SUSE CVE-2019-5152

An exploitable information disclosure vulnerability exists in the network packet handling functionality of Shadowsocks-libev 3.3.2. When utilizing a Stream Cipher, a specially crafted set of network packets can cause an outbound connection from the server, resulting in information disclosure. An...

Denial of Service Vulnerability in Hologic LE5109L PLC (CNVD-2018-18910)

HOLLIS Group is a professional automation company integrating R&D, production, sales and technical service. A denial of service vulnerability exists in the HELISE LE5109L PLC, which can be exploited by an attacker to cause a denial of service in the PLC by unauthorized construction of specific...

Denial of Service Vulnerability in DCCE MAC1100 PLC (CNVD-2018-19111)

MAC1100 PLC is a programmable logic controller manufactured by Dalian Polytechnic Computer Control Engineering Co. A denial of service vulnerability exists in the DCCE MAC1100 PLC, which can be exploited by an attacker to cause a denial of service to the PLC via unauthorized construction of...

Haiwell C10S0R(-e) PLC has an Override Access Vulnerability

C10S0R-e PLC is a product in the programmable logic controller PLC series of Xiamen Haiwei Technology Co. The Haiwell C10S0R-e PLC suffers from an over-the-horizon access vulnerability that can be exploited by an attacker to change the IP of the PLC through unauthorized construction of specific...

CVE-2017-14463

An exploitable access control vulnerability exists in the data, program, and function file permissions functionality of Allen Bradley Micrologix 1400 Series B FRN 21.2 and before. A specially crafted packet can cause a read or write operation resulting in disclosure of sensitive information,...

CVE-2010-0294

chronyd in Chrony before 1.23.1, and possibly 1.24-pre1, generates a syslog message for each unauthorized cmdmon packet, which allows remote attackers to cause a denial of service disk consumption via a large number of invalid packets...

DEBIAN-CVE-2010-0294

chronyd in Chrony before 1.23.1, and possibly 1.24-pre1, generates a syslog message for each unauthorized cmdmon packet, which allows remote attackers to cause a denial of service disk consumption via a large number of invalid packets...

Cisco IOS established Keyword ACL Bypass (CSCdi34061)

The remote device seems to be vulnerable to a flaw in IOS when the keyword 'established' is being used in the ACLs. This bug can, under very specific circumstances and only with certain IP host implementations, allow unauthorized packets to circumvent a filtering router. This vulnerability is...

PT-1999-1346 · Cisco · Cisco Gigabit Switch

Name of the Vulnerable Software and Affected Versions: Cisco Gigabit Switch routers affected versions not specified Description: The issue is related to the improper handling of the established keyword in an access list, allowing remote attackers to forward unauthorized packets. Recommendations: ...