CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

21991 matches found

RedhatCVE•added 2026/04/24 7:16 p.m.•5 views

CVE-2026-31595

A flaw was found in the Linux kernel's pci-epf-vntb module. This vulnerability occurs due to improper handling of the cmdhandler work during the epfntbepccleanup process. If the delayed work is not disabled before clearing BAR mappings and doorbells, the handler can attempt to access resources th...

5.5CVSS5.4AI score0.00123EPSS

Exploits0References4

RedhatCVE•added 2026/04/24 4:57 p.m.•3 views

CVE-2026-31544

A flaw was found in the Linux kernel's armscmi firmware component. The scmieventhandlergetops helper function can return a NULL pointer when an event handler is not found or created, instead of an expected error pointer. This improper handling of the error path leads to a NULL dereference...

5.5CVSS5.4AI score0.00121EPSS

Exploits0References4

OSV•added 2026/04/24 3:39 p.m.•2 views

GHSA-F5V4-2WR6-HQMG russh has pre-auth DoS via unbounded allocation in its keyboard-interactive auth handler

Summary A pre-authentication denial-of-service vulnerability exists in the server's keyboard-interactive authentication handler. A malicious client can crash any russh-based server that implements keyboard-interactive auth e.g., for 2FA/TOTP with a single malformed packet, requiring no credential...

7.5CVSS5.5AI score0.00481EPSS

Exploits1References5

OSV•added 2026/04/24 3:16 p.m.•3 views

DEBIAN-CVE-2026-31615

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: renesasusb3: validate endpoint index in standard request handlers The GETSTATUS and SET/CLEARFEATURE handlers extract the endpoint number from the host-supplied wIndex without any sort of validation. Fix this up by...

5.5CVSS5.3AI score0.00125EPSS

Exploits0References1

OSV•added 2026/04/24 3:16 p.m.•2 views

DEBIAN-CVE-2026-31595

In the Linux kernel, the following vulnerability has been resolved: PCI: endpoint: pci-epf-vntb: Stop cmdhandler work in epfntbepccleanup Disable the delayed work before clearing BAR mappings and doorbells to avoid running the handler after resources have been torn down. Unable to handle kernel...

5.5CVSS5.3AI score0.00123EPSS

Exploits0References1

NVD•added 2026/04/24 3:16 p.m.•3 views

CVE-2026-31595

5.5CVSS0.00123EPSS

Exploits0References7

NVD•added 2026/04/24 3:16 p.m.•0 views

CVE-2026-31544

In the Linux kernel, the following vulnerability has been resolved: firmware: armscmi: Fix NULL dereference on notify error path Since commit b5daf93b809d1 "firmware: armscmi: Avoid notifier registration for unsupported events" the call chains leading to the helper scmieventhandlergetops expect a...

5.5CVSS0.00121EPSS

Exploits0References3

UbuntuCve•added 2026/04/24 3:16 p.m.•2 views

CVE-2026-31544

5.5CVSS5.3AI score0.00121EPSS

Exploits0References5

CVE•added 2026/04/24 2:42 p.m.•15 views

CVE-2026-31629

The CVE-2026-31629 vulnerability affects the Linux kernel NFC LLCP subsystem. Specifically, in nfc_llcp_recv_hdlc() and nfc_llcp_recv_disc(), when the socket state is LLCP_CLOSED, the code correctly releases resources but lacks an early return, causing fall-through to subsequent release calls. Th...

8.8CVSS5.5AI score0.00224EPSS

Exploits0References9Affected Software1

CVE•added 2026/04/24 2:42 p.m.•16 views

CVE-2026-31622

Summary (CVE-2026-31622): In the Linux kernel NFC digital subsystem, the NFC‑A cascade depth handling in digital_in_recv_sdd_res() could allow a malicious peer to keep sending cascade responses, causing writes past the allocated nfc_target buffer (heap overflow) by exceeding the cascade depth. Th...

8.8CVSS5.4AI score0.00281EPSS

Exploits0References9Affected Software1

Cvelist•added 2026/04/24 2:42 p.m.•30 views

CVE-2026-31622 NFC: digital: Bounds check NFC-A cascade depth in SDD response handler

In the Linux kernel, the following vulnerability has been resolved: NFC: digital: Bounds check NFC-A cascade depth in SDD response handler The NFC-A anti-collision cascade in digitalinrecvsddres appends 3 or 4 bytes to target-nfcid1 on each round, but the number of cascade rounds is controlled...

8.8CVSS0.00281EPSS

Exploits0References9

Debian CVE•added 2026/04/24 2:42 p.m.•3 views

CVE-2026-31622

8.8CVSS5.3AI score0.00281EPSS

Exploits0

CVE•added 2026/04/24 2:42 p.m.•10 views

CVE-2026-31595

CVE-2026-31595 affects the Linux kernel PCI endpoint driver for the vntb (pci-epf-vntb) where the cleanup path epf_ntb_epc_cleanup does not disable the delayed work before clearing BAR mappings and doorbells. The referenced details describe that if the delayed work isn’t disabled, the cmd_handler...

5.5CVSS5.4AI score0.00123EPSS

Exploits0References7Affected Software1

EUVD•added 2026/04/24 2:42 p.m.•2 views

EUVD-2026-25488

5.4AI score0.00123EPSS

Exploits0References4

CVE•added 2026/04/24 2:33 p.m.•4 views

CVE-2026-31544

The CVE-2026-31544 issue affects the Linux kernel firmware component arm_scmi, where the helper __scmi_event_handler_get_ops could yield a NULL instead of an ERR_PTR when an event handler is missing or not created. This caused a NULL dereference in the notify error path, potentially leading to a ...

5.5CVSS5.3AI score0.00121EPSS

Exploits0References3Affected Software1