Lucene search
K

1247 matches found

CVE
CVE
added 2026/05/08 1:11 p.m.19 views

CVE-2026-43306

CVE-2026-43306 affects the Linux kernel due to bpf: crypto: Use the correct destructor kfunc type. With CONFIG_CFI enabled, indirect calls must match the target function’s pointer type. In the reported case, a CFI failure occurred at bpf_obj_free_fields while freeing a BPF crypto context, signali...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References4Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/08 1:11 p.m.7 views

CVE-2026-43306

In the Linux kernel, the following vulnerability has been resolved: bpf: crypto: Use the correct destructor kfunc type With CONFIGCFI enabled, the kernel strictly enforces that indirect function calls use a function pointer type that matches the target function. I ran into the following type...

5.8AI score0.00122EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2026/05/08 1:11 p.m.37 views

CVE-2026-43306 bpf: crypto: Use the correct destructor kfunc type

In the Linux kernel, the following vulnerability has been resolved: bpf: crypto: Use the correct destructor kfunc type With CONFIGCFI enabled, the kernel strictly enforces that indirect function calls use a function pointer type that matches the target function. I ran into the following type...

0.00122EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/05/08 1:11 p.m.38 views

CVE-2026-43296 octeontx2-af: Workaround SQM/PSE stalls by disabling sticky

In the Linux kernel, the following vulnerability has been resolved: octeontx2-af: Workaround SQM/PSE stalls by disabling sticky NIX SQ manager sticky mode is known to cause stalls when multiple SQs share an SMQ and transmit concurrently. Additionally, PSE may deadlock on transitions between stick...

7.5CVSS0.00387EPSS
Exploits0References8
Snyk
Snyk
added 2026/05/08 9:25 a.m.10 views

Always-Incorrect Control Flow Implementation

Overview Affected versions of this package are vulnerable to Always-Incorrect Control Flow Implementation in the EqualsUri function. An attacker can cause incorrect URI comparisons by supplying specially crafted input values. Remediation Upgrade uriparser to version 1.0.2 or higher. References -...

5.3CVSS5.3AI score0.00211EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/05/08 12:0 a.m.11 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from a mismatch in the type of the bpf encryption kfunc destructor function. This vulnerability may...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/05/06 1:41 a.m.8 views

SUSE CVE-2026-43034

In the Linux kernel, the following vulnerability has been resolved: bnxten: set backing store type from query type bnxthwrmfuncbackingstoreqcapsv2 stores resp-type from the firmware response in ctxm-type and later uses that value to index fixed backing-store metadata arrays such as ctxarr and...

5.8AI score0.00121EPSS
Exploits0References3
GithubExploit
GithubExploit
added 2026/05/05 11:31 a.m.198 views

Exploit for Double Free in Apache Http_Server

CVE-2026-23918-test This repository contains a Proof of Concep...

8.8CVSS5.8AI score0.4581EPSS
Exploits16
Positive Technologies
Positive Technologies
added 2026/05/01 12:0 a.m.5 views

PT-2026-36451

In the Linux kernel, the following vulnerability has been resolved: bnxt en: set backing store type from query type bnxt hwrm func backing store qcaps v2 stores resp-type from the firmware response in ctxm-type and later uses that value to index fixed backing-store metadata arrays such as ctx arr...

5.8AI score0.00121EPSS
Exploits0References4
Snyk
Snyk
added 2026/04/30 6:21 p.m.6 views

Always-Incorrect Control Flow Implementation

Overview Affected versions of this package are vulnerable to Always-Incorrect Control Flow Implementation in the options.WithCommit process. An attacker can cause loss of data consistency by relying on the transaction commit flag without the transaction actually being committed. Workaround This...

6.9CVSS5.8AI score
Exploits0References3
Packet Storm News
Packet Storm News
added 2026/04/29 12:0 a.m.17 views

Static Attribution of Android Residential Proxy Malware Using Graph Kernels

Android residential proxy applications represent a growing class of potentially-unwanted programs PUPs that covertly route third-party traffic through end-user devices, enabling ad fraud, credential abuse, and evasion of geolocation controls by sophisticated threat actors. Attributing an unknown...

5.8AI score
Exploits0
NVD
NVD
added 2026/04/27 12:16 p.m.7 views

CVE-2026-5938

Improper control flow management allows a crafted document action chain to cause modal dialog reentry on the main thread, resulting in UI freeze and denial of service...

5.5CVSS0.00103EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/27 12:0 a.m.9 views

PT-2026-35400

Improper control flow management allows a crafted document action chain to cause modal dialog reentry on the main thread, resulting in UI freeze and denial of service...

5.5CVSS5.2AI score0.00103EPSS
Exploits0References2
GithubExploit
GithubExploit
added 2026/04/26 6:18 p.m.298 views

denuOwO-hypervisor-vulnerabilities

DenuOwO SVM/VMX Hypervisor — 6 Vulnerabilities PoC + Analysis...

6.4AI score
Exploits0
GithubExploit
GithubExploit
added 2026/04/26 1:49 a.m.94 views

BinExploit-Bench

BinExploit-Bench: Binary Exploitation Capability Benchmark for...

6.1AI score
Exploits0
GithubExploit
GithubExploit
added 2026/04/26 1:35 a.m.103 views

arm-64-exploit-demo

ARM64 Buffer Overflow Exploit Demo A from-scratch demonstrati...

6.8AI score
Exploits0
OSV
OSV
added 2026/04/22 6:31 p.m.8 views

GHSA-5PV5-XH52-HVRP uutils coreutils has an Incorrect Short Circuit Evaluation Issue

A logic error in the expr utility of uutils coreutils causes the program to evaluate parenthesized subexpressions during the parsing phase rather than at the execution phase. This implementation flaw prevents the utility from performing proper short-circuiting for logical OR | and AND & operation...

3.3CVSS5.9AI score0.00156EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2026/04/22 4:9 p.m.4 views

CVE-2026-35378

A logic error in the expr utility of uutils coreutils causes the program to evaluate parenthesized subexpressions during the parsing phase rather than at the execution phase. This implementation flaw prevents the utility from performing proper short-circuiting for logical OR | and AND & operation...

3.3CVSS5.9AI score0.00156EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2026/04/22 12:0 a.m.3 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013736)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013736 advisory. In the Linux kernel, the following vulnerability has been resolved: s390/netiucv: Fix return type of netiucvtx With clang's kernel control flow integrity kCFI,...

5.6AI score0.00227EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/04/22 12:0 a.m.8 views

uutils coreutils 安全漏洞

uutils coreutils is a cross-platform core command-line toolset developed by Uutils. There is a security vulnerability in uutils coreutils, which stems from a logical error in the expr function. This error causes the subexpressions within parentheses to be evaluated during the parsing phase rather...

3.3CVSS5.9AI score0.00156EPSS
Exploits1References1
Rows per page
Query Builder