Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

272 matches found

SUSE CVE
SUSE CVEadded 6 days ago5 views

SUSE CVE-2026-46107

In the Linux kernel, the following vulnerability has been resolved: dm-thin: fix metadata refcount underflow There's a bug in dm-thin in the function rebalancechildren. If the internal btree node has one entry, the code tries to copy all btree entries from the node's child to the node itself and...

7.8CVSS5.8AI score0.00013EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded last week5 views

CVE-2026-46107

A flaw was found in the Linux kernel's Device Mapper dm-thin component. This vulnerability, a metadata reference count underflow, occurs in the rebalancechildren function. When an internal btree node with a single entry is shared, the system incorrectly tracks the usage of child nodes. This can...

7.8CVSS5.8AI score0.00013EPSS
Exploits0References4
EUVD
EUVDadded last week4 views

EUVD-2026-32866

In the Linux kernel, the following vulnerability has been resolved: dm-thin: fix metadata refcount underflow There's a bug in dm-thin in the function rebalancechildren. If the internal btree node has one entry, the code tries to copy all btree entries from the node's child to the node itself and...

5.8AI score0.00013EPSS
Exploits0References6
OSV
OSVadded last week2 views

UBUNTU-CVE-2026-46107

In the Linux kernel, the following vulnerability has been resolved: dm-thin: fix metadata refcount underflow There's a bug in dm-thin in the function rebalancechildren. If the internal btree node has one entry, the code tries to copy all btree entries from the node's child to the node itself and...

7.8CVSS5.8AI score0.00013EPSS
Exploits0References8
ATTACKERKB
ATTACKERKBadded last week4 views

CVE-2026-46107

In the Linux kernel, the following vulnerability has been resolved: dm-thin: fix metadata refcount underflow There's a bug in dm-thin in the function rebalancechildren. If the internal btree node has one entry, the code tries to copy all btree entries from the node's child to the node itself and...

7.8CVSS5.7AI score0.00013EPSS
Exploits0References8Affected Software1
CVE
CVEadded last week9 views

CVE-2026-46107

In Linux kernel dm-thin, a metadata refcount underflow in rebalance_children has been resolved. If an internal btree node with a single entry is shared (refcount > 1), downgrading the child without updating grandchildren leads to mismatched reference counts and can produce device mapper: space...

7.8CVSS5.8AI score0.00013EPSS
Exploits0References7
CNNVD
CNNVDadded 2026/05/28 12:0 a.m.4 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from an undercounting of reference counts in the metadata of the rebalancechildren function within...

7.8CVSS5.8AI score0.00013EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 2026/05/28 12:0 a.m.4 views

PT-2026-44230

In the Linux kernel, the following vulnerability has been resolved: dm-thin: fix metadata refcount underflow There's a bug in dm-thin in the function rebalance children. If the internal btree node has one entry, the code tries to copy all btree entries from the node's child to the node itself and...

5.8AI score0.00013EPSS
Exploits0References6
AstraLinux
AstraLinuxadded 2026/05/20 5:53 a.m.3 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: fs/fhandle.c: A race condition in the call to haslockedchildren was fixed. maydecodefh calls haslockedchildren while holding no locks. This is an oopsable race condition. The rest of the callers are safe, as they hold namespacese...

4.7CVSS5.8AI score0.00057EPSS
Exploits0References2
Malwarebytes
Malwarebytesadded 2026/05/13 1:34 p.m.6 views

Texas sued Netflix over claims it secretly collected and sold users’ data

Attorney General AG of Texas Ken Paxton announced that he sued Netflix for spying on Texans, including children, and collecting users’ data without their knowledge or consent. The suit alleges Netflix secretly tracks and monetizes detailed viewing behavior of users, including children, while...

5.7AI score
Exploits0
AstraLinux
AstraLinuxadded 2026/05/03 11:59 p.m.2 views

Astra Linux - уязвимость в linux, linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: - dm btree remove: fixed the use of a function after the free operation in rebalancechildren. - Moved the dmtmunlock function to after dmtmdec...

7.8CVSS6.4AI score0.00018EPSS
Exploits0References2
AstraLinux
AstraLinuxadded 2026/05/03 11:59 p.m.4 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: netconsole: The sumutex must be acquired before navigating the configs hierarchy. There is a race between operations that iterate over the cgchildren list and concurrent additions/removals of userdata items through configfs. The...

5.7AI score0.00026EPSS
Exploits0References1
AstraLinux
AstraLinuxadded 2026/05/03 11:59 p.m.1 views

Astra Linux - уязвимость в linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: fsnotify: The flag PARENTWATCHED is cleared lazily. In some setups, directories can have many usually negative entries. As a result, the fsnotifyupdatechilddentryflags function can take a significant amount of time. Since most of...

4.7CVSS6.2AI score0.00012EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2026/04/14 12:0 a.m.2 views

PT-2026-32559

Due to missing authorization checks in the SAP S/4HANA frontend OData Service Manage Reference Structures, an attacker could update and delete child entities via exposed OData services without proper authorization. This vulnerability has a high impact on integrity, while confidentiality and...

6.5CVSS5.8AI score0.00045EPSS
Exploits0References3
Github Security Blog
Github Security Blogadded 2026/03/26 9:44 p.m.4 views

OpenClaw leaf subagents can bypass controlScope restrictions to send messages to child sessions

Summary Leaf subagents could still use the send action to message controlled child sessions even when their controlScope was narrower than children. Affected Packages / Versions - Package: openclaw npm - Affected: = 2026.3.22 - Latest released tag checked: v2026.3.23-2...

5.3CVSS5.8AI score0.00036EPSS
Exploits0References6Affected Software1
OSV
OSVadded 2026/03/11 4:0 p.m.3 views

GO-2026-4658 SiYuan: Authorization Bypass Allows Low-Privilege Publish User to Modify Notebook Content via /api/block/appendHeadingChildren in github.com/siyuan-note/siyuan/kernel

SiYuan: Authorization Bypass Allows Low-Privilege Publish User to Modify Notebook Content via /api/block/appendHeadingChildren in github.com/siyuan-note/siyuan/kernel...

7.1CVSS5.8AI score0.00017EPSS
Exploits1References2
NVD
NVDadded 2026/03/10 7:44 a.m.2 views

CVE-2026-30926

SiYuan is a personal knowledge management system. Prior to 3.5.10, a privilege escalation vulnerability exists in the publish service of SiYuan Note that allows low-privilege publish accounts RoleReader to modify notebook content via the /api/block/appendHeadingChildren API endpoint. The endpoint...

7.1CVSS0.00017EPSS
Exploits1References1
OSV
OSVadded 2026/03/09 9:7 p.m.2 views

CVE-2026-30926 SiYuan Note publish service authorization bypass allows low-privilege users to modify notebook content

SiYuan is a personal knowledge management system. Prior to 3.5.10, a privilege escalation vulnerability exists in the publish service of SiYuan Note that allows low-privilege publish accounts RoleReader to modify notebook content via the /api/block/appendHeadingChildren API endpoint. The endpoint...

7.1CVSS5.9AI score0.00017EPSS
Exploits1References3
Vulnrichment
Vulnrichmentadded 2026/03/09 9:7 p.m.1 views

CVE-2026-30926 SiYuan Note publish service authorization bypass allows low-privilege users to modify notebook content

SiYuan is a personal knowledge management system. Prior to 3.5.10, a privilege escalation vulnerability exists in the publish service of SiYuan Note that allows low-privilege publish accounts RoleReader to modify notebook content via the /api/block/appendHeadingChildren API endpoint. The endpoint...

7.1CVSS5.8AI score0.00017EPSS
Exploits1References1
EUVD
EUVDadded 2026/03/09 9:7 p.m.2 views

EUVD-2026-10394

SiYuan is a personal knowledge management system. Prior to 3.5.10, a privilege escalation vulnerability exists in the publish service of SiYuan Note that allows low-privilege publish accounts RoleReader to modify notebook content via the /api/block/appendHeadingChildren API endpoint. The endpoint...

7.1CVSS5.8AI score0.00017EPSS
Exploits1References1
Rows per page
Query Builder