CVE-2021-3449
- EPSS 13.18%
- Published 25.03.2021 15:15:13
- Last modified 21.11.2024 06:21:33
An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it was present in the initial ClientHello), but incl...
CVE-2020-27827
- EPSS 0.42%
- Published 18.03.2021 17:15:13
- Last modified 21.11.2024 05:21:53
A flaw was found in multiple versions of OpenvSwitch. Specially crafted LLDP packets can cause memory to be lost when allocating data to handle specific optional TLVs, potentially causing a denial of service. The highest threat from this vulnerabilit...
CVE-2020-9272
- EPSS 0.77%
- Published 20.02.2020 16:15:11
- Last modified 21.11.2024 05:40:19
ProFTPD 1.3.7 has an out-of-bounds (OOB) read vulnerability in mod_cap via the cap_text.c cap_to_text function.
- EPSS 52.27%
- Published 20.02.2020 16:15:11
- Last modified 21.11.2024 05:40:19
In ProFTPD 1.3.7, it is possible to corrupt the memory pool by interrupting the data transfer channel. This triggers a use-after-free in alloc_pool in pool.c, and possible remote code execution.
CVE-2018-5391
- EPSS 3.82%
- Published 06.09.2018 21:29:00
- Last modified 21.11.2024 04:08:43
The Linux kernel, versions 3.9+, is vulnerable to a denial of service attack with low rates of specially modified packets targeting IP fragment re-assembly. An attacker may cause a denial of service condition by sending specially crafted IP fragments...