CVE-2019-25370

OPNsense 19.1 contains a reflected cross-site scripting vulnerability that allows attackers to inject malicious scripts by submitting crafted input through multiple parameters. Attackers can send POST requests to interfacesvlanedit.php with script payloads in the tag, descr, or vlanif parameters ...

CVE-2025-41747

An XSS vulnerability in pxcvlanIntfCfg.php can be used by an unauthenticated remote attacker to trick an authenticated user to send a manipulated POST request to the device in order to change parameters available via web based management WBM. The vulnerability does not provide access to...

CVE-2025-41747

CVE-2025-41747 describes an unauthenticated XSS vulnerability in the web interface component pxc_vlanIntfCfg.php that can fool an authenticated user into sending a manipulated POST request to modify device configuration parameters available through the web-based management interface (WBM). The is...

PT-2025-49819

An XSS vulnerability in pxc vlanIntfCfg.php can be used by an unauthenticated remote attacker to trick an authenticated user to send a manipulated POST request to the device in order to change parameters available via web based management WBM. The vulnerability does not provide access to...

EUVD-2011-4060

Malware in sbrugna...

CVE-2023-53365 ip6mr: Fix skb_under_panic in ip6mr_cache_report()

In the Linux kernel, the following vulnerability has been resolved: ip6mr: Fix skbunderpanic in ip6mrcachereport skbuff: skbunderpanic: text:ffffffff88771f69 len:56 put:-4 head:ffff88805f86a800 data:ffff887f5f86a850 tail:0x88 end:0x2c0 dev:pim6reg ------------ cut here ------------ kernel BUG at...

Virtuozzo Hybrid Infrastructure 4.7 Update 1

This update provides new features, as well as bug fixes and improvements. Vulnerability id: VSTOR-48360 Fixed the false-positive alert "MN backup does not exist." Vulnerability id: VSTOR-48337 After a power failure of all nodes in the high availability cluster, the virtual IP address may be unset...

Virtuozzo Hybrid Infrastructure 4.7

In this release, Virtuozzo Hybrid Infrastructure provides a wide range of new features that enhance service providers' interoperability and help expand their services. The improvements cover compute services, object storage, core storage, monitoring, high availability for the management node,...

nmstate bug fix and enhancement update

Nmstate is a library with an accompanying command line tool that manages host networking settings in a declarative manner. Bug Fixes and Enhancements: Only a default gw is supported per device BZ1910193 SR-IOV i40e After setting SR-IOV number of VFs, nmstate reports success before VFs links are...

Oracle Linux 4 : kernel (ELSA-2010-0936)

From Red Hat Security Advisory 2010:0936 : Updated kernel packages that fix two security issues and multiple bugs are now available for Red Hat Enterprise Linux 4. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVS...

CVE-2011-4112

The net subsystem in the Linux kernel before 3.1 does not properly restrict use of the IFFTXSKBSHARING flag, which allows local users to cause a denial of service panic by leveraging the CAPNETADMIN capability to access /proc/net/pktgen/pgctrl, and then using the pktgen package in conjunction wit...

Design/Logic Flaw

The net subsystem in the Linux kernel before 3.1 does not properly restrict use of the IFFTXSKBSHARING flag, which allows local users to cause a denial of service panic by leveraging the CAPNETADMIN capability to access /proc/net/pktgen/pgctrl, and then using the pktgen package in conjunction wit...

CVE-2011-4112

The net subsystem in the Linux kernel before 3.1 does not properly restrict use of the IFFTXSKBSHARING flag, which allows local users to cause a denial of service panic by leveraging the CAPNETADMIN capability to access /proc/net/pktgen/pgctrl, and then using the pktgen package in conjunction wit...

CVE-2011-4112

The net subsystem in the Linux kernel before 3.1 does not properly restrict use of the IFFTXSKBSHARING flag, which allows local users to cause a denial of service panic by leveraging the CAPNETADMIN capability to access /proc/net/pktgen/pgctrl, and then using the pktgen package in conjunction wit...

SuSE 10 Security Update : Linux kernel (ZYPP Patch Number 7915)

This Linux kernel update fixes various security issues and bugs in the SUSE Linux Enterprise 10 SP4 kernel. This update fixes the following security issues : - X.25 remote DoS. CVE-2010-3873. bnc651219 - X.25 remote Dos. CVE-2010-4164. bnc653260 - 1 socket local DoS. CVE-2010-4249. bnc655696 -...

SuSE 10 Security Update : Linux kernel (ZYPP Patch Number 7918)

This Linux kernel update fixes various security issues and bugs in the SUSE Linux Enterprise 10 SP4 kernel. This update fixes the following security issues : - X.25 remote DoS. CVE-2010-3873. bnc651219 - X.25 remote Dos. CVE-2010-4164. bnc653260 - 1 socket local DoS. CVE-2010-4249. bnc655696 -...