CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6725 matches found

USN-8351-1: Linux kernel (Low Latency) vulnerabilities

It was discovered that the Linux kernel algifaead module did not properly handle in-place cryptographic operations. This flaw is known as Copy Fail. A local attacker could use this to escalate privileges, or possibly escape a container. CVE-2026-31431 Several security issues were discovered in th...

9.8CVSS7AI score0.02235EPSS

Exploits225

OSV•added 3 days ago•3 views

USN-8351-1 linux-lowlatency vulnerabilities

9.8CVSS5.9AI score0.02235EPSS

Exploits225References9

Ubuntu•added 3 days ago•10 views

USN-8350-1: Linux kernel (NVIDIA Tegra) vulnerabilities

9.8CVSS7AI score0.02235EPSS

Exploits225

OSV•added 3 days ago•4 views

USN-8350-1 linux-nvidia-tegra vulnerabilities

9.8CVSS5.9AI score0.02235EPSS

Exploits225References9

ATTACKERKB•added 6 days ago•5 views

CVE-2026-7786

Jinan USR IOT Technology Limited PUSR USR-W610 RS232/485 to Wi-Fi/Ethernet Converter device firmware contains plaintext administrative credentials embedded in the firmware image. These credentials can be extracted through firmware analysis and used to authenticate to device services...

9.8CVSS5.8AI score0.00041EPSS

Exploits0References3Affected Software1

RedhatCVE•added last week•6 views

CVE-2026-9531

A weakness has been identified in Totolink CA750-PoE 6.2c.510. Impacted is the function setUpgradeUboot of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. This manipulation of the argument FileName causes os command injection. The attack is possible to be carried out remotely. The...

6.5CVSS6.4AI score0.04841EPSS

Exploits0References1

NVD•added last week•4 views

CVE-2026-46162

In the Linux kernel, the following vulnerability has been resolved: ice: fix double free in icesfethactivate error path When auxiliarydeviceadd fails, icesfethactivate jumps to auxdevuninit and calls auxiliarydeviceuninit&sfdev-adev. The device release callback icesfdevrelease frees sfdev, but th...

0.00023EPSS

Exploits0References4

EUVD•added last week•4 views

EUVD-2026-32789

5.8AI score0.00023EPSS

Exploits0References4

RedhatCVE•added 2026/05/28 12:29 a.m.•5 views

CVE-2026-45940

A flaw was found in the Linux kernel's stmmac Ethernet driver. When split header functionality is enabled for GMAC4, the hardware may not fully populate a buffer in the first descriptor. This can lead to an incorrect calculation of buffer length in subsequent descriptors, resulting in a kernel...

6AI score0.00022EPSS

Exploits0References4

Positive Technologies•added 2026/05/28 12:0 a.m.•5 views

PT-2026-44311

In the Linux kernel, the following vulnerability has been resolved: octeon ep vf: add NULL check for napi build skb napi build skb can return NULL on allocation failure. In octep vf oq process rx, the result is used directly without a NULL check in both the single-buffer and multi-fragment paths,...

5.8AI score0.00023EPSS

Exploits0References5

RedhatCVE•added 2026/05/27 10:32 p.m.•5 views

CVE-2026-45977

A flaw was found in the Linux kernel's fbnic Fibre Channel over Ethernet Network Interface Card driver. A race condition exists in the handling of firmware logs, where the log can be freed while still being accessed. This can lead to a use-after-free vulnerability, potentially allowing an attacke...

5.8AI score0.00022EPSS

Exploits0References4

EUVD•added 2026/05/27 3:33 p.m.•3 views

EUVD-2026-32224

In the Linux kernel, the following vulnerability has been resolved: net: stmmac: fix oops when split header is enabled For GMAC4, when split header is enabled, in some rare cases, the hardware does not fill buf2 of the first descriptor with payload. Thus we cannot assume buf2 is always fully fill...

5.8AI score0.00022EPSS

Exploits0References4

OSV•added 2026/05/27 2:17 p.m.•2 views

UBUNTU-CVE-2026-45907

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix deadlocks between devlink and netdev instance locks In the mentioned "Fixes" commit, various work tasks triggering devlink health reporter recovery were switched to use netdevtrylock to protect against concurrent...

5.7AI score0.00022EPSS

Exploits0References3

CVE•added 2026/05/27 12:58 p.m.•10 views

CVE-2026-46084

The CVE-2026-46084 issue resides in Linux kernel RDMA/mana_ib handling: when an RSS QP is destroyed, mana_ib_destroy_qp_rss() clears RX WQ objects but fails to disable vPort RX steering in firmware, leaving stale steering configs that may route completions to old RX objects. If traffic persists a...

5.7AI score0.00024EPSS

Exploits0References5

ATTACKERKB•added 2026/05/27 12:56 p.m.•3 views

CVE-2026-46043

In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Validate pad and ICRC before payloadsize in rxercv rxercv currently checks only that the incoming packet is at least headersizepkt bytes long before payloadsize is used. However, payloadsize subtracts both the...

9.1CVSS5.7AI score0.0007EPSS

Exploits0References9Affected Software1

Debian CVE•added 2026/05/27 12:18 p.m.•5 views

CVE-2026-45952

In the Linux kernel, the following vulnerability has been resolved: eth: fbnic: Add validation for MTU changes Increasing the MTU beyond the HDS threshold causes the hardware to fragment packets across multiple buffers. If a single-buffer XDP program is attached, the driver will drop all multi-fr...

5.7AI score0.00022EPSS

Exploits0

Tenable Nessus•added 2026/05/27 12:0 a.m.•5 views

Ubuntu 24.04 LTS / 25.10 : Linux kernel (Azure) vulnerabilities (USN-8310-1)

"The remote Ubuntu 24.04 LTS / 25.10 host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-8310-1 advisory. It was discovered that the Linux kernel algifaead module did not properly handle in-place cryptographic operations. This flaw is known as Copy...

9.8CVSS6.7AI score0.02235EPSS

Exploits225References23