CVE Tools

ietf

Unclassifiedunknown

8

Cumulative CVEs

4

Monthly snapshots

#87

Peak rank

Top products

p802.1q4 draft-ietf-v6ops-ra-guard3 draft-ietf-v6ops-ra-guard-081

Latest CVEs

The 15 most recently published vulnerabilities affecting ietf.

CVE-2025-27371In certain IETF OAuth 2.0-related specifications, when the JSON Web Token Profile for OAuth 2.0 Client Authentication mechanism is used, there are ambiguities in the audience values of JWTs sent to...6.9Mar 3, 2025
CVE-2024-7596Generic UDP Encapsulation (GUE) (IETF Draft) do not validate or verify the source of a network packet6.5Feb 5, 2025
CVE-2024-7595GRE and GRE6 Protocols (RFC2784) do not validate or verify the source of a network packet6.5Feb 5, 2025
CVE-2025-23019IPv6-in-IPv4 tunneling (RFC 4213) allows an attacker to spoof and route traffic via an exposed network interface.5.4Jan 14, 2025
CVE-2025-23018IPv4-in-IPv6 and IPv6-in-IPv6 tunneling (RFC 2473) do not require the validation or verification of the source of a network packet, allowing an attacker to spoof and route arbitrary traffic via an ...5.4Jan 14, 2025
CVE-2024-3596RADIUS Protocol under RFC2865 is vulnerable to forgery attacks.9.0Jul 9, 2024
CVE-2024-3661DHCP routing options can manipulate interface-based VPN traffic7.6May 6, 2024
CVE-2023-44487The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.KEV7.5Oct 10, 2023
CVE-2021-27862L2 network filtering bypass using stacked VLAN0 and LLC/SNAP headers with an invalid length during Ethernet to Wifi frame translation4.7Sep 27, 2022
CVE-2021-27861L2 network filtering bypass using stacked VLAN0 and LLC/SNAP headers with invalid lengths4.7Sep 27, 2022
CVE-2021-27854L2 network filtering bypass using stacked VLAN0, LLC/SNAP headers, and Ethernet to Wifi frame translation4.7Sep 27, 2022
CVE-2021-27853L2 network filtering can be bypassed using stacked VLAN0 and LLC/SNAP headers4.7Sep 27, 2022
CVE-2020-20949Bleichenbacher's attack on PKCS #1 v1.5 padding for RSA in STM32 cryptographic firmware library software expansion for STM32Cube (UM1924). The vulnerability can allow one to use Bleichenbacher's or...5.9Jan 20, 2021
CVE-2020-20950Bleichenbacher's attack on PKCS #1 v1.5 padding for RSA in Microchip Libraries for Applications 2018-11-26 All up to 2018-11-26. The vulnerability can allow one to use Bleichenbacher's oracle attac...5.9Jan 19, 2021
CVE-2020-10136IP-in-IP protocol allows a remote, unauthenticated attacker to route arbitrary network traffic5.3Jun 2, 2020