227 matches found
CVE-2025-40779
CVE-2025-40779 affects Kea DHCP server: when a DHCPv4 client unicast request includes specific options and Kea cannot select a subnet, kea-dhcp4 aborts with an assertion. Affected versions are Kea 2.7.1–2.7.9, 3.0.0, and 3.1.0. Public advisories and Nessus plugins indicate fixes in Kea 3.0.1 (and...
CVE-2025-40779
If a DHCPv4 client sends a request with some specific options, and Kea fails to find an appropriate subnet for the client, the kea-dhcp4 process will abort with an assertion failure. This happens only if the client request is unicast directly to Kea; broadcast messages do not cause the problem...
PT-2025-36000
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.10.240 Description A flaw exists in the Linux kernel's netlink subsystem, specifically within the netlink unicast function. The netlink attachskb function, used for socket memory allocation checks, can enter an...
DEBIAN-CVE-2025-38343
In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7996: drop fragments with multicast or broadcast RA IEEE 802.11 fragmentation can only be applied to unicast frames. Therefore, drop fragments with multicast or broadcast RA. This patch addresses vulnerabilities suc...
UBUNTU-CVE-2025-38343
In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7996: drop fragments with multicast or broadcast RA IEEE 802.11 fragmentation can only be applied to unicast frames. Therefore, drop fragments with multicast or broadcast RA. This patch addresses vulnerabilities suc...
CVE-2002-2316
Cisco Catalyst 4000 series switches running CatOS 5.5.5, 6.3.5, and 7.1.2 do not always learn MAC addresses from a single initial packet, which causes unicast traffic to be broadcast across the switch and allows remote attackers to obtain sensitive network information by sniffing...
PT-2025-29065
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains an issue related to IEEE 802.11 fragmentation. Specifically, fragmentation should only be applied to unicast frames. The vulnerability occurs because fragment...
CVE-2025-20162
CVE-2025-20162 affects Cisco IOS XE Software DHCP Snooping. A vulnerability due to improper handling of DHCP REQUEST packets can let an unauthenticated remote attacker wedge an interface queue, causing a DoS. Exploitation can use unicast or broadcast DHCP packets on a VLAN without DHCP snooping e...
CVE-2023-53079
In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix steering rules cleanup vport's mc, uc and multicast rules are not deleted in teardown path when EEH happens. Since the vport's promisc settingsuc, mc and all in firmware are reset after EEH, mlx5 driver will try to...
DEBIAN-CVE-2022-49876
In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: fix general-protection-fault in ieee80211subifstartxmit When device is running and the interface status is changed, the gpf issue is triggered. The problem triggering process is as follows: Thread A: Thread B...
UBUNTU-CVE-2025-22060
In the Linux kernel, the following vulnerability has been resolved: net: mvpp2: Prevent parser TCAM memory corruption Protect the parser TCAM/SRAM memory, and the cached shadow SRAM information, from concurrent modifications. Both the TCAM and SRAM tables are indirectly accessed by configuring an...
PT-2025-16700
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability in the Linux kernel has been resolved, specifically in the mvpp2 module, which handles network packet processing. The issue involves the corruption of parser TCAM Ternary...
Cisco IOS XR Software for ASR 9000 Series Routers IPv4 Unicast Packets Denial of Service Vulnerability
A vulnerability in the IPv4 access control list ACL feature and quality of service QoS policy feature of Cisco IOS XR Software for Cisco ASR 9000 Series Aggregation Services Routers, ASR 9902 Compact High-Performance Routers, and ASR 9903 Compact High-Performance Routers could allow an...
PT-2026-2888
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw in the mac80211 component related to the handling of Beacon frames. Specifically, the system does not properly discard Beacon frames sent to a...
PT-2025-34937
Name of the Vulnerable Software and Affected Versions: Kea versions 2.7.1 through 2.7.9 Kea version 3.0.0 Kea version 3.1.0 Description: If a DHCPv4 client sends a request with specific options and Kea fails to find an appropriate subnet for the client, the kea-dhcp4 process will abort with an...
CLSA-2024-1730800739 glib2: Fix of CVE-2024-34397
CVE-2024-34397: Fix GDBus signal subscriptions from unicast spoofing...
CVE-2024-20464
A vulnerability in the Protocol Independent Multicast PIM feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to insufficient validation of received IPv4 PIMv2 packets. An...
CVE-2024-42483 ESP-NOW Replay Attacks Vulnerability
ESP-NOW Component provides a connectionless Wi-Fi communication protocol. An replay attacks vulnerability was discovered in the implementation of the ESP-NOW because the caches is not differentiated by message types, it is a single, shared resource for all kinds of messages, whether they are...
Exploit for Integer Underflow (Wrap or Wraparound) in Microsoft
This is a rather flaky poc for CVE-2024-38063https://msrc.m...
PT-2024-5773 · Openbmc · Openbmc
Name of the Vulnerable Software and Affected Versions: OpenBMC versions affected versions not specified Description: The issue is related to a memory overflow problem in the slpd-lite daemon, which is a unicast SLP UDP server. This can be exploited by sending specially crafted SLP packets to the...