CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

54 matches found

CVE-2026-55762

Rocket.Chat CVE-2026-55762 concerns an unauthenticated mis-authorization on POST /api/v1/fingerprint. Prior to fixed versions, authenticated users could call the endpoint with {"setDeploymentAs": "new-workspace"} to permanently deregister the workspace from Rocket.Chat Cloud, wiping cloud credent...

8.1CVSS5.9AI score0.00323EPSS

Exploits0References1

Positive Technologies•added 5 days ago•11 views

PT-2026-52118

Name of the Vulnerable Software and Affected Versions Rocket.Chat versions prior to 8.5.1 Rocket.Chat versions prior to 8.4.4 Rocket.Chat versions prior to 8.3.6 Rocket.Chat versions prior to 8.2.6 Rocket.Chat versions prior to 8.1.6 Rocket.Chat versions prior to 8.0.7 Rocket.Chat versions prior ...

8.1CVSS5.9AI score0.00323EPSS

Exploits0References3

AstraLinux•added 2026/06/19 11:10 a.m.•2 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: A WARN was issued during the deregmr operation for DM type. Memory regions of the DM type do not have an associated umem. In the mlx5ibderegmr - mlx5freeprivdescs sequence, the code incorrectly selects the wrong branch...

5.5CVSS6.3AI score0.00177EPSS

Exploits0References2

RedhatCVE•added 2026/05/28 9:9 p.m.•14 views

CVE-2026-46200

A flaw was found in the Linux kernel's spi: mpc52xx driver. This vulnerability occurs because the controller is not properly deregistered before its underlying resources, such as interrupts and General Purpose Input/Output GPIO pins, are disabled and released during the driver unbind process. Thi...

5.5CVSS5.8AI score0.00127EPSS

Exploits0References4

SUSE CVE•added 2026/05/28 3:53 a.m.•10 views

SUSE CVE-2026-46074

In the Linux kernel, the following vulnerability has been resolved: spi: ch341: fix memory leaks on probe failures Make sure to deregister the controller, disable pins, and kill and free the RX URB on probe failures to mirror disconnect and avoid memory leaks and use-after-free. Also add an...

6.1CVSS5.8AI score0.00119EPSS

Exploits0References3

NVD•added 2026/05/27 2:17 p.m.•10 views

CVE-2026-46074

5.5CVSS0.00119EPSS

Exploits0References4

ATTACKERKB•added 2026/05/27 12:58 p.m.•6 views

CVE-2026-46074

5.8AI score0.00119EPSS

Exploits0References5Affected Software1

EUVD•added 2026/05/27 12:58 p.m.•14 views

EUVD-2026-32456

5.8AI score0.00119EPSS

Exploits0References4

Cvelist•added 2026/05/27 12:58 p.m.•39 views

CVE-2026-46074 spi: ch341: fix memory leaks on probe failures

0.00119EPSS

Exploits0References4

NVD•added 2026/05/06 10:16 a.m.•8 views

CVE-2026-43120

In the Linux kernel, the following vulnerability has been resolved: RDMA/irdma: Fix double free related to reregusermr If IBMRREREGTRANS is set during reregusermr, the umem will be released and a new one will be allocated in irdmareregmrtrans. If any step of irdmareregmrtrans fails after the new...

7.8CVSS0.00122EPSS

Exploits0References5

SUSE CVE•added 2026/04/25 1:38 a.m.•5 views

SUSE CVE-2026-31578

In the Linux kernel, the following vulnerability has been resolved: media: as102: fix to not free memory after the device is registered in as102usbprobe In as102usb driver, the following race condition occurs: CPU0 CPU1 as102usbprobe kzalloc; // alloc as102devt .... usbregisterdev; fd =...

5.5CVSS5.5AI score0.00128EPSS

Exploits0References3

SUSE CVE•added 2026/04/25 1:37 a.m.•5 views

SUSE CVE-2026-31651

In the Linux kernel, the following vulnerability has been resolved: mmc: vub300: fix NULL-deref on disconnect Make sure to deregister the controller before dropping the reference to the driver data on disconnect to avoid NULL-pointer dereferences or use-after-free...

5.5CVSS5.4AI score0.00111EPSS

Exploits0References3

OSV•added 2026/04/24 3:16 p.m.•6 views

DEBIAN-CVE-2026-31651

5.5CVSS5.3AI score0.00111EPSS

Exploits0References1

Cvelist•added 2026/04/24 2:45 p.m.•27 views

CVE-2026-31651 mmc: vub300: fix NULL-deref on disconnect

0.00111EPSS

Exploits0References8

CVE•added 2026/04/24 2:45 p.m.•14 views

CVE-2026-31651

In CVE-2026-31651, the Linux kernel mmc: vub300 driver is affected by a NULL-deref/use-after-free on disconnect. The root cause is dropping the driver data reference without deregistering the controller, which can lead to NULL-pointer dereferences and a potential system crash (DoS) on local acces...

5.5CVSS5.3AI score0.00111EPSS

Exploits0References8Affected Software1

ATTACKERKB•added 2026/04/24 2:45 p.m.•4 views

CVE-2026-31651

5.3AI score0.00111EPSS

Exploits0References9Affected Software1

EUVD•added 2026/04/24 2:45 p.m.•7 views

EUVD-2026-25544

5.4AI score0.00111EPSS

Exploits0References8

Positive Technologies•added 2026/04/24 12:0 a.m.•5 views

PT-2026-35003

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A NULL-pointer dereference or use-after-free issue exists in the mmc: vub300 component. This occurs during disconnect if the controller is not deregistered before the reference to the...

7.8CVSS5.5AI score0.00378EPSS

Exploits0References121

Redos•added 2026/03/04 12:0 a.m.•2 views

ROS-20260304-73-0032

A vulnerability in the atmdevderegister function net/atm/resources.c of Linux operating systems involves incorrect computation. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

7.8CVSS7.2AI score0.00157EPSS

Exploits0

OSV•added 2026/02/25 7:23 p.m.•4 views

GHSA-X43W-PH7M-PFJX hexchat crate has a Use After Free vulnerability

All versions of this crate have function deregistercommand which can result in use after free. This is unsound. In addition, all versions since 0.3.0 have "safe" macros, which are documented as unsafe to use in threads. In addition, the hexchat crate is no longer actively maintained. If users rel...

9.2CVSS5.5AI score

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by