CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerability has been resolved: net/sched: actmpls: Fixed the warning during failed attribute validation The 'TCAMPLSLABEL' attribute is of 'NLAU32' type, but has a validation type of 'NLAVALIDATEFUNCTION'. This is an invalid combination according to the commen...

7.8CVSS5.9AI score0.00022EPSS

SUSE CVE•added 2026/05/06 1:40 a.m.•4 views

SUSE CVE-2026-43042

In the Linux kernel, the following vulnerability has been resolved: mpls: add seqcount to protect the platformlabel,s pair The RCU-protected codepaths mplsforward, mplsdumproutes can have an inconsistent view of platformlabels vs platformlabel in case of a concurrent resize...

7.1CVSS5.7AI score0.00017EPSS

Exploits0References3

Tenable Nessus•added 2026/05/02 12:0 a.m.•1 views

Linux Distros Unpatched Vulnerability : CVE-2026-43042

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mpls: add seqcount to protect the platformlabel,s pair The RCU-protected codepaths mplsforward, mplsdumproutes can have an inconsistent view of platformlabels v...

RedhatCVE•added 2026/05/01 6:11 p.m.•1 views

Exploits0References4

CVE-2026-43042

A flaw was found in the Linux kernel's Multiprotocol Label Switching MPLS module. This vulnerability is caused by a race condition where concurrent operations on network label data can lead to inconsistent memory access. This can result in out-of-bounds memory reads or writes, potentially causing...

NVD•added 2026/05/01 3:16 p.m.•1 views

Exploits0References4

CVE-2026-43042

Cvelist•added 2026/05/01 2:15 p.m.•27 views

CVE-2026-43042 mpls: add seqcount to protect the platform_label{,s} pair

ATTACKERKB•added 2026/05/01 2:15 p.m.•0 views

CVE-2026-43042

5.8AI score0.00017EPSS

Exploits0References3Affected Software1

EUVD•added 2026/05/01 2:15 p.m.•1 views

EUVD-2026-26641

5.8AI score0.00017EPSS

Debian CVE•added 2026/05/01 2:15 p.m.•3 views

CVE-2026-43042

7.1CVSS5.7AI score0.00017EPSS

Exploits0

CVE•added 2026/05/01 2:15 p.m.•5 views

CVE-2026-43042

The CVE-2026-43042 issue affects the Linux kernel MPLS code. It describes a race condition where concurrent operations on platform label data can yield an inconsistent view during a resize of the platform_label tables, particularly in the RCU-protected paths mpls_forward and mpls_dump_routes unde...

Exploits0References2Affected Software1

CNNVD•added 2026/05/01 12:0 a.m.•4 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a lack of protection for platformlabel and platformlabel pairs in mpls during concurrent tuning, which could...

RedhatCVE•added 2026/04/27 10:49 a.m.•0 views

Exploits0References1

CVE-2026-31679

A flaw was found in the Linux kernel's openvswitch component. This vulnerability arises from improper validation of Multiprotocol Label Switching MPLS payload lengths during SET/SETMASKED actions. An attacker could potentially exploit this by providing malformed MPLS key data, leading to unexpect...

7.1CVSS5.4AI score0.00017EPSS

Exploits0References4

Microsoft CVE•added 2026/04/26 8:9 a.m.•2 views

openvswitch: validate MPLS set/set_masked payload length

...

7.1CVSS5.2AI score0.00017EPSS

Exploits0

NVD•added 2026/04/25 9:16 a.m.•0 views

CVE-2026-31679

In the Linux kernel, the following vulnerability has been resolved: openvswitch: validate MPLS set/setmasked payload length validateset accepted OVSKEYATTRMPLS as variable-sized payload for SET/SETMASKED actions. In action handling, OVS expects fixed-size MPLS key data struct ovskeympls. Use the...

CVE•added 2026/04/25 8:46 a.m.•10 views

Exploits0References8

CVE-2026-31679

Summary: CVE-2026-31679 affects the Linux kernel openvswitch code. The vulnerability arises from improper validation of MPLS payload lengths in SET/SET_MASKED actions: openvswitch accepted OVS_KEY_ATTR_MPLS as a variable-sized payload, while action handling expects fixed-size MPLS data (struct ov...

7.1CVSS5.3AI score0.00017EPSS

Exploits0References8Affected Software1

Cvelist•added 2026/04/25 8:46 a.m.•28 views

CVE-2026-31679 openvswitch: validate MPLS set/set_masked payload length

ATTACKERKB•added 2026/04/25 8:46 a.m.•1 views

Exploits0References8

CVE-2026-31679

5.3AI score0.00017EPSS

Exploits0References9Affected Software1

Debian CVE•added 2026/04/25 8:46 a.m.•2 views

CVE-2026-31679

7.1CVSS5.2AI score0.00017EPSS

Exploits0

Tenable Nessus•added 2026/04/25 12:0 a.m.•1 views

Linux Distros Unpatched Vulnerability : CVE-2026-31679

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - openvswitch: validate MPLS set/setmasked payload length validateset accepted OVSKEYATTRMPLS as variable-sized payload for SET/SETMASKED actions. In action...