CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 3 days ago•9 views

CVE-2026-37220

FlexRIC v2.0.0 crashes when an SCTP association is closed before an E2SETUPREQUEST is sent. The near-RT RIC assumes a mapping between SCTP association and E2 node always exists in the cleanup path and enforces this via assert. A remote unauthenticated attacker can crash the near-RT RIC port 36421...

7.5CVSS0.00081EPSS

Cvelist•added 3 days ago•23 views

CVE-2026-37220

0.00081EPSS

CVE•added 3 days ago•10 views

CVE-2026-37234

CVE-2026-37234 affects FlexRIC v2.0.0. A single SCTP connection can bind multiple xapp_ids via multiple E42_SETUP_REQUESTs. Upon disconnect, only the first registered xapp_id’s resources are cleaned up; other xapp_ids and their subscriptions remain as stale entries, allowing a remote attacker to ...

8.2CVSS5.8AI score0.00107EPSS

Positive Technologies•added 3 days ago•9 views

PT-2026-45556

FlexRIC v2.0.0 allows a single SCTP connection to bind multiple xapp ids by sending multiple E42 SETUP REQUESTs. On disconnect, only the first registered xapp id's resources are cleaned up; subsequent xapp ids and their subscriptions remain as stale entries. A remote attacker can exploit this to...

5.8AI score0.00107EPSS

Exploits0References3

Cvelist•added 3 days ago•20 views

CVE-2026-37223

0.00081EPSS

Vulnrichment•added 3 days ago•3 views

CVE-2026-37234

FlexRIC v2.0.0 allows a single SCTP connection to bind multiple xappids by sending multiple E42SETUPREQUESTs. On disconnect, only the first registered xappid's resources are cleaned up; subsequent xappids and their subscriptions remain as stale entries. A remote attacker can exploit this to leak...

5.8AI score0.00107EPSS

RedhatCVE•added last week•3 views

CVE-2025-71305

A flaw was found in the Linux kernel's DisplayPort Multi-Stream Transport MST subsystem. When a DisplayPort 2.1 monitor is disconnected, a timing issue can cause the Virtual Channel Packet Interval VCPI value to become zero. Subsequent operations attempting to use this zero value in a bit shift c...

5.5CVSS5.8AI score0.00032EPSS

SUSE CVE•added 2026/05/28 3:53 a.m.•5 views

SUSE CVE-2026-46074

In the Linux kernel, the following vulnerability has been resolved: spi: ch341: fix memory leaks on probe failures Make sure to deregister the controller, disable pins, and kill and free the RX URB on probe failures to mirror disconnect and avoid memory leaks and use-after-free. Also add an...

NVD•added 2026/05/27 2:17 p.m.•4 views

Exploits0References3

CVE-2026-46074

0.00023EPSS

NVD•added 2026/05/27 2:16 p.m.•4 views

CVE-2025-71305

In the Linux kernel, the following vulnerability has been resolved: drm/display/dpmst: Add protection against 0 vcpi When releasing a timeslot there is a slight chance we may end up with the wrong payload mask due to overflow if the delayeddestroywork ends up coming into play after a DP 2.1 monit...

0.00032EPSS

Exploits0References6

EUVD•added 2026/05/27 12:58 p.m.•6 views

EUVD-2026-32456

ATTACKERKB•added 2026/05/27 12:58 p.m.•4 views

CVE-2026-46074

Exploits0References5Affected Software1

Cvelist•added 2026/05/27 12:58 p.m.•31 views

CVE-2026-46074 spi: ch341: fix memory leaks on probe failures

0.00023EPSS

CVE•added 2026/05/27 12:14 p.m.•8 views

CVE-2025-71305

The CVE-2025-71305 entry concerns the Linux kernel DRM DP MST path. A race/overflow could, on DP 2.1 monitor disconnect, cause VCPI to become 0 and trigger a negative shift when computing the payload mask, potentially leading to a faulty payload mask release. The fix adds a guard: skip changing t...

5.8AI score0.00032EPSS

Exploits0References6

Positive Technologies•added 2026/05/27 12:0 a.m.•7 views

PT-2026-43941