CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

UBUNTU-CVE-2026-46088

In the Linux kernel, the following vulnerability has been resolved: ALSA: control: Validate buflen before strnlen in sndctleleminitenumnames sndctleleminitenumnames advances pointer p through the names buffer while decrementing buflen. If buflen reaches zero but items remain, the next iteration...

5.8AI score0.00032EPSS

UBUNTU-CVE-2026-46066

In the Linux kernel, the following vulnerability has been resolved: ceph: fix numops off-by-one when crypto allocation fails movedirtyfolioinpagearray may fail if the file is encrypted, the dirty folio is not the first in the batch, and it fails to allocate a bounce buffer to hold the ciphertext...

5.8AI score0.00022EPSS

OSV•added 2026/05/27 2:17 p.m.•5 views

UBUNTU-CVE-2026-45884

In the Linux kernel, the following vulnerability has been resolved: apparmor: avoid per-cpu hold underflow in aagetbuffer When aagetbuffer pulls from the per-cpu list it unconditionally decrements cache-hold. If hold reaches 0 while count is still non-zero, the unsigned decrement wraps to UINTMAX...

5.7AI score0.00023EPSS

OSV•added 2026/05/27 2:17 p.m.•4 views

UBUNTU-CVE-2026-45990

In the Linux kernel, the following vulnerability has been resolved: slub: fix data loss and overflow in krealloc Commit 2cd8231796b5 "mm/slub: allow to set node and align in kvrealloc" introduced the ability to force a reallocation if the original object does not satisfy new alignment or NUMA nod...

5.9AI score0.00022EPSS

OSV•added 2026/05/27 2:17 p.m.•4 views

UBUNTU-CVE-2026-45929

In the Linux kernel, the following vulnerability has been resolved: ovpn: fix possible use-after-free in ovpnnetxmit When building the skblist in ovpnnetxmit, skbsharecheck will free the original skb if it is shared. The current implementation continues to use the stale skb pointer for subsequent...

7.8CVSS5.7AI score0.00013EPSS

UBUNTU-CVE-2026-46103

In the Linux kernel, the following vulnerability has been resolved: can: ucan: fix devres lifetime USB drivers bind to USB interfaces and any device managed resources should have their lifetime tied to the interface rather than parent USB device. This avoids issues like memory leaks when drivers...

5.8AI score0.00032EPSS

OSV•added 2026/05/27 2:17 p.m.•3 views

UBUNTU-CVE-2026-46016

In the Linux kernel, the following vulnerability has been resolved: remoteproc: xlnx: Only access buffer information if IPI is buffered In the receive callback check if message is NULL to prevent possibility of crash by NULL pointer dereferencing...

5.8AI score0.00024EPSS

7.8CVSS5.9AI score0.00013EPSS

UBUNTU-CVE-2026-45984

In the Linux kernel, the following vulnerability has been resolved: gfs2: Fix use-after-free in iomap inline data write path The inline data buffer head dibh is being released prematurely in gfs2iomapbegin via releasemetapath while iomap-inlinedata still points to dibh-bdata. This causes a...

OSV•added 2026/05/27 2:17 p.m.•3 views

UBUNTU-CVE-2026-46041

In the Linux kernel, the following vulnerability has been resolved: greybus: gb-beagleplay: fix sleep in atomic context in hdlctxframes hdlcappend calls usleeprange to wait for circular buffer space, but it is called with txproducerlock a spinlock held via hdlctxframes -...

5.9AI score0.00023EPSS

UBUNTU-CVE-2026-45939

In the Linux kernel, the following vulnerability has been resolved: gpib: Fix memory leak in niusbinit In niusbinit, if niusbsetupinit fails, the function returns -EFAULT without freeing the allocated writes buffer, leading to a memory leak. Additionally, niusbsetupinit returns 0 on failure, whic...

5.8AI score0.00022EPSS

NVD•added 2026/05/27 2:16 p.m.•5 views

CVE-2026-38422

Buffer Overflow vulnerability in arendst Tasmota v.15.3.0.3 and before allows a remote attacker to execute arbitrary code via the tasmota/tasmotaxdrvdriver/xdrv10scripter.ino, fetchjpg function...

7.3CVSS0.00213EPSS

Exploits1References3

NVD•added 2026/05/27 2:16 p.m.•5 views

CVE-2026-38426

Buffer Overflow vulnerability in arendst Tasmota v.15.3.0.3 and before allows a remote attacker to execute arbitrary code via the xdrv10scripter.ino, fetchjpg, jpgtask.boundary40, strcpy function...

7.3CVSS0.00237EPSS

Exploits2References2

RedhatCVE•added 2026/05/27 2:12 p.m.•7 views

CVE-2026-9295

A security flaw has been discovered in Edimax BR-6428NS 1.10. This affects the function formWirelessTbl of the file /goform/formWirelessTbl of the component POST Request Handler. Performing a manipulation of the argument vapurl results in buffer overflow. The attack can be initiated remotely. The...

9CVSS7.8AI score0.00017EPSS

Vulnrichment•added 2026/05/27 1:17 p.m.•6 views

CVE-2026-8179 Multiple vulnerabilities in Aspera applications.

IBM Aspera High-Speed Transfer Endpoint 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Transfer Server 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Transfer Endpoint are affected by a buffer overflow in the asperahttpd component. This vulnerability could allow an authenticat...

EUVD•added 2026/05/27 1:17 p.m.•9 views

EUVD-2026-32497

ATTACKERKB•added 2026/05/27 1:17 p.m.•7 views

CVE-2026-8179

Exploits0References2Affected Software2

CVE•added 2026/05/27 1:17 p.m.•10 views

CVE-2026-8179

CVE-2026-8179 affects IBM Aspera High-Speed Transfer Endpoint/Server 3.7.4–4.4.7 Fix Pack 1, with a buffer overflow in the asperahttpd component. An authenticated user could execute arbitrary code on the system (impact: high). Public details across connected documents confirm the affected product...

Exploits0References1Affected Software2

Vulnrichment•added 2026/05/27 1:17 p.m.•5 views

CVE-2026-8175 Multiple vulnerabilities in Aspera applications.

9.8CVSS6.4AI score0.00459EPSS