Astra Linux - уязвимость в linux-5.10, linux-6.1

In the Linux kernel, the following vulnerabilities have been resolved: net: dsa: ocelot: The function dsatag8021qunregister is called under rtnllock when removing a driver. When the currently used tagging protocol is “ocelot-8021q”, and we unbind the driver, we encounter this error: bash $ echo...

EUVD-2006-6700

Malware in sbrugna...

EUVD-2024-42868

Malicious code in bioql PyPI...

DEBIAN-CVE-2022-49812

In the Linux kernel, the following vulnerability has been resolved: bridge: switchdev: Fix memory leaks when changing VLAN protocol The bridge driver can offload VLANs to the underlying hardware either via switchdev or the 8021q driver. When the former is used, the VLAN is marked in the bridge...

CVE-2024-47002

A html code injection vulnerability exists in the vlan management part of Observium CE 24.4.13528. A specially crafted HTTP request can lead to an arbitrary html code. An authenticated user would need to click a malicious link provided by the attacker...

Observium 跨站脚本漏洞

Observium is a free server monitoring platform from Observium UK. Written in PHP, the platform is an auto-discovery SNMP-based network monitoring platform that supports a very wide range of network hardware and operating systems, including Cisco, Windows, Linux, HP, NetApp, and more. A cross-site...

Tenda AC500 fromSetVlanInfo Method Buffer Overflow Vulnerability

Tenda AC500 is the wireless controller device introduced, designed for small and medium-sized businesses, supporting cross-VLAN management of wireless networks. A buffer overflow vulnerability exists in the Tenda AC500, which originates from the port parameter of the fromSetVlanInfo method of the...

Security update for hostapd (moderate)

openSUSE Security Update: Security update for hostapd Announcement ID: openSUSE-SU-2020:0222-1 Rating: moderate References: 1056061 Cross-References: CVE-2017-13082 CVE-2019-9494 CVE-2019-9495 CVE-2019-9496 CVE-2019-9497 CVE-2019-9498 CVE-2019-9499 Affected Products: openSUSE Leap 15.1 openSUSE...

FreeNAC 3.02 - SQL Injection / Cross-Site Scripting

FreeNAC version 3.02 SQL Injection and XSS Vulnerabilties Date: May 19, 2012 Author: Blake Software Link: http://sourceforge.net/project/showfiles.php?groupid=170004 Version: 3.02 Tested on: Ubuntu 8.04 freenac version 3.02 vmware appliance FreeNAC FreeNAC provides Virtual LAN assignment, LAN...

CVE-2005-4714

CVE-2005-4714 : Concrete details exist in Connected documents. OpenVMPS (VLAN Management Policy Server) up to version 1.3 has a format string vulnerability in the vmps_log function. This allows remote attackers to execute arbitrary code on the affected host (impact described as possible code exec...

CVE-2005-4714

Format string vulnerability in the vmpslog function in OpenVMPS VLAN Management Policy Server 1.3 allows remote attackers to execute arbitrary code via unknown vectors...