CVE-2024-7322

MEDIUM Year: 2024
CVSS v3 Score
5.8
Medium
Weakness Type
CWE-346
View all →

Vulnerability Description

A ZigBee coordinator, router, or end device may change their node ID when an unsolicited encrypted rejoin response is received, this change in node ID causes Denial of Service (DoS). To recover from this DoS, the network must be re-established

Related Vulnerabilities

CVE-2018-20744

MEDIUM
CVSS:5.9(Medium)

The Olivier Poitrey Go CORS handler through 1.3.0 actively converts a wildcard CORS policy into reflecting an arbitrary Origin header value, which is incompatible with the CORS security design, and co...

CWE-3462018

CVE-2018-20745

MEDIUM
CVSS:5.9(Medium)

Yii 2.x through 2.0.15.1 actively converts a wildcard CORS policy into reflecting an arbitrary Origin header value, which is incompatible with the CORS security design, and could lead to CORS misconfi...

CWE-3462018

CVE-2020-11868

MEDIUM
CVSS:5.9(Medium)

ntpd in ntp before 4.2.8p14 and 4.3.x before 4.3.100 allows an off-path attacker to block unauthenticated synchronization via a server mode packet with a spoofed source IP address, because transmissio...

CWE-3462020

CVE-2020-26253

MEDIUM
CVSS:5.9(Medium)

Kirby is a CMS. In Kirby CMS (getkirby/cms) before version 3.3.6, and Kirby Panel before version 2.5.14 there is a vulnerability in which the admin panel may be accessed if hosted on a .dev domain. In...

CWE-3462020

CVE-2020-4881

MEDIUM
CVSS:5.9(Medium)

IBM Planning Analytics 2.0 could allow a remote attacker to obtain sensitive information, caused by the lack of server hostname verification for SSL/TLS communication. By sending a specially-crafted r...

CWE-3462020

CVE-2021-20199

MEDIUM
CVSS:5.9(Medium)

Rootless containers run with Podman, receive all traffic with a source IP address of 127.0.0.1 (including from remote hosts). This impacts containerized applications that trust localhost (127.0.01) co...

CWE-3462021