CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9048 matches found

OSV•added 2026/02/14 4:15 p.m.•1 views

UBUNTU-CVE-2026-23162

In the Linux kernel, the following vulnerability has been resolved: drm/xe/nvm: Fix double-free on aux add failure After a successful auxiliarydeviceinit, auxdev-dev.release xenvmreleasedev is responsible for the kfreenvm. When there is failure with auxiliarydeviceadd, driver will call...

7.8CVSS5.7AI score0.00113EPSS

Exploits0References5

Cvelist•added 2026/02/14 4:1 p.m.•23 views

CVE-2026-23162 drm/xe/nvm: Fix double-free on aux add failure

0.00113EPSS

Exploits0References2

ATTACKERKB•added 2026/02/14 4:1 p.m.•2 views

CVE-2026-23162

5.1AI score0.00113EPSS

Exploits0References3Affected Software1

ATTACKERKB•added 2026/02/14 4:1 p.m.•5 views

CVE-2026-23160

In the Linux kernel, the following vulnerability has been resolved: octeonep: Fix memory leak in octepdevicesetup In octepdevicesetup, if octepctrlnetinit fails, the function returns directly without unmapping the mapped resources and freeing the allocated configuration memory. Fix this by jumpin...

5.3AI score0.00114EPSS

Exploits0References5Affected Software1

OSV•added 2026/02/14 4:1 p.m.•6 views

CVE-2026-23160 octeon_ep: Fix memory leak in octep_device_setup()

5.5CVSS5.3AI score0.00114EPSS

Exploits0References7

Cvelist•added 2026/02/14 4:1 p.m.•32 views

CVE-2026-23146 Bluetooth: hci_uart: fix null-ptr-deref in hci_uart_write_work

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hciuart: fix null-ptr-deref in hciuartwritework hciuartsetproto sets HCIUARTPROTOINIT before calling hciuartregisterdev, which calls proto-open to initialize hu-priv. However, if a TTY write wakeup occurs during this...

0.00123EPSS

Exploits0References7

EUVD•added 2026/02/14 4:1 p.m.•6 views

EUVD-2026-5891

5.2AI score0.00123EPSS

Exploits0References7

UbuntuCve•added 2026/02/14 3:16 p.m.•3 views

CVE-2026-23123

In the Linux kernel, the following vulnerability has been resolved: interconnect: debugfs: initialize srcnode and dstnode to empty strings The debugfscreatestr API assumes that the string pointer is either NULL or points to valid kmalloc memory. Leaving the pointer uninitialized can cause problem...

5.5CVSS5.7AI score0.00119EPSS

Exploits0References12

OSV•added 2026/02/14 3:16 p.m.•3 views

UBUNTU-CVE-2026-23123

5.5CVSS5.7AI score0.00119EPSS

Exploits0References15

OSV•added 2026/02/14 3:16 p.m.•7 views

UBUNTU-CVE-2026-23125

In the Linux kernel, the following vulnerability has been resolved: sctp: move SCTPCMDASSOCSHKEY right after SCTPCMDPEERINIT A null-ptr-deref was reported in the SCTP transmit path when SCTP-AUTH key initialization fails: ================================================================== KASAN:...

5.5CVSS5.7AI score0.00114EPSS

Exploits0References31

OSV•added 2026/02/14 3:16 p.m.•1 views

UBUNTU-CVE-2026-23117

In the Linux kernel, the following vulnerability has been resolved: ice: add missing icedeinithw in devlink reinit path devlink-reload results in iceinithw failed error, and then removing the ice driver causes a NULL pointer dereference. +0.102213 ice 0000:ca:00.0: iceinithw failed: -16...

5.5CVSS5.7AI score0.001EPSS

Exploits0References5

Debian CVE•added 2026/02/14 3:9 p.m.•5 views

CVE-2026-23125

5.5CVSS5.2AI score0.00114EPSS

Exploits0

Cvelist•added 2026/02/14 3:9 p.m.•25 views

CVE-2026-23125 sctp: move SCTP_CMD_ASSOC_SHKEY right after SCTP_CMD_PEER_INIT

0.00114EPSS

Exploits0References7

CVE•added 2026/02/14 3:9 p.m.•23 views

CVE-2026-23125

CVE-2026-23125 (Linux kernel SCTP) : A null-pointer dereference in the SCTP transmit path could occur when SCTP-AUTH key initialization fails during INIT_ACK processing. The issue arises because SCTP_CMD_ASSOC_SHKEY is executed after PEER_INIT and can leave asoc->shkey NULL if key setup fails,...

5.5CVSS5.3AI score0.00114EPSS

Exploits0References7Affected Software1

Vulnrichment•added 2026/02/14 3:9 p.m.•3 views

CVE-2026-23125 sctp: move SCTP_CMD_ASSOC_SHKEY right after SCTP_CMD_PEER_INIT

5.4AI score0.00114EPSS

Exploits0References7

EUVD•added 2026/02/14 3:9 p.m.•5 views

EUVD-2026-5913

5.2AI score0.00119EPSS

Exploits0References4

Cvelist•added 2026/02/14 3:9 p.m.•29 views

CVE-2026-23117 ice: add missing ice_deinit_hw() in devlink reinit path

0.001EPSS

Exploits0References2

CNNVD•added 2026/02/14 12:0 a.m.•5 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the failure to cancel the mloscanstartwk task. This vulnerability may lead to queuing after...

7.8CVSS7AI score0.0012EPSS

Exploits0References2

RedhatCVE•added 2026/02/13 7:18 p.m.•7 views

CVE-2026-26218

newbee-mall includes pre-seeded administrator accounts in its database initialization script. These accounts are provisioned with a predictable default password. Deployments that initialize or reset the database using the provided schema and fail to change the default administrative credentials m...

9.8CVSS5.5AI score0.00367EPSS

Exploits1References1

Cvelist•added 2026/02/13 12:0 a.m.•23 views

CVE-2025-70956

A State Pollution vulnerability was discovered in the TON Virtual Machine TVM before v2025.04. The issue exists in the RUNVM instruction logic VmState::runchildvm, which is responsible for initializing child virtual machines. The operation moves critical resources specifically libraries and log...

0.00455EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by