CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

153 matches found

NVD•added 2026/05/28 10:16 a.m.•5 views

CVE-2026-46135

In the Linux kernel, the following vulnerability has been resolved: nvmet-tcp: fix race between ICReq handling and queue teardown nvmettcphandleicreq updates queue-state after sending an Initialization Connection Response ICResp, but it does so without serializing against target-side queue...

9.8CVSS0.00074EPSS

Exploits0References4

OSV•added 2026/05/28 10:16 a.m.•3 views

UBUNTU-CVE-2026-46135

9.8CVSS5.7AI score0.00074EPSS

Exploits0References7

CVE•added 2026/05/28 9:35 a.m.•18 views

CVE-2026-46135

CVE-2026-46135 affects the Linux kernel nvmet-tcp (NVMe over TCP). A race between ICReq handling and target‑side queue teardown can transition queue state in a non‑serialized way, potentially allowing a second teardown path and a re‑entry after a disconnect, including a possible double free scena...

9.8CVSS5.8AI score0.00074EPSS

Exploits0References4

EUVD•added 2026/05/28 9:35 a.m.•5 views

EUVD-2026-32762

5.8AI score0.00074EPSS

Exploits0References4

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: Bluetooth: L2CAP: Fixed a stack-out-of-bounds read in l2capecredconnreq. Syzbot reported a KASAN stack-out-of-bounds read in l2capbuildcmd, which is triggered by a malformed Enhanced Credit Based Connection Request. The...

8.1CVSS5.9AI score0.00022EPSS

Exploits0References1

AstraLinux•added 2026/05/20 5:53 a.m.•4 views

Astra Linux - уязвимость в linux-5.10, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: In TCP handling, do not call reqskfastopenremove in tcpconnrequest. syzbot reported a segmentation fault in tcpconnrequest. 0 If a listener is closed while a TFO socket is being processed in tcpconnrequest, inetcskreqskqueueadd...

5.8AI score0.00058EPSS

Exploits0References2

EUVD•added 2026/05/06 12:30 p.m.•1 views

EUVD-2026-27694

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix missing key size check for L2CAPLECONNREQ This adds a check for encryption key size upon receiving L2CAPLECONNREQ which is required by L2CAP/LE/CFC/BV-15-C which expects L2CAPCRLEBADKEYSIZE...

5.8AI score0.00015EPSS

Exploits0References9

Debian CVE•added 2026/05/06 11:27 a.m.•2 views

CVE-2026-43134

8.1CVSS5.7AI score0.00015EPSS

Exploits0

Cvelist•added 2026/05/06 11:27 a.m.•22 views

CVE-2026-43134 Bluetooth: L2CAP: Fix missing key size check for L2CAP_LE_CONN_REQ

8.1CVSS0.00015EPSS

Exploits0References8

CVE•added 2026/05/06 11:27 a.m.•7 views

CVE-2026-43134

The CVE-2026-43134 entry affects the Linux kernel Bluetooth stack. The root cause is a missing encryption key size check in the L2CAP_LE_CONN_REQ handling, which could permit a malformed L2CAP LE connection request and trigger a protocol violation. A patch was added to perform the key-size valida...

8.1CVSS5.8AI score0.00015EPSS

Exploits0References8Affected Software1

Positive Technologies•added 2026/05/06 12:0 a.m.•4 views

PT-2026-37474

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Bluetooth L2CAP component fails to perform a key size check when receiving L2CAP LE CONN REQ. This missing validation is contrary to the L2CAP/LE/CFC/BV-15-C requirement, which expec...

8.1CVSS5.4AI score0.00015EPSS

Exploits0References18

Cvelist•added 2026/04/22 1:54 p.m.•24 views

CVE-2026-31513 Bluetooth: L2CAP: Fix stack-out-of-bounds read in l2cap_ecred_conn_req

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix stack-out-of-bounds read in l2capecredconnreq Syzbot reported a KASAN stack-out-of-bounds read in l2capbuildcmd that is triggered by a malformed Enhanced Credit Based Connection Request. The vulnerability...

8.1CVSS0.00022EPSS

Exploits0References4

Positive Technologies•added 2026/04/22 12:0 a.m.•1 views

PT-2026-34418

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix stack-out-of-bounds read in l2cap ecred conn req Syzbot reported a KASAN stack-out-of-bounds read in l2cap build cmd that is triggered by a malformed Enhanced Credit Based Connection Request. The vulnerabili...

5.8AI score0.00022EPSS

Exploits0References5

Tenable Nessus•added 2026/04/22 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2026-31513

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix stack-out-of- bounds read in l2capecredconnreq Syzbot reported a KASAN...

8.1CVSS6.7AI score0.00022EPSS

Exploits0References3

SUSE CVE•added 2026/03/25 4:54 p.m.•2 views

SUSE CVE-2026-23395

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix accepting multiple L2CAPECREDCONNREQ Currently the code attempts to accept requests regardless of the command identifier which may cause multiple requests to be marked as pending FLAGDEFERSETUP which can cau...

6.5CVSS5.7AI score0.00047EPSS

Exploits0References15

EUVD•added 2026/03/25 12:30 p.m.•2 views

EUVD-2026-15398

5.7AI score0.00047EPSS

Exploits0References7

NVD•added 2026/03/25 11:16 a.m.•0 views

CVE-2026-23395

8.8CVSS0.00047EPSS

Exploits0References8

OSV•added 2026/03/25 11:16 a.m.•1 views

UBUNTU-CVE-2026-23395