CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

UBUNTU-CVE-2026-46103

In the Linux kernel, the following vulnerability has been resolved: can: ucan: fix devres lifetime USB drivers bind to USB interfaces and any device managed resources should have their lifetime tied to the interface rather than parent USB device. This avoids issues like memory leaks when drivers...

5.8AI score0.00032EPSS

UBUNTU-CVE-2026-46041

In the Linux kernel, the following vulnerability has been resolved: greybus: gb-beagleplay: fix sleep in atomic context in hdlctxframes hdlcappend calls usleeprange to wait for circular buffer space, but it is called with txproducerlock a spinlock held via hdlctxframes -...

5.9AI score0.00023EPSS

7.8CVSS5.9AI score0.00013EPSS

UBUNTU-CVE-2026-45984

In the Linux kernel, the following vulnerability has been resolved: gfs2: Fix use-after-free in iomap inline data write path The inline data buffer head dibh is being released prematurely in gfs2iomapbegin via releasemetapath while iomap-inlinedata still points to dibh-bdata. This causes a...

7.8CVSS5.7AI score0.00013EPSS

UBUNTU-CVE-2026-45929

In the Linux kernel, the following vulnerability has been resolved: ovpn: fix possible use-after-free in ovpnnetxmit When building the skblist in ovpnnetxmit, skbsharecheck will free the original skb if it is shared. The current implementation continues to use the stale skb pointer for subsequent...

UBUNTU-CVE-2026-45990

In the Linux kernel, the following vulnerability has been resolved: slub: fix data loss and overflow in krealloc Commit 2cd8231796b5 "mm/slub: allow to set node and align in kvrealloc" introduced the ability to force a reallocation if the original object does not satisfy new alignment or NUMA nod...

5.9AI score0.00022EPSS

UBUNTU-CVE-2026-46016

In the Linux kernel, the following vulnerability has been resolved: remoteproc: xlnx: Only access buffer information if IPI is buffered In the receive callback check if message is NULL to prevent possibility of crash by NULL pointer dereferencing...

5.8AI score0.00024EPSS

UBUNTU-CVE-2026-45939

In the Linux kernel, the following vulnerability has been resolved: gpib: Fix memory leak in niusbinit In niusbinit, if niusbsetupinit fails, the function returns -EFAULT without freeing the allocated writes buffer, leading to a memory leak. Additionally, niusbsetupinit returns 0 on failure, whic...

5.8AI score0.00022EPSS

NVD•added 2026/05/27 2:16 p.m.•5 views

CVE-2026-38422

Buffer Overflow vulnerability in arendst Tasmota v.15.3.0.3 and before allows a remote attacker to execute arbitrary code via the tasmota/tasmotaxdrvdriver/xdrv10scripter.ino, fetchjpg function...

7.3CVSS0.00213EPSS

Exploits1References3

NVD•added 2026/05/27 2:16 p.m.•5 views

CVE-2026-38426

Buffer Overflow vulnerability in arendst Tasmota v.15.3.0.3 and before allows a remote attacker to execute arbitrary code via the xdrv10scripter.ino, fetchjpg, jpgtask.boundary40, strcpy function...

7.3CVSS0.00237EPSS

Exploits2References2

RedhatCVE•added 2026/05/27 2:12 p.m.•6 views

CVE-2026-9295

A security flaw has been discovered in Edimax BR-6428NS 1.10. This affects the function formWirelessTbl of the file /goform/formWirelessTbl of the component POST Request Handler. Performing a manipulation of the argument vapurl results in buffer overflow. The attack can be initiated remotely. The...

9CVSS7.8AI score0.00017EPSS

EUVD•added 2026/05/27 1:17 p.m.•7 views

EUVD-2026-32497

IBM Aspera High-Speed Transfer Endpoint 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Transfer Server 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Transfer Endpoint are affected by a buffer overflow in the asperahttpd component. This vulnerability could allow an authenticat...

Vulnrichment•added 2026/05/27 1:17 p.m.•6 views

CVE-2026-8179 Multiple vulnerabilities in Aspera applications.

ATTACKERKB•added 2026/05/27 1:17 p.m.•7 views

CVE-2026-8179

Exploits0References2Affected Software2

CVE•added 2026/05/27 1:17 p.m.•6 views

CVE-2026-8179

CVE-2026-8179 affects IBM Aspera High-Speed Transfer Endpoint/Server 3.7.4–4.4.7 Fix Pack 1, with a buffer overflow in the asperahttpd component. An authenticated user could execute arbitrary code on the system (impact: high). Public details across connected documents confirm the affected product...

Exploits0References1Affected Software2

Vulnrichment•added 2026/05/27 1:17 p.m.•5 views

CVE-2026-8175 Multiple vulnerabilities in Aspera applications.

ATTACKERKB•added 2026/05/27 1:17 p.m.•6 views

CVE-2026-8175

Exploits0References2Affected Software2

Cvelist•added 2026/05/27 1:17 p.m.•34 views

CVE-2026-8175 Multiple vulnerabilities in Aspera applications.

9.8CVSS0.00459EPSS

CVE•added 2026/05/27 1:17 p.m.•8 views

CVE-2026-8175

IBM Aspera High-Speed Transfer Endpoint 3.7.4–4.4.7 Fix Pack 1 and IBM Aspera High-Speed Transfer Server 3.7.4–4.4.7 Fix Pack 1 are affected by a buffer overflow in the asperahttpd component. This can lead to denial of service and may allow authentication bypass or remote code execution. CVSS v3....

Exploits0References1Affected Software2

EUVD•added 2026/05/27 1:17 p.m.•6 views

EUVD-2026-32496