CVE-2026-20020

A vulnerability in the OSPF protocol of Cisco Secure Firewall ASA Software and Cisco Secure FTD Software could allow an unauthenticated, adjacent attacker to cause an affected device to reload unexpectedly, resulting in a DoS condition. If OSPF authentication is enabled, the attacker must know th...

CVE-2026-20020

A vulnerability in the OSPF protocol of Cisco Secure Firewall ASA Software and Cisco Secure FTD Software could allow an unauthenticated, adjacent attacker to cause an affected device to reload unexpectedly, resulting in a DoS condition. If OSPF authentication is enabled, the attacker must know th...

Ubuntu 22.04 LTS / 24.04 LTS / 25.10 : FRR vulnerabilities (USN-8046-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS / 25.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-8046-1 advisory. It was discovered that FRR incorrectly handled certain malformed OSPF and update packets. A remote attacker could possibly use these...

USN-8046-1: FRR vulnerabilities

It was discovered that FRR incorrectly handled certain malformed OSPF and update packets. A remote attacker could possibly use these issues to cause FRR to crash, resulting in a denial of service...

USN-8046-1 frr vulnerabilities

It was discovered that FRR incorrectly handled certain malformed OSPF and update packets. A remote attacker could possibly use these issues to cause FRR to crash, resulting in a denial of service...

CVE-2026-23884 Heap-use-after-free in gdi_set_bounds

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, offscreen bitmap deletion leaves gdi-drawing pointing to freed memory, causing UAF when related update packets arrive. A malicious server can trigger a client‑side use after free, causing a crash DoS and...

FRRouting/frr from v2.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the opaque_info_detail function at ospf_opaque.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted LS Update packet.

...

AZL-69446 CVE-2025-61107 affecting package frr for versions less than 8.5.5-5

FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the showvtyextprefprefsid function at ospfext.c. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted LSA Update packet...

CVE-2025-61099

CVE-2025-61099 (FRRouting/frr) has a NULL pointer dereference in ospf_opaque.c (opaque_info_detail) leading to DoS when processing crafted LSAs/OSPF packets. Affected FRR versions include v2.0 through v10.4.1. Multiple connected advisories confirm patches are available: certain vendor packages li...

EUVD-2021-2828

Malicious code in bioql PyPI...

Juniper Networks Junos OS和Juniper Networks Junos OS Evolved 安全漏洞

Juniper Networks Junos OS and Juniper Networks Junos OS Evolved are both products of Juniper Networks, Inc.Juniper Networks Junos OS is a network operating system dedicated to the company's hardware devices. The operating system provides a secure programming interface and the Junos SDK. Juniper...

PT-2025-29247 · Juniper Networks · Junos Evolved +1

Name of the Vulnerable Software and Affected Versions: Juniper Networks Junos OS versions prior to 21.2R3-S9 Juniper Networks Junos OS versions 21.4 through 21.4R3-S11 Juniper Networks Junos OS versions 22.2 through 22.2R3-S7 Juniper Networks Junos OS versions 22.4 through 22.4R3-S7 Juniper...

Juniper Junos OS Vulnerability (JSA100059)

The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA100059 advisory. - An Expected Behavior Violation vulnerability in the routing protocol daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated adjacent...

PT-2024-6032 · Frrouting +5 · Frrouting +5

Name of the Vulnerable Software and Affected Versions: FRRouting versions through 9.1 Description: The issue is related to improper input validation, allowing a remote attacker to cause a denial of service by exploiting the vulnerability. Specifically, an attacker can use a malformed Prefix SID...

The vulnerability of the JunOS Evolved operating system, related to access to an uninitialized pointer, allows a hacker to trigger a service failure.

The vulnerability of the JunOS Evolved operating system is related to access to an uninitialized pointer. Exploiting this vulnerability could allow a malicious actor to trigger a service failure using specially crafted BGP update packets...

Design/Logic Flaw

In Juniper Networks Junos OS Evolved an attacker sending certain valid BGP update packets may cause Junos OS Evolved to access an uninitialized pointer causing RPD to core leading to a Denial of Service DoS. Continued receipt of these types of valid BGP update packets will cause an extended Denia...

The vulnerability of the ZingBox Inspector, a network traffic handler, arises due to the failure to take measures to neutralize special elements. This vulnerability allows a violator to unauthorizedly intercept and modify software update packets.

The vulnerability of the ZingBox Inspector network traffic handler exists because special elements are not properly neutralized. Exploiting this vulnerability allows a malicious actor to intercept and modify software update packets remotely and without authorization...

PT-2007-7230 · Juniper Networks · Junos

Name of the Vulnerable Software and Affected Versions: Juniper JUNOS versions 7.3 through 8.4 Description: The issue allows remote attackers to cause a denial of service, resulting in a crash, by sending malformed BGP packets. This could be triggered by BGP UPDATE packets that cause session...