Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

811 matches found

RedhatCVE
RedhatCVEadded 2026/04/27 11:38 a.m.2 views

CVE-2026-31636

A flaw was found in the Linux kernel's rxrpc subsystem. A remote attacker could send a specially crafted rxrpc RESPONSE authenticator that, due to an incorrect parser limit calculation in the rxgkverifyauthenticator function, leads to a slab-out-of-bounds read. This memory corruption vulnerabilit...

9.1CVSS5.6AI score0.00058EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2026/04/27 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-31635

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - rxrpc: fix oversized RESPONSE authenticator length check rxgkverifyresponse decodes authlen from the packet and is supposed to verify that it fits in the...

7.5CVSS6AI score0.00038EPSS
Exploits4References3
SUSE CVE
SUSE CVEadded 2026/04/25 1:37 a.m.2 views

SUSE CVE-2026-31631

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix buffer overread in rxgkdoverifyauthenticator Fix rxgkdoverifyauthenticator to check the buffer size before checking the nonce...

8.2CVSS5.7AI score0.00054EPSS
Exploits0References3
SUSE CVE
SUSE CVEadded 2026/04/25 1:37 a.m.1 views

SUSE CVE-2026-31635

In the Linux kernel, the following vulnerability has been resolved: rxrpc: fix oversized RESPONSE authenticator length check rxgkverifyresponse decodes authlen from the packet and is supposed to verify that it fits in the remaining bytes. The existing check is inverted, so oversized RESPONSE...

7.5CVSS5.4AI score0.00038EPSS
Exploits4References3
SUSE CVE
SUSE CVEadded 2026/04/25 1:37 a.m.1 views

SUSE CVE-2026-31636

In the Linux kernel, the following vulnerability has been resolved: rxrpc: fix RESPONSE authenticator parser OOB read rxgkverifyauthenticator copies authlen bytes into a temporary buffer and then passes p + authlen as the parser limit to rxgkdoverifyauthenticator. Since p is a be32 , that inflate...

9.1CVSS5.5AI score0.00058EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2026/04/24 8:55 p.m.0 views

CVE-2026-31631

A flaw was found in the Linux kernel, specifically within its rxrpc communication protocol. This vulnerability is a buffer overread, meaning the system attempts to read data beyond the allocated memory buffer in the rxgkdoverifyauthenticator function. This could potentially allow an attacker to...

8.2CVSS5.7AI score0.00054EPSS
Exploits0References4
NVD
NVDadded 2026/04/24 3:16 p.m.1 views

CVE-2026-31636

In the Linux kernel, the following vulnerability has been resolved: rxrpc: fix RESPONSE authenticator parser OOB read rxgkverifyauthenticator copies authlen bytes into a temporary buffer and then passes p + authlen as the parser limit to rxgkdoverifyauthenticator. Since p is a be32 , that inflate...

9.1CVSS0.00058EPSS
Exploits0References3
OSV
OSVadded 2026/04/24 3:16 p.m.1 views

DEBIAN-CVE-2026-31631

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix buffer overread in rxgkdoverifyauthenticator Fix rxgkdoverifyauthenticator to check the buffer size before checking the nonce...

8.2CVSS5.5AI score0.00054EPSS
Exploits0References1
NVD
NVDadded 2026/04/24 3:16 p.m.2 views

CVE-2026-31635

In the Linux kernel, the following vulnerability has been resolved: rxrpc: fix oversized RESPONSE authenticator length check rxgkverifyresponse decodes authlen from the packet and is supposed to verify that it fits in the remaining bytes. The existing check is inverted, so oversized RESPONSE...

7.5CVSS0.00038EPSS
Exploits4References4
OSV
OSVadded 2026/04/24 3:16 p.m.1 views

DEBIAN-CVE-2026-31635

In the Linux kernel, the following vulnerability has been resolved: rxrpc: fix oversized RESPONSE authenticator length check rxgkverifyresponse decodes authlen from the packet and is supposed to verify that it fits in the remaining bytes. The existing check is inverted, so oversized RESPONSE...

7.5CVSS5.2AI score0.00038EPSS
Exploits4References1
OSV
OSVadded 2026/04/24 3:16 p.m.1 views

DEBIAN-CVE-2026-31636

In the Linux kernel, the following vulnerability has been resolved: rxrpc: fix RESPONSE authenticator parser OOB read rxgkverifyauthenticator copies authlen bytes into a temporary buffer and then passes p + authlen as the parser limit to rxgkdoverifyauthenticator. Since p is a be32 , that inflate...

9.1CVSS5.6AI score0.00058EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/04/24 2:44 p.m.3 views

CVE-2026-31636

In the Linux kernel, the following vulnerability has been resolved: rxrpc: fix RESPONSE authenticator parser OOB read rxgkverifyauthenticator copies authlen bytes into a temporary buffer and then passes p + authlen as the parser limit to rxgkdoverifyauthenticator. Since p is a be32 , that inflate...

5.5AI score0.00058EPSS
Exploits0References4Affected Software1
CVE
CVEadded 2026/04/24 2:44 p.m.9 views

CVE-2026-31636

Summary: CVE-2026-31636 affects the Linux kernel rxrpc subsystem. The root cause is in rxgk_verify_authenticator(), which copies auth_len into a temporary buffer and then uses p + auth_len as the parser limit. Because p is a __be32*, this inflates the parser end pointer by four, enabling a slab-o...

9.1CVSS5.5AI score0.00058EPSS
Exploits0References3Affected Software1
Cvelist
Cvelistadded 2026/04/24 2:44 p.m.30 views

CVE-2026-31636 rxrpc: fix RESPONSE authenticator parser OOB read

In the Linux kernel, the following vulnerability has been resolved: rxrpc: fix RESPONSE authenticator parser OOB read rxgkverifyauthenticator copies authlen bytes into a temporary buffer and then passes p + authlen as the parser limit to rxgkdoverifyauthenticator. Since p is a be32 , that inflate...

9.1CVSS0.00058EPSS
Exploits0References3
EUVD
EUVDadded 2026/04/24 2:44 p.m.1 views

EUVD-2026-25529

In the Linux kernel, the following vulnerability has been resolved: rxrpc: fix RESPONSE authenticator parser OOB read rxgkverifyauthenticator copies authlen bytes into a temporary buffer and then passes p + authlen as the parser limit to rxgkdoverifyauthenticator. Since p is a be32 , that inflate...

5.5AI score0.00058EPSS
Exploits0References3
Debian CVE
Debian CVEadded 2026/04/24 2:44 p.m.1 views

CVE-2026-31636

In the Linux kernel, the following vulnerability has been resolved: rxrpc: fix RESPONSE authenticator parser OOB read rxgkverifyauthenticator copies authlen bytes into a temporary buffer and then passes p + authlen as the parser limit to rxgkdoverifyauthenticator. Since p is a be32 , that inflate...

9.1CVSS5.5AI score0.00058EPSS
Exploits0
EUVD
EUVDadded 2026/04/24 2:44 p.m.1 views

EUVD-2026-25528

In the Linux kernel, the following vulnerability has been resolved: rxrpc: fix oversized RESPONSE authenticator length check rxgkverifyresponse decodes authlen from the packet and is supposed to verify that it fits in the remaining bytes. The existing check is inverted, so oversized RESPONSE...

5.4AI score0.00038EPSS
Exploits4References3
Vulnrichment
Vulnrichmentadded 2026/04/24 2:44 p.m.3 views

CVE-2026-31635 rxrpc: fix oversized RESPONSE authenticator length check

In the Linux kernel, the following vulnerability has been resolved: rxrpc: fix oversized RESPONSE authenticator length check rxgkverifyresponse decodes authlen from the packet and is supposed to verify that it fits in the remaining bytes. The existing check is inverted, so oversized RESPONSE...

7.5CVSS5.8AI score0.00038EPSS
Exploits4References3
CVE
CVEadded 2026/04/24 2:44 p.m.100 views

CVE-2026-31635

CVE-2026-31635 affects the Linux kernel rxrpc component. The vulnerability stems from an inverted length check in rxgk_verify_response(), where oversized RESPONSE authenticators can be accepted and later cause a contradictory length that leads to a BUG_ON(len) in skb_to_sgvec(). This can crash th...

7.5CVSS5.4AI score0.00038EPSS
Exploits4References4Affected Software1
Cvelist
Cvelistadded 2026/04/24 2:44 p.m.28 views

CVE-2026-31635 rxrpc: fix oversized RESPONSE authenticator length check

In the Linux kernel, the following vulnerability has been resolved: rxrpc: fix oversized RESPONSE authenticator length check rxgkverifyresponse decodes authlen from the packet and is supposed to verify that it fits in the remaining bytes. The existing check is inverted, so oversized RESPONSE...

7.5CVSS0.00038EPSS
Exploits4References3
Rows per page
Query Builder