Lucene search
K

373 matches found

RedhatCVE
RedhatCVE
added 5 days ago8 views

CVE-2026-42389

This fix provides extra hardening for the 5.4.x branch by doing extra validation of incoming answers from authoritative servers...

5.3CVSS5.8AI score0.00175EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 6 days ago8 views

CVE-2026-53098

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7915: fix use-after-free bugs in mt7915macdumpwork When the mt7915 pci chip is detaching, the mt7915crashdata is released in mt7915coredumpunregister. However, the work item dumpwork may still be running or pending,...

5.7AI score0.00168EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added last week7 views

CVE-2026-53129

In the Linux kernel, the following vulnerability has been resolved: fs/mbcache: cancel shrink work before destroying the cache mbcachedestroy calls shrinkerfree and then frees all cache entries and the cache itself, but it does not cancel the pending cshrinkwork work item first. If...

5.5CVSS5.7AI score0.00157EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/18 12:53 p.m.6 views

CVE-2026-54387

Tinyproxy through 1.11.3, fixed in commit ff45d3b, fails to reconcile conflicting Content-Length and Transfer-Encoding: chunked headers, forwarding both verbatim to the backend while using Content-Length to determine how many request body bytes to consume. Remote attackers can desynchronize the...

9.3CVSS5.5AI score0.00439EPSS
Exploits0References2
OSV
OSV
added 2026/06/18 10:9 a.m.10 views

RHSA-2026:26551 Red Hat Security Advisory: firefox security update

Bulletin has no description...

7.5CVSS4.9AI score0.00605EPSS
Exploits0References112
Positive Technologies
Positive Technologies
added 2026/06/15 12:0 a.m.12 views

PT-2026-49617

CVE ID :CVE-2026-54296 Published : June 15, 2026, 6:31 p.m. | 1 hour, 19 minutes ago Description :None Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and more...

5.2AI score0.00032EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/09 5:13 p.m.9 views

CVE-2026-46324

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: use listdelrcu for netlink hooks nftnetdevunregisterhooks and nftunregisterflowtablenethooks need to use listdelrcu, this list can be walked by concurrent dumpers. Add a new helper and use it consistently...

7.8CVSS5.2AI score0.00119EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/08 5:23 a.m.11 views

CVE-2026-3238

A flaw was found in Samba’s WINS server component when running as an Active Directory Domain Controller. The WINS protocol handlers for certain request types did not properly validate incoming packets, allowing an unauthenticated remote attacker to trigger a NULL pointer dereference and crash the...

7.5CVSS5.5AI score0.02669EPSS
Exploits0References4
OSV
OSV
added 2026/06/04 4:26 p.m.4 views

MINI-Q76G-G2FX-G9JP

Bulletin has no description...

5.3CVSS5.7AI score0.0037EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/06/01 5:34 p.m.11 views

CVE-2026-47762

TinyMCE is an open source rich text editor. Prior to 5.11.1, 7.9.3, and 8.5.1, there is a stored XSS vulnerability via forged mce:protected comments. Allows attackers to bypass sanitization and inject scripts that execute when content is restored. Impacts users who utilize the protect option. Thi...

8.7CVSS5.5AI score0.00238EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/06/01 5:34 p.m.12 views

CVE-2026-47761

TinyMCE is an open source rich text editor. Prior to 5.11.1, 7.9.3, and 8.5.1, there is a stored XSS vulnerability in the media plugin. Attackers can inject malicious scripts via crafted data-mce- attributes, which are executed when content is rendered. Impacts users of TinyMCE with the media...

8.7CVSS5.4AI score0.00223EPSS
Exploits0References2
OSV
OSV
added 2026/05/25 4:6 p.m.7 views

MINI-X4GG-F35P-3GMF

Bulletin has no description...

5.3CVSS5.7AI score0.0019EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/05/21 12:50 p.m.11 views

CVE-2026-5946

A flaw was found in the bind component, specifically within the named daemon. This vulnerability allows a remote attacker to send specially crafted Domain Name System DNS messages. These messages, which use unusual classes or meta-classes, can trigger assertion failures in the named daemon when...

7.5CVSS5.7AI score0.0181EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/05/13 1:5 p.m.12 views

CVE-2026-44296

A flaw was found in deskflow. A remote, unauthenticated denial of service DoS vulnerability affects Deskflow servers running with TLS enabled the default. When any TCP peer connects to the listening port and its first bytes do not parse as a valid TLS ClientHello, SecureSocket::secureAccept enter...

7.5CVSS5.8AI score0.00279EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/05/08 6:13 p.m.11 views

CVE-2026-43289

In the Linux kernel, the following vulnerability has been resolved: kexec: derive purgatory entry from symbol kexecloadpurgatory derives image-start by locating eentry inside an SHFEXECINSTR section. If the purgatory object contains multiple executable sections with overlapping shaddr, the...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References4
OSV
OSV
added 2026/05/08 2:16 p.m.6 views

DEBIAN-CVE-2026-43343

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fsubset: Fix unbalanced refcnt in gethfree gethalloc increments the reference count, but gethfree fails to decrement it. This prevents the configuration of attributes via configfs after unlinking the function...

5.5CVSS5.7AI score0.00114EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/05/06 11:24 p.m.9 views

CVE-2026-43255

In the Linux kernel, the following vulnerability has been resolved: wifi: libertas: fix WARNING in usbtxblock The function usbtxblock submits cardp-txurb without ensuring that any previous transmission on this URB has completed. If a second call occurs while the URB is still active e.g. during...

5.5CVSS5.7AI score0.00128EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/05/04 8:52 p.m.9 views

CVE-2026-42167

A flaw was found in the modsql module in ProFTPD. This issue allows remote attackers to execute arbitrary code via a username, in scenarios where there is logging of USER requests with an expansion such as %U, and the SQL backend allows commands e.g., COPY TO PROGRAM...

8.1CVSS6.4AI score0.05004EPSS
Exploits6References2
RedhatCVE
RedhatCVE
added 2026/05/04 11:6 a.m.11 views

CVE-2026-42484

A heap-based buffer overflow in hextobinary in the PKZIP hash parser in hashcat v7.1.2 allows an attacker to cause a denial of service or possibly execute arbitrary code via a crafted PKZIP hash file. The issue affects modules 17200, 17210, 17220, 17225, and 17230. When datatypeenum=1,...

9.8CVSS6.3AI score0.00444EPSS
Exploits1References2
OSV
OSV
added 2026/04/30 10:10 a.m.8 views

RHSA-2026:11656 Red Hat Security Advisory: xorg-x11-server-Xwayland security update

Bulletin has no description...

7.8CVSS4.8AI score0.0038EPSS
Exploits0References15
Rows per page
Query Builder