Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1217 matches found

CVE
CVEadded 2026/05/01 12:30 a.m.24 views

CVE-2026-7518

Open5GS AMF SBI Endpoint (named path /namf-callback/v1/{id}/sdmsubscription-notify) is affected up to version 2.7.7. The vulnerability arises in amf_namf_callback_handle_sdm_data_change_notify where manipulation of changeItem.newValue leads to denial of service. The issue can be triggered remotel...

5.3CVSS4.9AI score0.00364EPSS
Exploits0References5
CNNVD
CNNVDadded 2026/05/01 12:0 a.m.6 views

Open5GS 安全漏洞

Open5GS is an open-source implementation of 5G Core and EPC in C language, which serves as the core network for LTE/NR networks. Versions of Open5GS 2.7.7 and earlier contain security vulnerabilities. These vulnerabilities stem from the amfnamfcallbackhandlesdmdatachangenotify function in the AMF...

5.3CVSS5.8AI score0.00364EPSS
Exploits0References1
NVD
NVDadded 2026/04/24 3:16 p.m.1 views

CVE-2026-31544

In the Linux kernel, the following vulnerability has been resolved: firmware: armscmi: Fix NULL dereference on notify error path Since commit b5daf93b809d1 "firmware: armscmi: Avoid notifier registration for unsupported events" the call chains leading to the helper scmieventhandlergetops expect a...

5.5CVSS0.00121EPSS
Exploits0References3
OSV
OSVadded 2026/04/24 3:16 p.m.3 views

DEBIAN-CVE-2026-31544

In the Linux kernel, the following vulnerability has been resolved: firmware: armscmi: Fix NULL dereference on notify error path Since commit b5daf93b809d1 "firmware: armscmi: Avoid notifier registration for unsupported events" the call chains leading to the helper scmieventhandlergetops expect a...

5.5CVSS5.3AI score0.00121EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/04/24 2:33 p.m.29 views

CVE-2026-31544 firmware: arm_scmi: Fix NULL dereference on notify error path

In the Linux kernel, the following vulnerability has been resolved: firmware: armscmi: Fix NULL dereference on notify error path Since commit b5daf93b809d1 "firmware: armscmi: Avoid notifier registration for unsupported events" the call chains leading to the helper scmieventhandlergetops expect a...

0.00121EPSS
Exploits0References3
EUVD
EUVDadded 2026/04/24 2:33 p.m.3 views

EUVD-2026-25437

In the Linux kernel, the following vulnerability has been resolved: firmware: armscmi: Fix NULL dereference on notify error path Since commit b5daf93b809d1 "firmware: armscmi: Avoid notifier registration for unsupported events" the call chains leading to the helper scmieventhandlergetops expect a...

5.3AI score0.00121EPSS
Exploits0References3
CVE
CVEadded 2026/04/24 2:33 p.m.5 views

CVE-2026-31544

The CVE-2026-31544 issue affects the Linux kernel firmware component arm_scmi, where the helper __scmi_event_handler_get_ops could yield a NULL instead of an ERR_PTR when an event handler is missing or not created. This caused a NULL dereference in the notify error path, potentially leading to a ...

5.5CVSS5.3AI score0.00121EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/04/24 2:33 p.m.2 views

CVE-2026-31544

In the Linux kernel, the following vulnerability has been resolved: firmware: armscmi: Fix NULL dereference on notify error path Since commit b5daf93b809d1 "firmware: armscmi: Avoid notifier registration for unsupported events" the call chains leading to the helper scmieventhandlergetops expect a...

5.3AI score0.00121EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologiesadded 2026/04/24 12:0 a.m.7 views

PT-2026-34896

In the Linux kernel, the following vulnerability has been resolved: firmware: arm scmi: Fix NULL dereference on notify error path Since commit b5daf93b809d1 "firmware: arm scmi: Avoid notifier registration for unsupported events" the call chains leading to the helper scmi event handler get ops...

5.3AI score0.00121EPSS
Exploits0References4
SUSE CVE
SUSE CVEadded 2026/04/23 1:24 a.m.6 views

SUSE CVE-2026-33608

An attacker can send a notify request that causes a new secondary domain to be added to the bind backend, but causes said backend to update its configuration to an invalid one, leading to the backend no longer able to run on the next restart, requiring manual operation to fix it...

9.8CVSS5.8AI score0.00383EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2026/04/23 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-33608

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An attacker can send a notify request that causes a new secondary domain to be added to the bind backend, but causes said backend to update its configuration to...

9.8CVSS5.8AI score0.00383EPSS
Exploits0References3
Snyk
Snykadded 2026/04/22 5:6 p.m.5 views

Improper Check for Unusual or Exceptional Conditions

Overview Affected versions of this package are vulnerable to Improper Check for Unusual or Exceptional Conditions via the PolicyDataSubsToNotifyPost process. An attacker can create unintended notification subscriptions with invalid, empty, or partially processed input by sending malformed or...

6.9CVSS5.8AI score0.09955EPSS
Exploits0References2
EUVD
EUVDadded 2026/04/22 3:31 p.m.3 views

EUVD-2026-24945

An attacker can send a notify request that causes a new secondary domain to be added to the bind backend, but causes said backend to update its configuration to an invalid one, leading to the backend no longer able to run on the next restart, requiring manual operation to fix it...

7.4CVSS5.8AI score0.00383EPSS
Exploits0References2
NVD
NVDadded 2026/04/22 2:16 p.m.3 views

CVE-2026-33608

An attacker can send a notify request that causes a new secondary domain to be added to the bind backend, but causes said backend to update its configuration to an invalid one, leading to the backend no longer able to run on the next restart, requiring manual operation to fix it...

9.8CVSS0.00383EPSS
Exploits0References1
OSV
OSVadded 2026/04/22 2:16 p.m.3 views

DEBIAN-CVE-2026-33608

An attacker can send a notify request that causes a new secondary domain to be added to the bind backend, but causes said backend to update its configuration to an invalid one, leading to the backend no longer able to run on the next restart, requiring manual operation to fix it...

9.8CVSS5.3AI score0.00383EPSS
Exploits0References1
NVD
NVDadded 2026/04/22 2:16 p.m.3 views

CVE-2026-31446

In the Linux kernel, the following vulnerability has been resolved: ext4: fix use-after-free in updatesuperwork when racing with umount Commit b98535d09179 "ext4: fix bugon in startthishandle during umount filesystem" moved ext4unregistersysfs before flushing ssbupdwork to prevent new error work...

7.8CVSS0.00131EPSS
Exploits0References7
UbuntuCve
UbuntuCveadded 2026/04/22 2:16 p.m.5 views

CVE-2026-33608

An attacker can send a notify request that causes a new secondary domain to be added to the bind backend, but causes said backend to update its configuration to an invalid one, leading to the backend no longer able to run on the next restart, requiring manual operation to fix it...

9.8CVSS5.8AI score0.00383EPSS
Exploits0References2
OSV
OSVadded 2026/04/22 2:16 p.m.1 views

UBUNTU-CVE-2026-33608

An attacker can send a notify request that causes a new secondary domain to be added to the bind backend, but causes said backend to update its configuration to an invalid one, leading to the backend no longer able to run on the next restart, requiring manual operation to fix it...

9.8CVSS5.8AI score0.00383EPSS
Exploits0References3
Cvelist
Cvelistadded 2026/04/22 2:0 p.m.27 views

CVE-2026-33608 Incomplete domain name sanitization during

An attacker can send a notify request that causes a new secondary domain to be added to the bind backend, but causes said backend to update its configuration to an invalid one, leading to the backend no longer able to run on the next restart, requiring manual operation to fix it...

7.4CVSS0.00383EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/04/22 2:0 p.m.3 views

CVE-2026-33608 Incomplete domain name sanitization during

An attacker can send a notify request that causes a new secondary domain to be added to the bind backend, but causes said backend to update its configuration to an invalid one, leading to the backend no longer able to run on the next restart, requiring manual operation to fix it...

7.4CVSS5.8AI score0.00383EPSS
Exploits0References1
Rows per page
Query Builder