CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4209 matches found

Tenable Nessus•added 2026/04/08 12:0 a.m.•2 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006772)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006772 advisory. In the Linux kernel, the following vulnerability has been resolved: ipv6: fix potential struct net leak in inet6rtmgetaddr It seems that if userspace provides a...

5.5CVSS5.8AI score0.00012EPSS

Exploits0References4

Vulnrichment•added 2026/04/07 2:21 p.m.•4 views

CVE-2026-35405 libp2p-rendezvous: Unlimited namespace registrations per peer enables OOM DoS on rendezvous servers

libp2p-rust is the official rust language Implementation of the libp2p networking stack. Prior to 0.17.1, libp2p-rendezvous server has no limit on how many namespaces a single peer can register. A malicious peer can just keep registering unique namespaces in a loop and the server happily accepts...

7.5CVSS5.9AI score0.00077EPSS

Exploits1References1

Tenable Nessus•added 2026/04/05 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2026-31403

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - NFSD: Hold net reference for the lifetime of /proc/fs/nfs/exports fd The /proc/fs/nfs/exports proc entry is created at module init and persists for the module's...

7.8CVSS5.8AI score0.00018EPSS

Exploits0References3

OSV•added 2026/04/04 6:33 a.m.•4 views

GHSA-CQFX-GF56-8X59 libp2p-rendezvous: Unlimited namespace registrations per peer enables OOM DoS on rendezvous servers

Summary found that libp2p-rendezvous server has no limit on how many namespaces a single peer can register. a malicious peer can just keep registering unique namespaces in a loop and the server happily accepts every single one allocating memory for each registration with no pushback. keep doing...

7.5CVSS5.5AI score0.00077EPSS

Exploits1References3

Github Security Blog•added 2026/04/04 6:33 a.m.•6 views

libp2p-rendezvous: Unlimited namespace registrations per peer enables OOM DoS on rendezvous servers

7.5CVSS5.5AI score0.00077EPSS

Exploits1References3Affected Software1

Positive Technologies•added 2026/04/04 12:0 a.m.•3 views

PT-2026-30324

Name of the Vulnerable Software and Affected Versions libp2p-rendezvous versions prior to 0.56.1 Description The libp2p-rendezvous server is susceptible to an Out-of-Memory OOM Denial of Service DoS condition. The server does not limit the number of namespaces a single peer can register. A...

7.5CVSS5.8AI score0.00077EPSS

Exploits1References6

SUSE CVE•added 2026/04/03 11:25 p.m.•3 views

SUSE CVE-2026-31403

In the Linux kernel, the following vulnerability has been resolved: NFSD: Hold net reference for the lifetime of /proc/fs/nfs/exports fd The /proc/fs/nfs/exports proc entry is created at module init and persists for the module's lifetime. exportsprocopen captures the caller's current network...

7CVSS5.7AI score0.00018EPSS

Exploits0References23

EUVD•added 2026/04/03 6:31 p.m.•0 views

EUVD-2026-18788

5.8AI score0.00018EPSS

Exploits0References7

NVD•added 2026/04/03 4:16 p.m.•1 views

CVE-2026-31403

7.8CVSS0.00018EPSS

Exploits0References7

OSV•added 2026/04/03 4:16 p.m.•2 views

UBUNTU-CVE-2026-31403

7.8CVSS5.7AI score0.00018EPSS

Exploits0References9

UbuntuCve•added 2026/04/03 4:16 p.m.•0 views

CVE-2026-31403

7.8CVSS5.8AI score0.00018EPSS

Exploits0References8

CVE•added 2026/04/03 3:16 p.m.•9 views

CVE-2026-31403

CVE-2026-31403 is a Linux kernel vulnerability affecting NFSD where a proc entry (/proc/fs/nfs/exports) captured the caller’s network namespace without holding a reference. If the namespace is torn down after opening the exports fd (e.g., container destruction with setns), nfsd_net_exit() may fre...

7.8CVSS5.8AI score0.00018EPSS

Exploits0References7Affected Software1

Cvelist•added 2026/04/03 3:16 p.m.•17 views

CVE-2026-31403 NFSD: Hold net reference for the lifetime of /proc/fs/nfs/exports fd

7.8CVSS0.00018EPSS

Exploits0References7

ATTACKERKB•added 2026/04/03 3:16 p.m.•0 views

CVE-2026-31403

5.7AI score0.00018EPSS

Exploits0References8Affected Software1

CNNVD•added 2026/04/03 12:0 a.m.•4 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the lack of network namespace references, potentially allowing access to already released cache...

7.8CVSS5.8AI score0.00018EPSS

Exploits0References6

RedhatCVE•added 2026/04/02 11:1 p.m.•1 views

CVE-2026-5199

A writer role user in an attacker-controlled namespace could signal, delete, and reset workflows or activities in a victim namespace on the same cluster. Exploitation requires the attacker to know or guess specific victim workflow IDs and, for signal operations, signal names. This was due to a bu...

2.3CVSS6AI score0.00058EPSS

Exploits0References1

EUVD•added 2026/04/02 3:31 p.m.•2 views

EUVD-2026-18210

A flaw was found in Keycloak. The SingleUseObjectProvider, a global key-value store, lacks proper type and namespace isolation. This vulnerability allows an attacker to delete arbitrary single-use entries, which can enable the replay of consumed action tokens, such as password reset links. This...

5.3CVSS5.9AI score0.00046EPSS

Exploits0References5

OSV•added 2026/04/02 3:31 p.m.•2 views

GHSA-RX66-HJ7G-28H7 Keycloak: Replay of action tokens via improper handling of single-use entries

5.3CVSS6AI score0.00046EPSS

Exploits0References10