CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2026/05/27 2:16 p.m.•6 views

UBUNTU-CVE-2025-71303

In the Linux kernel, the following vulnerability has been resolved: accel/amdxdna: Fix race condition when checking rpmon When autosuspend is triggered, driver rpmon flag is set to indicate that a suspend/resume is already in progress. However, when a userspace application submits a command durin...

5.8AI score0.00207EPSS

OSV•added 2026/05/27 2:16 p.m.•4 views

UBUNTU-CVE-2026-45854

In the Linux kernel, the following vulnerability has been resolved: crypto: inside-secure/eip93 - unregister only available algorithm EIP93 has an options register. This register indicates which crypto algorithms are implemented in silicon. Supported algorithms are registered on this basis...

5.7AI score0.00198EPSS

OSV•added 2026/05/27 2:16 p.m.•4 views

UBUNTU-CVE-2026-45855

In the Linux kernel, the following vulnerability has been resolved: ata: libata-scsi: avoid Non-NCQ command starvation When a non-NCQ command is issued while NCQ commands are being executed, atascsiqcissue indicates to the SCSI layer that the command issuing should be deferred by returning...

5.8AI score0.00215EPSS

OSV•added 2026/05/27 2:16 p.m.•4 views

UBUNTU-CVE-2026-45856

In the Linux kernel, the following vulnerability has been resolved: RDMA/uverbs: Validate wqesize before using it in ibuverbspostsend ibuverbspostsend uses cmd.wqesize from userspace without any validation before passing it to kmalloc and using the allocated buffer as struct ibuverbssendwr. If a...

7.1CVSS5.8AI score0.00164EPSS

CVE•added 2026/05/27 12:59 p.m.•20 views

CVE-2026-46103

In the Linux kernel, a fix for devres lifetime in the can: ucan path addresses memory-management where USB driver resources tied to an interface were not properly released when the driver is unbound (e.g., probe deferral or config changes). The issue affects USB drivers binding to interfaces and ...

5.9AI score0.00164EPSS

EUVD•added 2026/05/27 12:59 p.m.•8 views

EUVD-2026-32486

In the Linux kernel, the following vulnerability has been resolved: can: ucan: fix devres lifetime USB drivers bind to USB interfaces and any device managed resources should have their lifetime tied to the interface rather than parent USB device. This avoids issues like memory leaks when drivers...

5.9AI score0.00164EPSS

ATTACKERKB•added 2026/05/27 12:59 p.m.•6 views

CVE-2026-46103

5.9AI score0.00164EPSS

Exploits0References9Affected Software1

EUVD•added 2026/05/27 12:59 p.m.•9 views

EUVD-2026-32485

In the Linux kernel, the following vulnerability has been resolved: net: strparser: fix skbhead leak in strpabortstrp When the stream parser is aborted, for example after a message assembly timeout, it can still hold a reference to a partially assembled message in strp-skbhead. That skb is not...

5.8AI score0.00501EPSS

Cvelist•added 2026/05/27 12:59 p.m.•41 views

CVE-2026-46102 net: strparser: fix skb_head leak in strp_abort_strp()

7.5CVSS0.00501EPSS

CVE•added 2026/05/27 12:59 p.m.•26 views

CVE-2026-46102

The CVE-2026-46102 issue affects the Linux kernel network stream parser (net: strparser). When the stream parser is aborted (e.g., after a message assembly timeout), the partially assembled message referenced by strp->skb_head is not released in strp_abort_strp(), causing a memory leak that co...

7.5CVSS5.8AI score0.00501EPSS

ATTACKERKB•added 2026/05/27 12:59 p.m.•8 views

CVE-2026-46101

In the Linux kernel, the following vulnerability has been resolved: netfilter: reject zero shift in nftbitwise Reject zero shift operands for nftbitwise left and right shift expressions during initialization. The carry propagation logic computes the carry from the adjacent 32-bit word using...

Exploits0References9Affected Software1

EUVD•added 2026/05/27 12:59 p.m.•10 views

EUVD-2026-32484

ATTACKERKB•added 2026/05/27 12:59 p.m.•9 views

CVE-2026-46100

In the Linux kernel, the following vulnerability has been resolved: fs: afs: revert mmapprepare change Partially reverts commit 9d5403b1036c "fs: convert most other genericfilemmap users to .mmapprepare". This is because the .mmap invocation establishes a refcount, but .mmapprepare is called at a...

5.8AI score0.00127EPSS

Exploits0References4Affected Software1

CVE•added 2026/05/27 12:59 p.m.•31 views

CVE-2026-46099

The CVE-2026-46099 entry describes a use-after-free race in Linux kernel IPv6 handling for seg6 and rpl lightweight tunnels. A NOREF destination cached during ip6_route_input() can be freed by a concurrent FIB lookup on a shared nexthop under PREEMPT_RT, leading to a WARN or potential instability...

8.1CVSS5.8AI score0.00445EPSS

Exploits0References7

Cvelist•added 2026/05/27 12:59 p.m.•40 views

CVE-2026-46099 net: ipv6: fix NOREF dst use in seg6 and rpl lwtunnels

In the Linux kernel, the following vulnerability has been resolved: net: ipv6: fix NOREF dst use in seg6 and rpl lwtunnels seg6inputcore and rplinput call ip6routeinput which sets a NOREF dst on the skb, then pass it to dstcachesetip6 invoking dsthold unconditionally. On PREEMPTRT, ksoftirqd is...

8.1CVSS0.00445EPSS

Exploits0References7

EUVD•added 2026/05/27 12:59 p.m.•8 views

EUVD-2026-32482

5.8AI score0.00445EPSS

CVE•added 2026/05/27 12:59 p.m.•24 views

CVE-2026-46098

CVE-2026-46098 affects the Linux kernel’s CAIF net subsystem. The issue arises when caif_connect() tears down a client via caif_disconnect_client() and caif_free_client(), where caif_free_client() releases the service layer pointer (adap_layer->dn) but leaves the pointer stale. If the socket i...

ATTACKERKB•added 2026/05/27 12:59 p.m.•4 views

CVE-2026-46098

In the Linux kernel, the following vulnerability has been resolved: net: caif: clear client service pointer on teardown caifconnect can tear down an existing client after remote shutdown by calling caifdisconnectclient followed by caiffreeclient. caiffreeclient releases the service layer referenc...

5.7AI score0.00177EPSS

Exploits0References9Affected Software1

EUVD•added 2026/05/27 12:59 p.m.•10 views

EUVD-2026-32481