CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 5 days ago•9 views

EUVD-2026-37804

In SignalRGB versions prior to 1.3.7.0, seven of the thirteen IOCTL handlers dereference the SystemBuffer pointer without first verifying that it is non-NULL. Sending an IOCTL with an empty input buffer causes a NULL pointer dereference, resulting in a kernel crash...

5.5AI score0.00278EPSS

Tenable Nessus•added 5 days ago•8 views

Siemens RUGGEDCOM RST2428P Improper Input Validation (CVE-2026-23238)

"In the Linux kernel, the following vulnerability has been resolved: romfs: check sbsetblocksize return value romfsfillsuper ignores the return value of sbsetblocksize, which can fail if the requested block size is incompatible with the block device's configuration. This can be triggered by setti...

5.5CVSS5.7AI score0.00189EPSS

Tenable Nessus•added 5 days ago•5 views

Siemens RUGGEDCOM RST2428P Improper Input Validation (CVE-2025-40254)

In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: remove never-working support for setting nsh fields The validation of the setnsh... action is completely wrong. It runs through the nshkeyputfromnlattr function that is the same function that validates NSH keys...

6AI score0.00195EPSS

NVD•added 6 days ago•10 views

CVE-2026-8050

7.5CVSS0.00278EPSS

Cvelist•added 6 days ago•17 views

CVE-2026-8050 CVE-2026-8050

0.00278EPSS

CVE•added 6 days ago•16 views

CVE-2026-8050

CVE-2026-8050 affects SignalRGB prior to 1.3.7.0: seven (out of sixteen) IOCTL handlers dereference SystemBuffer without validating non-NULL, causing a NULL pointer dereference and kernel crash when an IOCTL with an empty input buffer is sent. Mitigation is SignalRGB driver update to version 1.3....

7.5CVSS5.5AI score0.00278EPSS

RedHat Linux•added 6 days ago•3 views

kernel: ip6_tunnel: clear skb2->cb[] in ip4ip6_err()

9.8CVSS6.5AI score0.00514EPSS

CERT•added 6 days ago•6 views

SignalRGB kernel driver contains improper access control and IOCTL vulnerabilities

Overview The SignalRGB kernel driver, SignalIo.sys, contains two vulnerabilities involving improper access control and unsafe memory handling. The device object is created with an overly permissive Discretionary Access Control List DACL that allows user-mode processes to access privileged hardwar...

7.5CVSS5.5AI score0.00278EPSS

Exploits0

RedHat Linux•added 2026/06/11 11:46 a.m.•8 views

kernel: ipv6: use RCU in ip6_output()

A use-after-free flaw was found in ip6finishoutput2 in net/ipv6/ip6output.c in ipv6 access. This flaw could allow an attacker to crash the system at device disconnect. This vulnerability could even lead to a kernel information leak problem...

5.4AI score0.00188EPSS

RedHat Linux•added 2026/06/11 7:53 a.m.•3 views

kernel: ip6_tunnel: clear skb2->cb[] in ip4ip6_err()

9.8CVSS6.4AI score0.00514EPSS

EUVD•added 2026/06/11 12:32 a.m.•7 views

EUVD-2026-36151

An incorrect buffer size calculation in the epoch key generator in OpenVPN ovpn-dco-win version 2.0.0 through 2.8.3 allows a remote authenticated peer to trigger a heap-based buffer overflow and kernel memory corruption via a crafted data packet, resulting in a system crash denial of service...

5.6CVSS5.9AI score0.00148EPSS

Tenable Nessus•added 2026/06/10 12:0 a.m.•7 views

Linux Distros Unpatched Vulnerability : CVE-2026-46278

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/imagination: Fix segfault when updating ftrace mask Fix invalid data access by passing right data for debugfs entry. 171.549793 Unable to handle kernel NULL...

5.4AI score0.00155EPSS

SUSE CVE•added 2026/06/09 2:21 a.m.•8 views

SUSE CVE-2026-46276

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix zero-size GDS range init on RDNA4 RDNA4 GFX 12 hardware removes the GDS, GWS, and OA on-chip memory resources. The gfxv120 initialisation code correctly leaves adev-gds.gdssize, adev-gds.gwssize, and adev-gds.oasi...

4.1CVSS5.5AI score0.00177EPSS

CNNVD•added 2026/06/09 12:0 a.m.•11 views

FreeSWITCH 安全漏洞

FreeSWITCH is a free and open-source communication software developed by Anthony Minessale, an individual developer from the United States. This software can be used to create audio, video, and messaging-related products and applications. Prior to FreeSWITCH version 1.11.1, there were security...

7.5CVSS5.4AI score0.00414EPSS

RedhatCVE•added 2026/06/08 8:14 p.m.•8 views

CVE-2026-46276

A flaw was found in the Linux kernel's amdgpu graphics driver. This vulnerability occurs when the driver attempts to initialize zero-sized graphics memory resources on certain RDNA4 GFX 12 hardware. If a specific debugging option CONFIGDRMDEBUGMM is enabled in the kernel configuration, this...

5.5AI score0.00177EPSS

Exploits0References4

NVD•added 2026/06/08 5:16 p.m.•9 views

CVE-2026-46276

0.00177EPSS

Exploits0References8

Cvelist•added 2026/06/08 3:41 p.m.•37 views

CVE-2026-46276 drm/amdgpu: fix zero-size GDS range init on RDNA4

0.00177EPSS

Exploits0References8

RedhatCVE•added 2026/06/08 2:59 p.m.•8 views

CVE-2026-49494

Comodo Internet Security's firewall driver Inspect.sys contains an integer underflow in its IPv6 packet parser. The parser decrements an unsigned 64-bit payload-length value taken from the IPv6 fixed header's payload length field by the size of each IPv6 extension header without validating it, so...

8.7CVSS5.6AI score0.0044EPSS

CNNVD•added 2026/06/08 12:0 a.m.•4 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the amdgpu driver’s improper handling of initializing a zero-sized GDS range during RDNA4...

5.3AI score0.00177EPSS