Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

62858 matches found

CVE
CVEadded 2026/05/06 11:32 a.m.14 views

CVE-2025-71291

The CVE-2025-71291 issue affects the Linux kernel bcm_vk_read() function, where a NULL entry dereference could occur if entry is NULL and rc is -EMSGSIZE, potentially causing system instability or DoS. The fix copies fields (to_h_msg, usr_msg_id, to_h_blks) from the iterator into temporary variab...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References6Affected Software1
Debian CVE
Debian CVEadded 2026/05/06 11:32 a.m.5 views

CVE-2025-71291

In the Linux kernel, the following vulnerability has been resolved: misc: bcmvk: Fix possible null-pointer dereferences in bcmvkread In the function bcmvkread, the pointer entry is checked, indicating that it can be NULL. If entry is NULL and rc is set to -EMSGSIZE, the following code may cause...

5.5CVSS5.7AI score0.00123EPSS
Exploits0
CVE
CVEadded 2026/05/06 11:32 a.m.20 views

CVE-2025-71285

Summary of the CVE-2025-71285 cluster: The Linux kernel’s net/qrtr MHI auto_queue feature for IPCR DL channels is being removed. The race occurs when the MHI stack can call the DL path callback before the QRTR client driver is fully initialized, risking NULL pointer dereferences. The fix disables...

5.5CVSS5.8AI score0.00126EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/05/06 11:32 a.m.7 views

CVE-2025-71285

In the Linux kernel, the following vulnerability has been resolved: net: qrtr: Drop the MHI autoqueue feature for IPCR DL channels MHI stack offers the 'autoqueue' feature, which allows the MHI stack to auto queue the buffers for the RX path DL channel. Though this feature simplifies the client...

5.8AI score0.00126EPSS
Exploits0References4Affected Software1
Cvelist
Cvelistadded 2026/05/06 11:29 a.m.57 views

CVE-2026-43282 RDMA/ionic: Fix potential NULL pointer dereference in ionic_query_port

In the Linux kernel, the following vulnerability has been resolved: RDMA/ionic: Fix potential NULL pointer dereference in ionicqueryport The function ionicqueryport calls ibdevicegetnetdev without checking the return value which could lead to NULL pointer dereference, Fix it by checking the retur...

0.00112EPSS
Exploits0References3
CVE
CVEadded 2026/05/06 11:29 a.m.14 views

CVE-2026-43282

CVE-2026-43282 affects the Linux kernel, specifically the RDMA ionic driver. The issue is in ionic_query_port(), which calls ib_device_get_netdev() without validating the return value, risking a NULL pointer dereference. The documented fix is to check the returned netdev and return -ENODEV if it ...

5.5CVSS5.7AI score0.00112EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/05/06 11:29 a.m.3 views

CVE-2026-43282

In the Linux kernel, the following vulnerability has been resolved: RDMA/ionic: Fix potential NULL pointer dereference in ionicqueryport The function ionicqueryport calls ibdevicegetnetdev without checking the return value which could lead to NULL pointer dereference, Fix it by checking the retur...

5.7AI score0.00112EPSS
Exploits0References4Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/05/06 11:28 a.m.5 views

CVE-2026-43271

In the Linux kernel, the following vulnerability has been resolved: md-cluster: fix NULL pointer dereference in processmetadataupdate The function processmetadataupdate blindly dereferences the 'thread' pointer acquired via rcudereferenceprotected within the waitevent macro. While the code commen...

5.8AI score0.00116EPSS
Exploits0References6Affected Software1
Cvelist
Cvelistadded 2026/05/06 11:28 a.m.28 views

CVE-2026-43271 md-cluster: fix NULL pointer dereference in process_metadata_update

In the Linux kernel, the following vulnerability has been resolved: md-cluster: fix NULL pointer dereference in processmetadataupdate The function processmetadataupdate blindly dereferences the 'thread' pointer acquired via rcudereferenceprotected within the waitevent macro. While the code commen...

0.00116EPSS
Exploits0References5
Debian CVE
Debian CVEadded 2026/05/06 11:28 a.m.4 views

CVE-2026-43271

In the Linux kernel, the following vulnerability has been resolved: md-cluster: fix NULL pointer dereference in processmetadataupdate The function processmetadataupdate blindly dereferences the 'thread' pointer acquired via rcudereferenceprotected within the waitevent macro. While the code commen...

5.5CVSS5.8AI score0.00116EPSS
Exploits0
CVE
CVEadded 2026/05/06 11:28 a.m.10 views

CVE-2026-43271

CVE-2026-43271 involves the Linux kernel md-cluster module where a race during MD array startup can cause a NULL pointer dereference in process_metadata_update when a METADATA_UPDATED message arrives before mddev->thread is initialized. The root cause is the code path that dereferences the thr...

5.5CVSS5.8AI score0.00116EPSS
Exploits0References5Affected Software1
CVE
CVEadded 2026/05/06 11:28 a.m.15 views

CVE-2026-43213

The CVE-2026-43213 issue centers on the Linux kernel WiFi driver rtw89_pci, where an abnormal TX release report sequence number can cause an out-of-bounds access to wd_ring->pages, leading to a NULL pointer dereference and kernel crash (DoS). Public reports confirm this affects the rtw89_pci c...

7.5CVSS5.8AI score0.0022EPSS
Exploits0References3Affected Software1
Cvelist
Cvelistadded 2026/05/06 11:28 a.m.30 views

CVE-2026-43213 wifi: rtw89: pci: validate sequence number of TX release report

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: pci: validate sequence number of TX release report Hardware rarely reports abnormal sequence number in TX release report, which will access out-of-bounds of wdring-pages array, causing NULL pointer dereference. BUG:...

7.5CVSS0.0022EPSS
Exploits0References3
ATTACKERKB
ATTACKERKBadded 2026/05/06 11:28 a.m.9 views

CVE-2026-43213

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: pci: validate sequence number of TX release report Hardware rarely reports abnormal sequence number in TX release report, which will access out-of-bounds of wdring-pages array, causing NULL pointer dereference. BUG:...

5.7AI score0.0022EPSS
Exploits0References4Affected Software1
Cvelist
Cvelistadded 2026/05/06 11:28 a.m.29 views

CVE-2026-43207 media: mtk-mdp: Fix error handling in probe function

In the Linux kernel, the following vulnerability has been resolved: media: mtk-mdp: Fix error handling in probe function Add mtkmdpunregisterm2mdevice on the error handling path to prevent resource leak. Add check for the return value of vpugetplatdevice to prevent null pointer dereference. And...

7.8CVSS0.00139EPSS
Exploits0References8
CVE
CVEadded 2026/05/06 11:28 a.m.13 views

CVE-2026-43207

The vulnerability CVE-2026-43207 affects the Linux kernel mtk-mdp media driver. Root cause: improper error handling in the probe function can cause resource leaks; a missing check for vpu_get_plat_device() may dereference a NULL and the function increases the platform device reference count, risk...

7.8CVSS5.8AI score0.00139EPSS
Exploits0References8Affected Software1
CVE
CVEadded 2026/05/06 11:27 a.m.13 views

CVE-2026-43173

CVE-2026-43173 is a Linux kernel vulnerability in the net: ethernet: xscale driver where ixp46x_ptp_find() is invoked unconditionally from ixp4xx_get_ts_info(), even on systems without ixp46x support. This NULL pointer dereference can lead to a kernel crash/DoS when reading PTP-related info via e...

5.5CVSS5.8AI score0.00127EPSS
Exploits0References5Affected Software1
CVE
CVEadded 2026/05/06 11:27 a.m.8 views

CVE-2026-43164

CVE-2026-43164 affects the Linux kernel UDP-Lite implementation. The issue is a null-pointer dereference in __udp_enqueue_schedule_skb() triggered during UDP-Lite socket initialization, as reported by syzbot. Post-commit changes allow udp_lib_init_sock(), udp_init_sock(), and udpv6_init_sock() to...

7.5CVSS5.8AI score0.00451EPSS
Exploits0References3Affected Software1
Cvelist
Cvelistadded 2026/05/06 11:27 a.m.23 views

CVE-2026-43164 udplite: Fix null-ptr-deref in __udp_enqueue_schedule_skb().

In the Linux kernel, the following vulnerability has been resolved: udplite: Fix null-ptr-deref in udpenqueuescheduleskb. syzbot reported null-ptr-deref of udpsksk-udpprodqueue. 0 Since the cited commit, udplibinitsock can fail, as can udpinitsock and udpv6initsock. Let's handle the error in...

7.5CVSS0.00451EPSS
Exploits0References3
Debian CVE
Debian CVEadded 2026/05/06 11:27 a.m.4 views

CVE-2026-43164

In the Linux kernel, the following vulnerability has been resolved: udplite: Fix null-ptr-deref in udpenqueuescheduleskb. syzbot reported null-ptr-deref of udpsksk-udpprodqueue. 0 Since the cited commit, udplibinitsock can fail, as can udpinitsock and udpv6initsock. Let's handle the error in...

7.5CVSS5.7AI score0.00451EPSS
Exploits0
Rows per page
Query Builder