CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 5 days ago•7 views

CVE-2026-52914

In the Linux kernel, the following vulnerability has been resolved: batman-adv: fix fragment reassembly length accounting batman-adv keeps a running payload length for queued fragments and uses it to validate a fragment chain before reassembly. That accounting currently allows the accumulated...

9.8CVSS0.00519EPSS

OSV•added 5 days ago•5 views

UBUNTU-CVE-2026-52914

9.8CVSS5.6AI score0.00519EPSS

Exploits0References11

EUVD•added 5 days ago•8 views

EUVD-2026-38717

5.7AI score0.00519EPSS

CVE•added 5 days ago•5 views

CVE-2026-52914

In the Linux kernel, the batman-adv component is affected by CVE-2026-52914. The root cause is an accounting bug where the accumulated fragment length used for validating queued fragment chains can be truncated during updates. This allows malformed fragment chains to bypass validation and drive r...

9.8CVSS5.7AI score0.00519EPSS

Cvelist•added 5 days ago•28 views

CVE-2026-52914 batman-adv: fix fragment reassembly length accounting

9.8CVSS0.00519EPSS

Debian CVE•added 5 days ago•4 views

CVE-2026-52914

9.8CVSS5.6AI score0.00519EPSS

Exploits0

Tenable Nessus•added 5 days ago•3 views

Linux Distros Unpatched Vulnerability : CVE-2026-52914

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - batman-adv: fix fragment reassembly length accounting batman-adv keeps a running payload length for queued fragments and uses it to validate a fragment chain...

9.8CVSS5.9AI score0.00519EPSS

Exploits0References2

AstraLinux•added 2026/06/19 11:10 a.m.•7 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: inet: frags: dropping fraglist and conntrack references Jakub added a warning in nfconntrackcleanupnetlist to make debugging leaked skbs/conntrack references more obvious. The issue is reported as being triggered by this behavior...

5.5CVSS5.8AI score0.00128EPSS

Exploits0References2

AstraLinux•added 2026/06/19 11:10 a.m.•3 views

Astra Linux – Vulnerability in Linux

A vulnerability was discovered in the Linux kernel 5.8.9. The implementations of WEP, WPA, WPA2, and WPA3 reassemble fragments, even though some of them were sent in plain text. This vulnerability can be exploited to inject packets and/or exfiltrate selected fragments when another device sends...

5.4CVSS6.8AI score0.07604EPSS

RedHat Linux•added 2026/06/16 4:53 p.m.•15 views

gnutls: GnuTLS: Denial of Service via heap buffer overflow in DTLS handshake fragment reassembly

A heap buffer overflow vulnerability exists in the DTLS handshake fragment reassembly logic of GnuTLS. The issue arises in mergehandshakepacket where incoming handshake fragments are matched and merged based solely on handshake type, without validating that the messagelength field remains...

7.5CVSS5.8AI score0.01217EPSS

Tenable Nessus•added 2026/06/03 12:0 a.m.•26 views

Oracle Linux 8 : gnutls (ELSA-2026-20611)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-20611 advisory. - Fix CVE-2026-33846 DTLS fragment reassembly, High, heap overwrite - Fix CVE-2026-42009 DTLS fragment reassembly, High, undefined behaviour - Fix...

9.8CVSS5.9AI score0.01227EPSS

Exploits1References12

Cvelist•added 2026/05/26 12:56 p.m.•40 views

CVE-2026-48131 VPND IKE Fragment Reassembly - Heap Out-of-Bounds Write via Sequence Number Zero

The VPN service may mishandle an unexpected IKE fragment value received on the IKE port 500/UDP during the early stage of a connection attempt. This can cause the service to terminate unexpectedly, resulting in denial of service temporary disruption of VPN-related functionality...

8.1CVSS0.02658EPSS

CVE•added 2026/05/26 12:56 p.m.•93 views

CVE-2026-48131

CVE-2026-48131 concerns a VPN service handling of an unexpected IKE fragment value received on UDP/500 during early connection. The connected CVE data from CVELIST explicitly identifies the root cause as a Heap Out-of-Bounds Write via Sequence Number Zero during IKE fragment reassembly. This issu...

8.1CVSS5.8AI score0.02658EPSS

RedHat Linux•added 2026/05/26 6:51 a.m.•10 views

gnutls: GnuTLS: Denial of Service via heap buffer overflow in DTLS handshake fragment reassembly

7.5CVSS6.1AI score0.01217EPSS

RedHat Linux•added 2026/05/26 6:40 a.m.•10 views

gnutls: GnuTLS: Denial of Service via heap buffer overflow in DTLS handshake fragment reassembly

7.5CVSS6.1AI score0.01217EPSS

AstraLinux•added 2026/05/20 5:53 a.m.•5 views

Astra Linux - уязвимость в linux-6.1, linux, linux-5.10, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: inet: inetdefrag: prevent sk from being released while still in use The functions iplocalout and others can pass skb-sk as a function argument. If the skb is a fragment and reassembly occurs before such a function call returns, t...

5.5CVSS6.1AI score0.0038EPSS

Exploits1References2

RedhatCVE•added 2026/05/15 6:18 p.m.•11 views

CVE-2026-42786

A flaw was found in bandit. A remote, unauthenticated attacker can exploit an Allocation of Resources Without Limits or Throttling vulnerability in the fragment reassembly path of the WebSocket connection handling. This allows the attacker to send an unbounded number of continuation frames, leadi...

8.7CVSS5.7AI score0.00549EPSS

Exploits0References7

OSV•added 2026/05/14 5:22 p.m.•18 views

CLSA-2026-1778774223 gnutls: Fix of CVE-2026-33845

CVE-2026-33845: fix DTLS handshake fragment reassembly integer underflow and heap overrun by tracking fraglength instead of endoffset...

9.1CVSS5.8AI score0.00776EPSS