CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

SUSE CVE•added 2026/05/29 1:15 a.m.•17 views

SUSE CVE-2026-46176

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix error path fall-through in mlx5ibdevressrqinit mlx5ibdevressrqinit allocates two SRQs, s0 and s1. When ibcreatesrq fails for s1, the error branch destroys s0 but falls through and unconditionally assigns the freed ...

5.5CVSS5.8AI score0.00138EPSS

Exploits0References9

SUSE CVE•added 2026/05/29 1:15 a.m.•9 views

SUSE CVE-2026-46213

In the Linux kernel, the following vulnerability has been resolved: HID: appletb-kbd: fix UAF in inactivity-timer cleanup path Commit 38224c472a03 "HID: appletb-kbd: fix slab use-after-free bug in appletbkbdprobe" added timerdeletesync&kbd-inactivitytimer to both the probe closehw error path and...

7.8CVSS5.8AI score0.00124EPSS

SUSE CVE•added 2026/05/29 1:14 a.m.•9 views

SUSE CVE-2026-46235

In the Linux kernel, the following vulnerability has been resolved: media: saa7164: add ioremap return checks and cleanups Add checks for ioremap return values in saa7164devsetup. If ioremap for BAR0 or BAR2 fails, release the already allocated PCI memory regions, remove the device from the globa...

4.7CVSS5.8AI score0.00119EPSS

Tenable Nessus•added 2026/05/29 12:0 a.m.•9 views

Linux Distros Unpatched Vulnerability : CVE-2026-45888

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - md/raid1: fix memory leak in raid1run raid1run calls setupconf which registers a thread via mdregisterthread. If raid1setlimits fails, the previously registered...

5.9AI score0.002EPSS

Tenable Nessus•added 2026/05/29 12:0 a.m.•11 views

Linux Distros Unpatched Vulnerability : CVE-2026-46235

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - media: saa7164: add ioremap return checks and cleanups Add checks for ioremap return values in saa7164devsetup. If ioremap for BAR0 or BAR2 fails, release the...

5.5CVSS5.4AI score0.00119EPSS

Exploits0References4

RedHat Linux•added 2026/05/28 6:2 p.m.•13 views

flatpak: Flatpak: Arbitrary file deletion on host via improper cache file path validation

A flaw was found in Flatpak, a Linux application sandboxing and distribution framework. The caching mechanism for ld.so dynamic linker/loader improperly removes outdated cache files without adequately verifying that the application-controlled path to the outdated cache is within the designated...

8.7CVSS5.9AI score0.00323EPSS

RedHat Linux•added 2026/05/28 5:41 p.m.•12 views

flatpak: Flatpak: Arbitrary file deletion on host via improper cache file path validation

8.7CVSS5.9AI score0.00323EPSS

RedHat Linux•added 2026/05/28 1:35 p.m.•10 views

kernel: netfilter: nf_conntrack_helper: pass helper to expect cleanup

A flaw was found in the Linux kernel's netfilter subsystem, specifically within the nfconntrackhelper. When a connection tracking helper is unregistered, its associated expectations are not properly cleaned up. This oversight can lead to a use-after-free vulnerability, where the system attempts t...

7.8CVSS5.8AI score0.00126EPSS

NVD•added 2026/05/28 10:16 a.m.•15 views

CVE-2026-46235

5.5CVSS0.00119EPSS

Exploits0References6

NVD•added 2026/05/28 10:16 a.m.•15 views

CVE-2026-46213

7.8CVSS0.00124EPSS

NVD•added 2026/05/28 10:16 a.m.•13 views

CVE-2026-46196

In the Linux kernel, the following vulnerability has been resolved: tracepoint: balance regfunc on funcadd failure in tracepointaddfunc When a tracepoint goes through the 0 - 1 transition, tracepointaddfunc invokes the subsystem's ext-regfunc before attempting to install the new probe via funcadd...

5.5CVSS0.00127EPSS

NVD•added 2026/05/28 10:16 a.m.•7 views

CVE-2026-46126

0.00175EPSS

Exploits0References4

OSV•added 2026/05/28 10:16 a.m.•3 views

UBUNTU-CVE-2026-46241

In the Linux kernel, the following vulnerability has been resolved: spi: mpc52xx: fix use-after-free on registration failure Make sure to disable and free the interrupts in case controller registration fails to avoid a potential use-after-free and resource leak. This issue was flagged by Sashiko...

7.8CVSS5.7AI score0.00125EPSS

Exploits0References7

5.5CVSS5.7AI score0.00126EPSS

UBUNTU-CVE-2026-46147

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Fix pin leak and publication ordering in pkvminitvcpu Two bugs exist in the vCPU initialisation path: 1. If a check fails after hyppinsharedmem succeeds, the cleanup path jumps to 'unlock' without calling unpinhostvcp...

Exploits0References6

7.8CVSS5.7AI score0.00138EPSS

UBUNTU-CVE-2026-46208

In the Linux kernel, the following vulnerability has been resolved: batman-adv: stop tpmeter sessions during mesh teardown TP meter sessions remain linked on batpriv-tplist after the netlink request has already finished. When the mesh interface is removed, batadvmeshfree currently tears down the...

Exploits0References8

OSV•added 2026/05/28 10:16 a.m.•3 views

UBUNTU-CVE-2026-46235

5.5CVSS5.7AI score0.00119EPSS

Exploits0References8

5.5CVSS5.7AI score0.00127EPSS

UBUNTU-CVE-2026-46144

In the Linux kernel, the following vulnerability has been resolved: RDMA/mana: Fix error unwind in manaibcreateqprss Sashiko points out that manaibcfgvportsteering is leaked, the normal destroy path cleans it up...

Exploits0References8