CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tenable Nessus•added 4 days ago•8 views

Linux Distros Unpatched Vulnerability : CVE-2026-53109

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - powerpc/pgtable-frag: Fix bad page state in ptefragdestroy powerpc uses ptfragrefcount as a reference counter for tracking it's pte and pmd page table fragments...

5.8AI score0.00161EPSS

Exploits0References4

CVE•added 5 days ago•4 views

CVE-2026-53057

The CVE-2026-53057 entry describes a Linux kernel IOMMU issue for RISCV: after updating DDT/PDT entries, the system must invalidate TLB and context cache entries. The fix adds riscv_iommu_iodir_iotinval() to perform the required IOTINVAL-based invalidations in accordance with the RISC-V IOMMU spe...

8.8CVSS5.7AI score0.00127EPSS

AstraLinux•added 2026/06/19 11:10 a.m.•3 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: arm64: Set UXN on swapper page tables This issue was accidentally fixed upstream via c3cee924bd85 "arm64: head: cover the entire kernel image in the initial ID map", as part of a major refactoring of the arm64 boot process. This...

5.5CVSS5.3AI score0.00169EPSS

AstraLinux•added 2026/06/19 11:10 a.m.•2 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: drm/panthor: Fixed UAF issues on kernel BO VA nodes. If the MMU is down, panthorvmunmaprange might return an error. We expect the page table to still be updated; if the MMU is blocked, the rest of the GPU should also be blocke...

5.3AI score0.00171EPSS

AstraLinux•added 2026/06/19 11:10 a.m.•5 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: mm/mremap: Fixed the WARN message emitted by uffd when remap events are disabled. Registering userfaultd on a VMA that spans at least one PMD, and then using mremap to remap that VMA, may trigger a WARN message when recovering fr...

5.5CVSS5.8AI score0.00119EPSS

AstraLinux•added 2026/06/19 11:10 a.m.•1 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: mm: Move page table sync declarations to linux/pgtable.h During our internal testing, we began observing intermittent boot failures when the machine uses 4-level paging and has a large amount of persistent memory: BUG: Unable to...

5.5CVSS6.8AI score0.00137EPSS

AstraLinux•added 2026/06/19 11:10 a.m.•5 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 5.15, and Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: mm/hugetlb: Fixed the issue where hugepmdunshare caused a race condition with GUP-fast. The hugepmdunshare function releases a reference to a page table that might have previously been shared across processes. This could...

4.7CVSS6.2AI score0.00111EPSS

NVD•added 2026/06/19 10:16 a.m.•14 views

CVE-2026-34192

Software installed and run as a non-privileged user may conduct improper GPU system calls to cause an error path leading to UAF of GPU page tables. The vulnerability allows physical memory allocated for MMU page tables to be used after being freed. This was caused by an error path that would not...

7.7CVSS0.0011EPSS

Cvelist•added 2026/06/19 9:23 a.m.•31 views

CVE-2026-34192 GPU DDK - _MMU_AllocLevel error recovery paths leave dangling page table entries

0.0011EPSS

EUVD•added 2026/06/19 9:23 a.m.•9 views

EUVD-2026-38001

5.8AI score0.0011EPSS

CVE•added 2026/06/19 9:23 a.m.•15 views

CVE-2026-34192

CVE-2026-34192 affects GPU driver components (GPU DDK) where MMU page tables are freed without proper cleanup in an error path, allowing a non-privileged user to trigger use-after-free of physical memory. The issue is caused by _MMU_AllocLevel error recovery paths that leave dangling page table e...

7.7CVSS5.8AI score0.0011EPSS

Positive Technologies•added 2026/06/19 12:0 a.m.•16 views

PT-2026-50865

Name of the Vulnerable Software and Affected Versions GPU DDK affected versions not specified Description Software run by a non-privileged user can execute improper GPU system calls to trigger an error path, resulting in a Use-After-Free UAF of GPU page tables. This occurs because an error recove...

7.7CVSS5.7AI score0.0011EPSS

Exploits0References5

NVD•added 2026/06/18 2:17 p.m.•8 views

CVE-2026-42488

Some shadow paging errors paths will switch the page-tables without updating the currently running vCPU reference. This causes a mismatch between the loaded page-tables and the mapcache metadata which can lead to corruption of the mapcache...

8.1CVSS0.00353EPSS

EUVD•added 2026/06/18 1:47 p.m.•7 views

EUVD-2026-37891

8.1CVSS5.4AI score0.00353EPSS

Cvelist•added 2026/06/18 1:47 p.m.•16 views

CVE-2026-42488 x86: mismatched mapcache metadata

0.00353EPSS

CVE•added 2026/06/18 1:47 p.m.•27 views

CVE-2026-42488

CVE-2026-42488 concerns the Xen hypervisor. Some shadow paging error paths can switch page-tables without updating the running vCPU reference, causing a mismatch between loaded page-tables and mapcache metadata and potentially leading to mapcache corruption. Affected products/versions are implied...

8.1CVSS5.3AI score0.00353EPSS

Debian CVE•added 2026/06/18 1:47 p.m.•7 views

CVE-2026-42488

8.1CVSS5.4AI score0.00353EPSS

Exploits0

ATTACKERKB•added 2026/06/18 1:47 p.m.•6 views

CVE-2026-42488

8.1CVSS5.3AI score0.00353EPSS