CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

501 matches found

SUSE CVE-2026-46277

In the Linux kernel, the following vulnerability has been resolved: mm/zonedevice: do not touch device folio after calling -foliofree The contents of a device folio can immediately change after calling -foliofree, as the folio may be reallocated by a driver with a different order. Instead of...

5.3AI score

Exploits0References2

RedhatCVE•added yesterday•6 views

CVE-2026-44422

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.26.0, FreeRDP's RDPEAR NDR parser accepts one non-null NDR pointer ref-id for multiple logical pointer fields without tracking the pointed object's expected NDR type or ownership. When the same ref-id is reused across two...

8.8CVSS5.5AI score0.0005EPSS

Exploits1References1

NVD•added yesterday•4 views

CVE-2026-46277

Exploits0References2

EUVD•added yesterday•4 views

EUVD-2026-35142

5.4AI score

Exploits0References2

Cvelist•added yesterday•12 views

CVE-2026-46277 mm/zone_device: do not touch device folio after calling ->folio_free()

Exploits0References2

Positive Technologies•added yesterday•4 views

PT-2026-47349

In the Linux kernel, the following vulnerability has been resolved: mm/zone device: do not touch device folio after calling -folio free The contents of a device folio can immediately change after calling -folio free, as the folio may be reallocated by a driver with a different order. Instead of...

5.4AI score

Exploits0References3

ATTACKERKB•added 2026/05/29 7:41 p.m.•8 views

CVE-2026-44422

7.5CVSS5.8AI score0.0005EPSS

Exploits1References2Affected Software1

EUVD•added 2026/05/29 7:41 p.m.•9 views

EUVD-2026-33434

7.5CVSS5.8AI score0.0005EPSS

Exploits1References1

CVE•added 2026/05/29 7:41 p.m.•17 views

CVE-2026-44422

CVE-2026-44422 affects FreeRDP prior to 3.26.0. The RDPEAR NDR parser incorrectly reused a non-null NDR pointer ref-id across multiple logical pointer fields, causing the same heap object to be assigned to two outputs. The destructor then frees both pointers, enabling a heap use-after-free / doub...

8.8CVSS5.8AI score0.0005EPSS

Exploits1References1Affected Software1

Cvelist•added 2026/05/29 7:41 p.m.•32 views

CVE-2026-44422 FreeRDP RDPEAR NDR ref-id aliasing causes client-side UAF/double-free and type confusion

7.5CVSS0.0005EPSS

Exploits1References1

Tenable Nessus•added 2026/05/29 12:0 a.m.•9 views

Linux Distros Unpatched Vulnerability : CVE-2026-45880

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - PCI/P2PDMA: Release per-CPU pgmap ref when vminsertpage fails When vminsertpage fails in p2pmemallocmmap, p2pmemallocmmap doesn't invoke percpurefput to free th...

5.8AI score0.00024EPSS

Exploits0References3

OSV•added 2026/05/28 10:16 a.m.•4 views

UBUNTU-CVE-2026-46223

In the Linux kernel, the following vulnerability has been resolved: cgroup: Defer css percpuref kill on rmdir until cgroup is depopulated A chain of commits going back to v7.0 reworked rmdir to satisfy the controller invariant that a subsystem's -cssoffline must not run while tasks are still doin...

5.7AI score0.00024EPSS

Exploits0References5

SUSE CVE•added 2026/05/28 3:55 a.m.•7 views

SUSE CVE-2026-45974

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix invalid leaf access in btrfsquotaenable if ref key not found If btrfssearchslotforread returns 1, it means we did not find any key greater than or equals to the key we asked for, meaning we have reached the end of the...

5.8AI score0.00032EPSS

Exploits0References3

NVD•added 2026/05/27 7:16 p.m.•7 views

CVE-2026-8716

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 12.7 before 18.10.7, 18.11 before 18.11.4, and 19.0 before 19.0.1 that under certain conditions could have allowed an authenticated user to access CI data from a different ref type than intended...

4.3CVSS0.00027EPSS

Exploits0References2

OSV•added 2026/05/27 7:16 p.m.•3 views

UBUNTU-CVE-2026-8716

4.3CVSS5.8AI score0.00027EPSS

Exploits0References4

CVE•added 2026/05/27 5:54 p.m.•68 views

CVE-2026-8716

CVE-2026-8716 affects GitLab CE/EE with versions 12.7–before 18.10.7, 18.11–before 18.11.4, and 19.0–before 19.0.1. An authenticated user could have accessed CI data from a different ref type than intended under certain conditions. The issue has been remediated via patch releases: GitLab 18.10.7,...

4.3CVSS5.8AI score0.00027EPSS

Exploits0References2Affected Software1

ATTACKERKB•added 2026/05/27 5:54 p.m.•6 views

CVE-2026-8716

4.3CVSS5.8AI score0.00027EPSS

Exploits0References3Affected Software1

EUVD•added 2026/05/27 3:33 p.m.•9 views

EUVD-2026-32346

In the Linux kernel, the following vulnerability has been resolved: PCI/P2PDMA: Release per-CPU pgmap ref when vminsertpage fails When vminsertpage fails in p2pmemallocmmap, p2pmemallocmmap doesn't invoke percpurefput to free the per-CPU ref of pgmap acquired after genpoolallocowner, and...

5.8AI score0.00024EPSS

Exploits0References6

NVD•added 2026/05/27 2:17 p.m.•6 views

CVE-2026-45974

0.00032EPSS

Exploits0References8

NVD•added 2026/05/27 2:17 p.m.•10 views

CVE-2026-45955

In the Linux kernel, the following vulnerability has been resolved: md/md-llbitmap: fix percpuref not resurrected on suspend timeout When llbitmapsuspendtimeout times out waiting for percpuref to become zero, it returns -ETIMEDOUT without resurrecting the percpuref. The caller mdllbitmapdaemonfn...

7.1CVSS0.00013EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by