CVE-2021-41991
- EPSS 2.33%
- Published 18.10.2021 14:15:10
- Last modified 21.11.2024 06:27:02
The in-memory certificate cache in strongSwan before 5.9.4 has a remote integer overflow upon receiving many requests with different certificates to fill the cache and later trigger the replacement of cache entries. The code attempts to select a less...
CVE-2021-3449
- EPSS 13.18%
- Published 25.03.2021 15:15:13
- Last modified 21.11.2024 06:21:33
An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it was present in the initial ClientHello), but incl...
CVE-2020-27827
- EPSS 0.42%
- Published 18.03.2021 17:15:13
- Last modified 21.11.2024 05:21:53
A flaw was found in multiple versions of OpenvSwitch. Specially crafted LLDP packets can cause memory to be lost when allocating data to handle specific optional TLVs, potentially causing a denial of service. The highest threat from this vulnerabilit...
CVE-2018-5391
- EPSS 3.82%
- Published 06.09.2018 21:29:00
- Last modified 21.11.2024 04:08:43
The Linux kernel, versions 3.9+, is vulnerable to a denial of service attack with low rates of specially modified packets targeting IP fragment re-assembly. An attacker may cause a denial of service condition by sending specially crafted IP fragments...