Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

70 matches found

RedhatCVE
RedhatCVEadded 6 days ago7 views

CVE-2026-52925

A flaw was found in the Linux kernel's Virtual Routing and Forwarding VRF functionality. When a network device is removed from a VRF, a lack of proper synchronization can lead to a Null Pointer Dereference NPD. This issue can be triggered by a local user, potentially causing the system to crash,...

5.5CVSS5.8AI score0.00164EPSS
Exploits0References4
OSV
OSVadded 6 days ago4 views

UBUNTU-CVE-2026-52925

In the Linux kernel, the following vulnerability has been resolved: vrf: Fix a potential NPD when removing a port from a VRF RCU readers that identified a net device as a VRF port using netifisl3slave assume that a subsequent call to netdevmasterupperdevgetrcu will return a VRF device. They then...

5.7AI score0.00164EPSS
Exploits0References11
EUVD
EUVDadded 6 days ago7 views

EUVD-2026-38728

In the Linux kernel, the following vulnerability has been resolved: vrf: Fix a potential NPD when removing a port from a VRF RCU readers that identified a net device as a VRF port using netifisl3slave assume that a subsequent call to netdevmasterupperdevgetrcu will return a VRF device. They then...

5.8AI score0.00164EPSS
Exploits0References8
OSV
OSVadded 2026/06/04 6:11 p.m.6 views

MINI-VRF6-GCF5-X7HF

Bulletin has no description...

5.3CVSS5.7AI score0.0037EPSS
Exploits0
RedhatCVE
RedhatCVEadded 2026/03/25 5:11 p.m.4 views

CVE-2026-23304

A flaw was found in the Linux kernel. A local attacker could cause a null pointer dereference in the IPv6 routing subsystem when a slave device is being un-slaved from a Virtual Routing and Forwarding VRF instance. This vulnerability can lead to a system crash, resulting in a denial of service...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References4
SUSE CVE
SUSE CVEadded 2026/03/25 4:56 p.m.6 views

SUSE CVE-2026-23304

In the Linux kernel, the following vulnerability has been resolved: ipv6: fix NULL pointer deref in ip6rtgetdevrcu l3mdevmasterdevrcu can return NULL when the slave device is being un-slaved from a VRF. All other callers deal with this, but we lost the fallback to loopback in ip6rtpcpualloc -...

4.7CVSS5.8AI score0.00123EPSS
Exploits0References15
EUVD
EUVDadded 2026/03/25 12:30 p.m.2 views

EUVD-2026-15242

In the Linux kernel, the following vulnerability has been resolved: ipv6: fix NULL pointer deref in ip6rtgetdevrcu l3mdevmasterdevrcu can return NULL when the slave device is being un-slaved from a VRF. All other callers deal with this, but we lost the fallback to loopback in ip6rtpcpualloc -...

5.7AI score0.00123EPSS
Exploits0References7
NVD
NVDadded 2026/03/25 11:16 a.m.4 views

CVE-2026-23304

In the Linux kernel, the following vulnerability has been resolved: ipv6: fix NULL pointer deref in ip6rtgetdevrcu l3mdevmasterdevrcu can return NULL when the slave device is being un-slaved from a VRF. All other callers deal with this, but we lost the fallback to loopback in ip6rtpcpualloc -...

5.5CVSS0.00123EPSS
Exploits0References8
OSV
OSVadded 2026/03/25 11:16 a.m.4 views

UBUNTU-CVE-2026-23304

In the Linux kernel, the following vulnerability has been resolved: ipv6: fix NULL pointer deref in ip6rtgetdevrcu l3mdevmasterdevrcu can return NULL when the slave device is being un-slaved from a VRF. All other callers deal with this, but we lost the fallback to loopback in ip6rtpcpualloc -...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References9
UbuntuCve
UbuntuCveadded 2026/03/25 11:16 a.m.9 views

CVE-2026-23304

In the Linux kernel, the following vulnerability has been resolved: ipv6: fix NULL pointer deref in ip6rtgetdevrcu l3mdevmasterdevrcu can return NULL when the slave device is being un-slaved from a VRF. All other callers deal with this, but we lost the fallback to loopback in ip6rtpcpualloc -...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References8
CVE
CVEadded 2026/03/25 10:26 a.m.13 views

CVE-2026-23304

The connected advisories confirm CVE-2026-23304 affects the Linux kernel IPv6 routing code. Root cause: l3mdev_master_dev_rcu() can return NULL when a slave device is un-slaved from a VRF, and ip6_rt_get_dev_rcu() used by ip6_rt_pcpu_alloc() did not fall back to loopback, causing a NULL pointer d...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References8Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/03/25 10:26 a.m.3 views

CVE-2026-23304

In the Linux kernel, the following vulnerability has been resolved: ipv6: fix NULL pointer deref in ip6rtgetdevrcu l3mdevmasterdevrcu can return NULL when the slave device is being un-slaved from a VRF. All other callers deal with this, but we lost the fallback to loopback in ip6rtpcpualloc -...

5.6AI score0.00123EPSS
Exploits0References9Affected Software1
CNNVD
CNNVDadded 2026/03/25 12:0 a.m.4 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from failing to handle the unbinding of slave devices from the VRF context. This vulnerability may lead to...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References8
Tenable Nessus
Tenable Nessusadded 2026/03/25 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2026-23304

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ipv6: fix NULL pointer deref in ip6rtgetdevrcu l3mdevmasterdevrcu can return NULL when the slave device is being un-slaved from a VRF. All other callers deal wi...

5.5CVSS5.9AI score0.00123EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2026/01/22 12:0 a.m.8 views

Azure Linux 3.0 Security Update: kernel (CVE-2024-49980)

"The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-49980 advisory. - In the Linux kernel, the following vulnerability has been resolved: vrf: revert vrf: Remove unnecessary...

5.5CVSS6.7AI score0.00176EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2026/01/22 12:0 a.m.11 views

Azure Linux 3.0 Security Update: kernel (CVE-2025-21791)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-21791 advisory. - In the Linux kernel, the following vulnerability has been resolved: vrf: use RCU protection in l3mdevl3out...

7.8CVSS6AI score0.00233EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2026/01/09 12:0 a.m.5 views

Siemens RUGGEDCOM ROX II Improper Neutralization of Special Elements Used in a Command (CVE-2024-56836)

Code injection can be achieved when the affected device is using VRF Virtual Routing and Forwarding. An attacker could leverage this scenario to execute arbitrary code as root user. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more...

8.8CVSS7.6AI score0.0039EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2026/01/09 12:0 a.m.3 views

Siemens RUGGEDCOM ROX II Improper Neutralization of Special Elements in Output Used By a Downstream Component (CVE-2024-56835)

Code injection can be achieved when the affected device is using VRF Virtual Routing and Forwarding. An attacker could leverage this scenario to execute arbitrary code as root user. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more...

8.8CVSS7.6AI score0.00457EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2026/01/09 12:0 a.m.5 views

Siemens RUGGEDCOM ROX II Improper Neutralization of Special Elements in Output Used By a Downstream Component (CVE-2024-56838)

Code injection can be achieved when the affected device is using VRF Virtual Routing and Forwarding. An attacker could leverage this scenario to execute arbitrary code as root user. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more...

8.6CVSS7.6AI score0.00367EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2026/01/09 12:0 a.m.4 views

Siemens RUGGEDCOM ROX II Improper Neutralization of Special Elements in Output Used By a Downstream Component (CVE-2024-56840)

Code injection can be achieved when the affected device is using VRF Virtual Routing and Forwarding. An attacker could leverage this scenario to execute arbitrary code as root user. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more...

7.5CVSS7.6AI score0.00574EPSS
Exploits0References4
Rows per page
Query Builder