CVE-2023-29552 is a denial-of-service issue affecting the Service Location Protocol (SLP) and was added by CISA to the Known Exploited Vulnerabilities catalog on 2023-11-08. Because SLP is a protocol used by different products and environments, the practical impact depends on where it is deployed. CISA’s guidance is to apply vendor mitigations where available, or disable SLP / block UDP port 427 on system [truncated]
CVE-2023-44487 is a high-severity HTTP/2 issue that CISA added to its Known Exploited Vulnerabilities catalog on 2023-10-10, indicating active exploitation. The KEV record sets a remediation due date of 2023-10-31 and directs defenders to apply vendor mitigations, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable. Organizations that r [truncated]
CVE-2016-10142 is an IPv6 protocol-level issue involving ICMPv6 Packet Too Big (PTB) handling. According to the supplied NVD record and linked IETF references, a forged PTB message with an MTU below 1280 can cause a host to generate IPv6 atomic fragments, which can blackhole traffic when fragments or extension headers are filtered and can also enable fragmentation-based abuse. NVD rates the issue CVSS 8.6 [truncated]
