during emulation of the syscall instructio...

7.8CVSS6.4AI score0.00698EPSS
Exploits0References15
RedHat Linux
RedHat Linux
added 2026/01/15 1:19 p.m.8 views

net-snmp: buffer overflow via a specially crafted packet can cause a crash in snmptrapd

A flaw was found in net-snmp. A remote attacker can trigger a buffer overflow in the snmptrapd daemon by sending a specially crafted SNMP packet, causing the daemon to crash and resulting in a denial of service...

9.8CVSS6.1AI score0.4269EPSS
Exploits2References5
OSV
OSV
added 2026/01/15 12:0 a.m.4 views

ALSA-2026:0668 Important: net-snmp security update

The net-snmp packages provide various libraries and tools for the Simple Network Management Protocol SNMP, including an SNMP library, an extensible agent, tools for requesting or setting information from SNMP agents, tools for generating and handling SNMP traps, a version of the netstat command...

9.8CVSS5.9AI score0.4269EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.3 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002799)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002799 advisory. A flaw was found in the Linux kernel before version 4.12 in the way the KVM module processed the trap flagTF bit in EFLAGS during emulation of the syscall instructio...

7.8CVSS6.4AI score0.00698EPSS
Exploits0References15
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.2 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002573)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002573 advisory. A flaw was found in the Linux kernel before version 4.12 in the way the KVM module processed the trap flagTF bit in EFLAGS during emulation of the syscall instructio...

7.8CVSS6.4AI score0.00698EPSS
Exploits0References15
Tenable Nessus
Tenable Nessus
added 2026/01/12 12:0 a.m.7 views

TencentOS Server 4: net-snmp (TSSA-2026:0003)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2026:0003 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

9.8CVSS6.3AI score0.4269EPSS
Exploits2References2
RedhatCVE
RedhatCVE
added 2026/01/09 10:48 a.m.10 views

CVE-2022-31458

RTX TRAP v1.0 was discovered to be vulnerable to host header poisoning...

6.1CVSS7.2AI score0.00444EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:46 a.m.8 views

CVE-2022-31457

RTX TRAP v1.0 allows attackers to perform a directory traversal via a crafted request sent to the endpoint /data/...

7.5CVSS6.8AI score0.00916EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2026/01/08 12:49 p.m.9 views

ThreatsDay Bulletin: RustFS Flaw, Iranian Ops, WebUI RCE, Cloud Leaks, and 12 More Stories

The internet never stays quiet. Every week, new hacks, scams, and security problems show up somewhere. This week's stories show how fast attackers change their tricks, how small mistakes turn into big risks, and how the same old tools keep finding new ways to break in. Read on to catch up before...

9.8CVSS9.9AI score0.99813EPSS
Exploits29
GithubExploit
GithubExploit
added 2025/12/29 3:59 p.m.465 views

Exploit for CVE-2025-68615

CVE-2025-68615 Net-SNMP snmptrapd Stack Buffer Overflow...

9.8CVSS7.5AI score0.4269EPSS
Exploits2
Microsoft CVE
Microsoft CVE
added 2025/12/24 9:2 a.m.18 views

Net-SNMP snmptrapd crash

...

9.8CVSS7AI score0.4269EPSS
Exploits2
RedhatCVE
RedhatCVE
added 2025/12/23 8:42 p.m.4 views

CVE-2025-68615

A flaw was found in net-snmp. A remote attacker can trigger a buffer overflow in the snmptrapd daemon by sending a specially crafted SNMP packet, causing the daemon to crash and resulting in a denial of service. Mitigation Make sure to restrict network traffic to the snmptrapd daemon using firewa...

9.8CVSS6.6AI score0.4269EPSS
Exploits2References4
Snyk
Snyk
added 2025/12/23 12:40 a.m.3 views

Integer Overflow or Wraparound

Overview Affected versions of this package are vulnerable to Integer Overflow or Wraparound in the snmptrapd daemon. An attacker can execute arbitrary code or cause a crash by sending a specially crafted packet. Remediation A fix was pushed into the master branch but not yet published. References...

9.8CVSS7.2AI score0.4269EPSS
Exploits2References2
OSV
OSV
added 2025/12/23 12:15 a.m.6 views

AZL-73175 CVE-2025-68615 affecting package net-snmp for versions less than 5.9.5.2-1

net-snmp is a SNMP application library, tools and daemon. Prior to versions 5.9.5 and 5.10.pre2, a specially crafted packet to an net-snmp snmptrapd daemon can cause a buffer overflow and the daemon to crash. This issue has been patched in versions 5.9.5 and 5.10.pre2...

9.8CVSS6.2AI score0.4269EPSS
Exploits2References1
CVE
CVE
added 2025/12/22 11:55 p.m.221 views

CVE-2025-68615

net-snmp snmptrapd is affected by CVE-2025-68615 via a buffer overflow triggered by a specially crafted trap packet, crashing the daemon. Affected versions are before 5.9.5 and 5.10.pre2; patch versions are 5.9.5 and 5.10.pre2. Remediation: upgrade to those patched releases (or newer).

9.8CVSS6.9AI score0.4269EPSS
Exploits2References5Affected Software1
Positive Technologies
Positive Technologies
added 2025/12/22 12:0 a.m.6 views

PT-2025-52727

Name of the Vulnerable Software and Affected Versions net-snmp versions prior to 5.9.5 net-snmp version 5.10.pre2 Description net-snmp is a SNMP application library, tools and daemon. A specially crafted packet sent to the snmptrapd daemon can cause a buffer overflow, potentially leading to a...

10CVSS7.9AI score0.4269EPSS
Exploits2References105
OpenVAS
OpenVAS
added 2025/12/08 12:0 a.m.3 views

NTPsec < 0.9.5 Multiple Vulnerabilities

NTPsec is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:ntpsec:ntpsec"; ifdescription...

7.5CVSS7.8AI score0.52935EPSS
Exploits9References2
Packet Storm News
Packet Storm News
added 2025/12/06 12:0 a.m.2 views

Characterizing Large-Scale Adversarial Activities through Large-Scale Honey-Nets

The increasing sophistication of cyber threats demands novel approaches to characterize adversarial strategies, particularly those targeting critical infrastructure and IoT ecosystems. This paper presents a longitudinal analysis of attacker behavior using HoneyTrap, an adaptive honeypot framework...

7AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/12/05 11:22 p.m.7 views

CVE-2025-13373

Advantech iView versions 5.7.05.7057 and prior do not properly sanitize SNMP v1 trap Port 162 requests, which could allow an attacker to inject SQL commands...

8.7CVSS7.4AI score0.0038EPSS
Exploits0References1
Rows per page
Query Builder