Lucene search
K

115 matches found

RedhatCVE
RedhatCVE
added 2026/06/24 3:36 p.m.5 views

CVE-2026-52940

A flaw was found in the Linux kernel's tun driver. An unprivileged user can exploit this vulnerability by setting the virtual network vnet header size to 24 bytes. This action causes the kernel to copy partially initialized stack memory to userspace when reading non-tunnel packets, leading to the...

7CVSS5.8AI score0.00154EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2026/06/24 7:14 a.m.4 views

CVE-2026-52940

In the Linux kernel, the following vulnerability has been resolved: tun: zero the whole vnet header in tunputuser tunputuser declares an on-stack struct virtionethdrv1hashtunnel without zeroing it. For a non-tunnel skb, virtionethdrtnlfromskb only initializes the first 10 bytes sizeofstruct...

5.7AI score0.00154EPSS
Exploits0
CVE
CVE
added 2026/06/24 7:14 a.m.10 views

CVE-2026-52940

CVE-2026-52940 affects the Linux kernel tun module. In tun_put_user(), an on-stack struct virtio_net_hdr_v1_hash_tunnel is declared but not zeroed; for non-tunnel skbs, virtio_net_hdr_tnl_from_skb() initializes only the first 10 bytes of the 24-byte header, leaving bytes 10–23 as stack garbage. I...

5.8AI score0.00154EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/06/24 12:0 a.m.15 views

Linux Distros Unpatched Vulnerability : CVE-2026-52940

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tun: zero the whole vnet header in tunputuser tunputuser declares an on-stack struct virtionethdrv1hashtunnel without zeroing it. For a non-tunnel skb,...

5.8AI score0.00154EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/05/02 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-31700

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net/packet: fix TOCTOU race on mmap'd vnethdr in tpacketsnd In tpacketsnd, when PACKETVNETHDR is enabled, vnethdr points directly into the mmap'd TX ring buffer...

7.8CVSS6AI score0.00103EPSS
Exploits0References4
NVD
NVD
added 2026/05/01 2:16 p.m.8 views

CVE-2026-31700

In the Linux kernel, the following vulnerability has been resolved: net/packet: fix TOCTOU race on mmap'd vnethdr in tpacketsnd In tpacketsnd, when PACKETVNETHDR is enabled, vnethdr points directly into the mmap'd TX ring buffer shared with userspace. The kernel validates the header via...

7.8CVSS0.00103EPSS
Exploits0References8
Cvelist
Cvelist
added 2026/05/01 1:56 p.m.32 views

CVE-2026-31700 net/packet: fix TOCTOU race on mmap'd vnet_hdr in tpacket_snd()

In the Linux kernel, the following vulnerability has been resolved: net/packet: fix TOCTOU race on mmap'd vnethdr in tpacketsnd In tpacketsnd, when PACKETVNETHDR is enabled, vnethdr points directly into the mmap'd TX ring buffer shared with userspace. The kernel validates the header via...

7.8CVSS0.00103EPSS
Exploits0References8
CVE
CVE
added 2026/05/01 1:56 p.m.38 views

CVE-2026-31700

Summary (CVE-2026-31700): In the Linux kernel, a TOCTOU race in tpacket_snd() when PACKET_VNET_HDR is enabled allows a user-space race on vnet_hdr fields between validation and use, bypassing safety checks. The vulnerability affects the mmap’d TX ring buffer where vnet_hdr points into user-contro...

7.8CVSS5.9AI score0.00103EPSS
Exploits0References8Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/01 1:56 p.m.4 views

CVE-2026-31700

In the Linux kernel, the following vulnerability has been resolved: net/packet: fix TOCTOU race on mmap'd vnethdr in tpacketsnd In tpacketsnd, when PACKETVNETHDR is enabled, vnethdr points directly into the mmap'd TX ring buffer shared with userspace. The kernel validates the header via...

5.9AI score0.00103EPSS
Exploits0References6Affected Software1
Debian CVE
Debian CVE
added 2026/05/01 1:56 p.m.6 views

CVE-2026-31700

In the Linux kernel, the following vulnerability has been resolved: net/packet: fix TOCTOU race on mmap'd vnethdr in tpacketsnd In tpacketsnd, when PACKETVNETHDR is enabled, vnethdr points directly into the mmap'd TX ring buffer shared with userspace. The kernel validates the header via...

7.8CVSS5.8AI score0.00103EPSS
Exploits0
CNNVD
CNNVD
added 2026/05/01 12:0 a.m.8 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from a TOCTOU race condition in the tpacketsnd function’s mmap d vnethdr operation. This vulnerability...

7.8CVSS5.8AI score0.00103EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/01 12:0 a.m.12 views

PT-2026-36330

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A Time-of-Check to Time-of-Use TOCTOU race condition exists in the tpacket snd function when PACKET VNET HDR is enabled. The vnet hdr points to a memory-mapped TX ring buffer shared with...

9.8CVSS5.9AI score0.00437EPSS
Exploits2References57
RedhatCVE
RedhatCVE
added 2026/02/14 7:23 a.m.19 views

CVE-2025-48022

A vulnerability has been found in Vnet/IP Interface Package provided by Yokogawa Electric Corporation. If affected product receives maliciously crafted packets, Vnet/IP software stack process may be terminated. The affected products and versions are as follows: Vnet/IP Interface Package for CENTU...

6.5CVSS5.2AI score0.00171EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/02/14 7:23 a.m.3 views

CVE-2025-48019

A vulnerability has been found in Vnet/IP Interface Package provided by Yokogawa Electric Corporation. If affected product receives maliciously crafted packets, Vnet/IP software stack process may be terminated. The affected products and versions are as follows: Vnet/IP Interface Package for CENTU...

6.5CVSS5.2AI score0.00212EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/02/14 7:23 a.m.27 views

CVE-2025-48020

A vulnerability has been found in Vnet/IP Interface Package provided by Yokogawa Electric Corporation. If affected product receives maliciously crafted packets, Vnet/IP software stack process may be terminated. The affected products and versions are as follows: Vnet/IP Interface Package for CENTU...

6.5CVSS5.2AI score0.00229EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/02/14 7:23 a.m.7 views

CVE-2025-1924

A vulnerability has been found in Vnet/IP Interface Package provided by Yokogawa Electric Corporation. If affected product receive maliciously crafted packets, a DoS attack may cause Vnet/IP communication functions to stop or arbitrary programs to be executed. The affected products and versions a...

8.2CVSS5.5AI score0.00191EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/02/14 7:23 a.m.4 views

CVE-2025-48021

A vulnerability has been found in Vnet/IP Interface Package provided by Yokogawa Electric Corporation. If affected product receives maliciously crafted packets, Vnet/IP software stack process may be terminated. The affected products and versions are as follows: Vnet/IP Interface Package for CENTU...

6.5CVSS5.2AI score0.00171EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/02/14 7:23 a.m.5 views

CVE-2025-48023

A vulnerability has been found in Vnet/IP Interface Package provided by Yokogawa Electric Corporation. If affected product receives maliciously crafted packets, Vnet/IP software stack process may be terminated. The affected products and versions are as follows: Vnet/IP Interface Package for CENTU...

6.5CVSS5.2AI score0.00171EPSS
Exploits0References1
OSV
OSV
added 2026/02/13 6:16 a.m.4 views

CVE-2025-48021

A vulnerability has been found in Vnet/IP Interface Package provided by Yokogawa Electric Corporation. If affected product receives maliciously crafted packets, Vnet/IP software stack process may be terminated. The affected products and versions are as follows: Vnet/IP Interface Package for CENTU...

6.5CVSS5.6AI score0.00171EPSS
Exploits0References1
OSV
OSV
added 2026/02/13 6:16 a.m.5 views

CVE-2025-48023

A vulnerability has been found in Vnet/IP Interface Package provided by Yokogawa Electric Corporation. If affected product receives maliciously crafted packets, Vnet/IP software stack process may be terminated. The affected products and versions are as follows: Vnet/IP Interface Package for CENTU...

6.5CVSS5.6AI score0.00171EPSS
Exploits0References1
Rows per page
Query Builder