CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 2 days ago•32 views

CVE-2026-9539 libslirp TCP URG OOB Read Information Leak

6.5CVSS0.00106EPSS

AstraLinux•added last week•3 views

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: tcp: tcprtxsynack can be called from process context Laurent reported the enclosed report 1 This bug triggers under the following conditions: 0 The kernel is built with CONFIGDEBUGPREEMPT=y 1 A new passive FastOpen TCP socket is...

5.5CVSS6.2AI score0.00276EPSS

AstraLinux•added last week•7 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: ovpn: TCP – fix for extracting packets from the stream When processing TCP stream data in ovpntcprecv, we receive large cloned skbs from strprcv, which may contain multiple coalesced packets. The current implementation has two...

7.5CVSS5.9AI score0.00451EPSS

Exploits0References1

AstraLinux•added last week•6 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: mptcp: Fixed an out-of-bounds error during the parsing of TCP options. The TCP option parser in mptcp mptcpgetoptions could read one byte out of bounds. When the length of the option is 1, the execution flow enters a loop, reads...

6.2CVSS6AI score0.00269EPSS

AstraLinux•added last week•2 views

Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1

In the Linux kernel, the following vulnerability has been resolved: For TCP sockets with the TCPSYNRECV status, the function shutdownSENDSHUTDOWN is delayed. The TCPSYNRECV state is actually special; it is only used by cross-syn connections, and is mostly exploited by attackers. In the following...

5.5CVSS6AI score0.00332EPSS

AstraLinux•added last week•6 views

Astra Linux – Vulnerability in Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: TCP: added accessors to read/set tp-sndcwnd. Over the years, we’ve had various bugs in the code that broke the assumption that tp-sndcwnd is greater than zero. Recently, syzbot reported that the condition WARNONONCE!tp-priorcwnd...

5.5CVSS6AI score0.00246EPSS

AstraLinux•added last week•4 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: ksmbd: Added freetransport operations in ksmbd connections. The freetransport function for TCP connections can be called from smdbdirect. This could lead to a kernel error. This patch adds freetransport operations in ksmbd...

5.5CVSS5.6AI score0.00155EPSS

AstraLinux•added last week•5 views

Astra Linux – Vulnerability in Linux 5.15

The Linux kernel’s NFSD implementation before versions 5.19.17 and 6.0.2 is vulnerable to buffer overflow attacks. NFSD tracks the number of pages held by each NFSD thread by combining the receive and send buffers of a remote procedure call RPC into a single array of pages. A client can force the...

7.5CVSS7.2AI score0.21314EPSS

AstraLinux•added last week•5 views

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15, Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: Slip: Make slhcremember more robust against malicious packets. syzbot found that slhcremember lacked checks against malicious packets 1. slhcremember only checks that the packet’s size is at least 20 bytes, which is...

7.1CVSS6.3AI score0.00272EPSS

AstraLinux•added last week•4 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 5.10, and Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: tcp/dccp: Do not use timerpending in reqskqueueunlink. Martin KaFai Lau reported a use-after-free in reqsktimerhandler. We are encountering a use-after-free related to a bpf program attached to tracetcpretransmitsynack. The...

7.8CVSS6.9AI score0.00241EPSS

RedHat Linux•added 2026/06/17 9:22 a.m.•5 views

kernel: netfilter: xt_tcpmss: check remaining length before reading optlen

A flaw was found in the Linux kernel, specifically within the netfilter: xttcpmss module. A remote attacker could exploit this vulnerability by sending a specially crafted TCP packet. The TCP option parser does not properly validate the remaining option length, which results in an out-of-bounds...

8.2CVSS5.5AI score0.00463EPSS

RedHat Linux•added 2026/06/17 1:20 a.m.•4 views

kernel: netfilter: xt_tcpmss: check remaining length before reading optlen

8.2CVSS5.5AI score0.00463EPSS

CVE•added 2026/06/15 7:10 p.m.•15 views

CVE-2026-52721

CVE-2026-52721 concerns GStreamer’s pcapparse element (in gstreamer1-plugins-bad-free). The issue involves multiple out-of-bounds reads during IPv4/TCP header parsing when processing malformed PCAP records. The vulnerability could allow a local attacker to trigger a crash or information disclosur...

5.3CVSS5.5AI score0.00107EPSS

Vulnrichment•added 2026/06/15 7:10 p.m.•5 views

CVE-2026-52721 Gstreamer1-plugins-bad-free: gstreamer: multiple out-of-bounds reads in pcapparse ipv4/tcp header parsing

Multiple out-of-bounds read vulnerabilities were found in GStreamer's pcapparse element. Malformed PCAP records can trigger reads beyond buffer boundaries during IPv4/TCP header parsing. This element is primarily used in debugging pipelines, limiting real-world exposure. A local attacker could...

5.3CVSS5.5AI score0.00107EPSS

CVE•added 2026/06/15 2:16 p.m.•8 views

CVE-2026-10634

Zephyr's native TCP use-after-free (CVE-2026-10634) occurs in net_tcp_foreach() when the iterator releases tcp_lock before invoking the per-connection callback, allowing a concurrent tcp_conn_release() to free the next slab and cause a use-after-free on dereference. The patch moves the teardown i...

4.8CVSS5.4AI score0.00162EPSS

RedHat Linux•added 2026/06/12 7:56 p.m.•7 views

kernel: netfilter: xt_tcpmss: check remaining length before reading optlen

8.2CVSS5.5AI score0.00463EPSS

RedHat Linux•added 2026/06/10 10:17 a.m.•8 views

kernel: netfilter: xt_tcpmss: check remaining length before reading optlen

8.2CVSS5.3AI score0.00463EPSS