Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10764 matches found

ATTACKERKB
ATTACKERKBadded 2026/05/27 1:20 p.m.5 views

CVE-2026-47104

libusb before version 1.0.30 contains a one-byte out-of-bounds read vulnerability in parseiadarray in descriptor.c that allows attackers to trigger a denial of service by supplying a malformed USB descriptor whose bLength equals size minus one, causing the bounds check to use the original buffer...

5.1CVSS5.9AI score0.00012EPSS
Exploits0References6
CVE
CVEadded 2026/05/27 1:20 p.m.12 views

CVE-2026-47104

CVE-2026-47104 affects libusb before 1.0.30. The vulnerability is a one-byte out-of-bounds read in parse_iad_array() in descriptor.c, allowing a denial of service when a malformed USB descriptor is supplied with bLength equal to size minus one, causing the bounds check to use the original buffer ...

5.5CVSS5.9AI score0.00012EPSS
Exploits0References5Affected Software1
Vulnrichment
Vulnrichmentadded 2026/05/27 1:20 p.m.3 views

CVE-2026-47104 libusb < 1.0.30 Out-of-Bounds Read in parse_iad_array()

libusb before version 1.0.30 contains a one-byte out-of-bounds read vulnerability in parseiadarray in descriptor.c that allows attackers to trigger a denial of service by supplying a malformed USB descriptor whose bLength equals size minus one, causing the bounds check to use the original buffer...

5.1CVSS5.9AI score0.00012EPSS
Exploits0References5
Debian CVE
Debian CVEadded 2026/05/27 1:20 p.m.3 views

CVE-2026-47104

libusb before version 1.0.30 contains a one-byte out-of-bounds read vulnerability in parseiadarray in descriptor.c that allows attackers to trigger a denial of service by supplying a malformed USB descriptor whose bLength equals size minus one, causing the bounds check to use the original buffer...

5.5CVSS5.9AI score0.00012EPSS
Exploits0
AlpineLinux
AlpineLinuxadded 2026/05/27 1:20 p.m.11 views

CVE-2026-47104

libusb before version 1.0.30 contains a one-byte out-of-bounds read vulnerability in parseiadarray in descriptor.c that allows attackers to trigger a denial of service by supplying a malformed USB descriptor whose bLength equals size minus one, causing the bounds check to use the original buffer...

5.5CVSS5.9AI score0.00012EPSS
Exploits0References5
EUVD
EUVDadded 2026/05/27 12:57 p.m.6 views

EUVD-2026-32448

In the Linux kernel, the following vulnerability has been resolved: ceph: fix numops off-by-one when crypto allocation fails movedirtyfolioinpagearray may fail if the file is encrypted, the dirty folio is not the first in the batch, and it fails to allocate a bounce buffer to hold the ciphertext...

5.8AI score0.00022EPSS
Exploits0References3
SUSE CVE
SUSE CVEadded 2026/05/27 12:57 p.m.5 views

SUSE CVE-2026-45840

In the Linux kernel, the following vulnerability has been resolved: openvswitch: cap upcall PID array size and pre-size vport replies The vport netlink reply helpers allocate a fixed-size skb with nlmsgnewNLMSGDEFAULTSIZE, ... but serialize the full upcall PID array via ovsvportgetupcallportids...

5.9AI score0.00032EPSS
Exploits0References3
CVE
CVEadded 2026/05/27 12:57 p.m.9 views

CVE-2026-46050

CVE-2026-46050 affects the Linux kernel md/raid10 code. A deadlock can occur when a check operation runs concurrently with NOWAIT I/O on the same array: barrier raises, normal requests block, nr_pending underflows, and the md resync thread may stall waiting for nr_pending == 0. The root cause inv...

5.8AI score0.00032EPSS
Exploits0References7
Cvelist
Cvelistadded 2026/05/27 12:56 p.m.34 views

CVE-2026-46037 ipv4: icmp: validate reply type before using icmp_pointers

In the Linux kernel, the following vulnerability has been resolved: ipv4: icmp: validate reply type before using icmppointers Extended echo replies use ICMPEXTECHOREPLY as the outbound reply type. That value is outside the range covered by icmppointers, which only describes the traditional ICMP...

8.2CVSS0.0007EPSS
Exploits0References7
ATTACKERKB
ATTACKERKBadded 2026/05/27 12:56 p.m.2 views

CVE-2026-46037

In the Linux kernel, the following vulnerability has been resolved: ipv4: icmp: validate reply type before using icmppointers Extended echo replies use ICMPEXTECHOREPLY as the outbound reply type. That value is outside the range covered by icmppointers, which only describes the traditional ICMP...

8.2CVSS5.7AI score0.0007EPSS
Exploits0References8Affected Software1
CVE
CVEadded 2026/05/27 12:56 p.m.9 views

CVE-2026-46037

The CVE-2026-46037 issue affects the Linux kernel IPv4 ICMP component. Extended echo replies could use ICMP_EXT_ECHOREPLY outside the icmp_pointers[] range; the fix avoids icmp_pointers[] lookups for out-of-range types and uses array_index_nospec() for in-range lookups. Multiple OS feeds report p...

8.2CVSS5.7AI score0.0007EPSS
Exploits0References7
RedhatCVE
RedhatCVEadded 2026/05/27 12:34 p.m.6 views

CVE-2026-45840

A flaw was found in the Linux kernel's Open vSwitch component. A local attacker, with administrative network capabilities, could exploit this by providing an overly large Process ID PID array. This action triggers a buffer overflow within the network link netlink reply mechanism, leading to a...

7CVSS6AI score0.00032EPSS
Exploits0References4
CVE
CVEadded 2026/05/27 12:18 p.m.7 views

CVE-2026-45967

CVE-2026-45967 pertains to the Linux kernel BPF subsystem. The vulnerability stems from map_direct_value_addr() in the instruction array map, where an offset was incorrectly added to the resulting address, and later the offset was re-applied by resolve_pseudo_ldimm64(). The issue has been fixed; ...

5.8AI score0.00024EPSS
Exploits0References2
Debian CVE
Debian CVEadded 2026/05/27 12:18 p.m.4 views

CVE-2026-45967

In the Linux kernel, the following vulnerability has been resolved: bpf: Return proper address for non-zero offsets in insn array The mapdirectvalueaddr function of the instruction array map incorrectly adds offset to the resulting address. This is a bug, because later the resolvepseudoldimm64...

5.7AI score0.00024EPSS
Exploits0
Cvelist
Cvelistadded 2026/05/27 12:18 p.m.28 views

CVE-2026-45967 bpf: Return proper address for non-zero offsets in insn array

In the Linux kernel, the following vulnerability has been resolved: bpf: Return proper address for non-zero offsets in insn array The mapdirectvalueaddr function of the instruction array map incorrectly adds offset to the resulting address. This is a bug, because later the resolvepseudoldimm64...

0.00024EPSS
Exploits0References2
Cvelist
Cvelistadded 2026/05/27 12:18 p.m.31 views

CVE-2026-45953 md/raid5: fix IO hang with degraded array with llbitmap

In the Linux kernel, the following vulnerability has been resolved: md/raid5: fix IO hang with degraded array with llbitmap When llbitmap bit state is still unwritten, any new write should force rcw, as bitmapops-blockssynced is checked in handlestripedirtying. However, later the same check is...

0.00022EPSS
Exploits0References3
CVE
CVEadded 2026/05/27 12:18 p.m.9 views

CVE-2026-45953

The CVE affects the Linux kernel md/raid5, where an IO hang can occur on degraded arrays using llbitmap. Root cause: the check bitmap_ops-&gt;blocks_synced() is present in handle_stripe_dirtying() but is missing in need_this_block(), causing stripe handling to deadlock as handle_stripe() routes t...

5.8AI score0.00022EPSS
Exploits0References3
Debian CVE
Debian CVEadded 2026/05/27 12:18 p.m.2 views

CVE-2026-45953

In the Linux kernel, the following vulnerability has been resolved: md/raid5: fix IO hang with degraded array with llbitmap When llbitmap bit state is still unwritten, any new write should force rcw, as bitmapops-blockssynced is checked in handlestripedirtying. However, later the same check is...

5.7AI score0.00022EPSS
Exploits0
CVE
CVEadded 2026/05/27 12:15 p.m.8 views

CVE-2026-45847

The CVE-2026-45847 entry describes a Linux kernel issue where WARN_ON_ONCE was triggered while accessing the forward path array. The fix removes WARN_ON_ONCE to mitigate the risk, noting that while unlikely, added support for IPIP tunnels increases the chance of encountering the warning if a suff...

5.8AI score0.00032EPSS
Exploits0References7
Cvelist
Cvelistadded 2026/05/27 12:15 p.m.27 views

CVE-2026-45847 net: remove WARN_ON_ONCE when accessing forward path array

In the Linux kernel, the following vulnerability has been resolved: net: remove WARNONONCE when accessing forward path array Although unlikely, recent support for IPIP tunnels increases chances of reaching this WARNONONCE if userspace manages to build a sufficiently long forward path. Remove it...

0.00032EPSS
Exploits0References7
Rows per page
Query Builder