Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

461 matches found

RedhatCVE
RedhatCVEadded 2 days ago4 views

CVE-2026-45338

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.0, a Server-Side Request Forgery SSRF vulnerability exists in processpictureurl in backend/openwebui/utils/oauth.py line 1338. The function fetches arbitrary URLs from OAuth picture...

7.7CVSS5.6AI score0.00012EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 5 days ago6 views

CVE-2026-45040

RustFS is a distributed object storage system built in Rust. Prior to 1.0.0-beta.2, RustFS suffers from sensitive information leakage in log outputs. When the server is run with RUSTLOG=debug sensitive credentials including SessionToken JWT, SecretAccessKey, and full JWT claims are printed in...

5.3CVSS5.8AI score0.0002EPSS
Exploits0References1
SUSE CVE
SUSE CVEadded 2026/05/29 1:15 a.m.9 views

SUSE CVE-2026-46212

In the Linux kernel, the following vulnerability has been resolved: batman-adv: bla: prevent use-after-free when deleting claims When batadvbladelbackboneclaims removes all claims for a backbone, it does this by dropping the link entry in the hash list. This list entry itself was one of the...

7.5CVSS5.7AI score0.0003EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2026/05/29 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2026-46233

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - batman-adv: bla: only purge non-released claims When batadvblapurgeclaims goes through the list of claims, it is only traversing the hash list with an...

5.8AI score0.00032EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2026/05/29 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2026-46212

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - batman-adv: bla: prevent use-after-free when deleting claims When batadvbladelbackboneclaims removes all claims for a backbone, it does this by dropping the lin...

8.8CVSS5.8AI score0.0003EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2026/05/28 9:8 p.m.9 views

CVE-2026-46212

A flaw was found in the batman-adv component of the Linux kernel. This vulnerability, a use-after-free, occurs during the process of deleting backbone claims. If exploited, this memory corruption issue could allow an attacker to cause a system crash, leading to a denial of service, or potentially...

8.8CVSS5.9AI score0.0003EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2026/05/28 8:12 p.m.9 views

CVE-2026-46359

phpMyFAQ before 4.1.2 contains a sql injection vulnerability in CurrentUser::setTokenData that allows authenticated attackers to execute arbitrary SQL by injecting malicious OAuth token claims. Attackers with Azure AD accounts containing SQL metacharacters in display names or JWT claims can break...

7.7CVSS6.1AI score0.00033EPSS
Exploits0References1
EUVD
EUVDadded 2026/05/28 6:35 p.m.9 views

EUVD-2026-32997

RustFS is a distributed object storage system built in Rust. Prior to 1.0.0-beta.2, RustFS suffers from sensitive information leakage in log outputs. When the server is run with RUSTLOG=debug sensitive credentials including SessionToken JWT, SecretAccessKey, and full JWT claims are printed in...

5.3CVSS5.8AI score0.0002EPSS
Exploits0References1
NVD
NVDadded 2026/05/28 10:16 a.m.11 views

CVE-2026-46233

In the Linux kernel, the following vulnerability has been resolved: batman-adv: bla: only purge non-released claims When batadvblapurgeclaims goes through the list of claims, it is only traversing the hash list with an rcureadlock. Due to a potential parallel batadvclaimput, it can happen that it...

0.00032EPSS
Exploits0References8
NVD
NVDadded 2026/05/28 10:16 a.m.13 views

CVE-2026-46212

In the Linux kernel, the following vulnerability has been resolved: batman-adv: bla: prevent use-after-free when deleting claims When batadvbladelbackboneclaims removes all claims for a backbone, it does this by dropping the link entry in the hash list. This list entry itself was one of the...

8.8CVSS0.0003EPSS
Exploits0References8
OSV
OSVadded 2026/05/28 10:16 a.m.2 views

UBUNTU-CVE-2026-46212

In the Linux kernel, the following vulnerability has been resolved: batman-adv: bla: prevent use-after-free when deleting claims When batadvbladelbackboneclaims removes all claims for a backbone, it does this by dropping the link entry in the hash list. This list entry itself was one of the...

8.8CVSS5.7AI score0.0003EPSS
Exploits0References8
CVE
CVEadded 2026/05/28 9:40 a.m.10 views

CVE-2026-46233

The CVE-2026-46233 issue affects the Linux kernel’s batman-adv subsystem, specifically batadv_bla_purge_claims(): a race under RCU while iterating claims can encounter a claim being released, causing backbone_gw to become NULL before delayed kfree. The fix is to purge only claims with a valid ref...

5.8AI score0.00032EPSS
Exploits0References8
Debian CVE
Debian CVEadded 2026/05/28 9:40 a.m.5 views

CVE-2026-46233

In the Linux kernel, the following vulnerability has been resolved: batman-adv: bla: only purge non-released claims When batadvblapurgeclaims goes through the list of claims, it is only traversing the hash list with an rcureadlock. Due to a potential parallel batadvclaimput, it can happen that it...

5.7AI score0.00032EPSS
Exploits0
ATTACKERKB
ATTACKERKBadded 2026/05/28 9:40 a.m.4 views

CVE-2026-46233

In the Linux kernel, the following vulnerability has been resolved: batman-adv: bla: only purge non-released claims When batadvblapurgeclaims goes through the list of claims, it is only traversing the hash list with an rcureadlock. Due to a potential parallel batadvclaimput, it can happen that it...

5.8AI score0.00032EPSS
Exploits0References9Affected Software1
EUVD
EUVDadded 2026/05/28 9:40 a.m.11 views

EUVD-2026-32751

In the Linux kernel, the following vulnerability has been resolved: batman-adv: bla: only purge non-released claims When batadvblapurgeclaims goes through the list of claims, it is only traversing the hash list with an rcureadlock. Due to a potential parallel batadvclaimput, it can happen that it...

5.8AI score0.00032EPSS
Exploits0References5
Cvelist
Cvelistadded 2026/05/28 9:40 a.m.27 views

CVE-2026-46233 batman-adv: bla: only purge non-released claims

In the Linux kernel, the following vulnerability has been resolved: batman-adv: bla: only purge non-released claims When batadvblapurgeclaims goes through the list of claims, it is only traversing the hash list with an rcureadlock. Due to a potential parallel batadvclaimput, it can happen that it...

0.00032EPSS
Exploits0References8
EUVD
EUVDadded 2026/05/28 9:40 a.m.14 views

EUVD-2026-32839

In the Linux kernel, the following vulnerability has been resolved: batman-adv: bla: prevent use-after-free when deleting claims When batadvbladelbackboneclaims removes all claims for a backbone, it does this by dropping the link entry in the hash list. This list entry itself was one of the...

5.7AI score0.0003EPSS
Exploits0References5
ATTACKERKB
ATTACKERKBadded 2026/05/28 9:40 a.m.6 views

CVE-2026-46212

In the Linux kernel, the following vulnerability has been resolved: batman-adv: bla: prevent use-after-free when deleting claims When batadvbladelbackboneclaims removes all claims for a backbone, it does this by dropping the link entry in the hash list. This list entry itself was one of the...

8.8CVSS5.7AI score0.0003EPSS
Exploits0References9Affected Software1
CVE
CVEadded 2026/05/28 9:40 a.m.16 views

CVE-2026-46212

CVE-2026-46212 concerns the Linux kernel’s batman-adv module. The vulnerability arises when deleting backbone claims in batman-adv (function batadv_bla_del_backbone_claims): the code drops a hash-list link entry that is still referenced, risking that the entry could be freed by batadv_claim_relea...

8.8CVSS5.7AI score0.0003EPSS
Exploits0References8
Cvelist
Cvelistadded 2026/05/28 9:40 a.m.32 views

CVE-2026-46212 batman-adv: bla: prevent use-after-free when deleting claims

In the Linux kernel, the following vulnerability has been resolved: batman-adv: bla: prevent use-after-free when deleting claims When batadvbladelbackboneclaims removes all claims for a backbone, it does this by dropping the link entry in the hash list. This list entry itself was one of the...

8.8CVSS0.0003EPSS
Exploits0References8
Rows per page
Query Builder