Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

73865 matches found

ATTACKERKB
ATTACKERKBadded 2026/04/24 2:44 p.m.3 views

CVE-2026-31646

In the Linux kernel, the following vulnerability has been resolved: net: lan966x: fix pagepool error handling in lan966xfdmarxallocpagepool pagepoolcreate can return an ERRPTR on failure. The return value is used unconditionally in the loop that follows, passing the error pointer through...

5.4AI score0.00122EPSS
Exploits0References6Affected Software1
EUVD
EUVDadded 2026/04/24 2:44 p.m.4 views

EUVD-2026-25539

In the Linux kernel, the following vulnerability has been resolved: net: lan966x: fix pagepool error handling in lan966xfdmarxallocpagepool pagepoolcreate can return an ERRPTR on failure. The return value is used unconditionally in the loop that follows, passing the error pointer through...

5.4AI score0.00122EPSS
Exploits0References5
Debian CVE
Debian CVEadded 2026/04/24 2:44 p.m.4 views

CVE-2026-31646

In the Linux kernel, the following vulnerability has been resolved: net: lan966x: fix pagepool error handling in lan966xfdmarxallocpagepool pagepoolcreate can return an ERRPTR on failure. The return value is used unconditionally in the loop that follows, passing the error pointer through...

5.5CVSS5.3AI score0.00122EPSS
Exploits0
ATTACKERKB
ATTACKERKBadded 2026/04/24 2:44 p.m.4 views

CVE-2026-31645

In the Linux kernel, the following vulnerability has been resolved: net: lan966x: fix page pool leak in error paths lan966xfdmarxalloc creates a page pool but does not destroy it if the subsequent fdmaalloccoherent call fails, leaking the pool. Similarly, lan966xfdmainit frees the coherent DMA...

5.3AI score0.00122EPSS
Exploits0References5Affected Software1
CVE
CVEadded 2026/04/24 2:44 p.m.13 views

CVE-2026-31645

CVE-2026-31645 pertains to the Linux kernel lan966x network driver. The issue is a memory/resource leak: in error paths of lan966x_fdma_rx_alloc() a created page pool is not destroyed if a subsequent fdma_alloc_coherent() fails, and in lan966x_fdma_init() the page pool created by lan966x_fdma_rx_...

5.5CVSS5.3AI score0.00122EPSS
Exploits0References4Affected Software1
Cvelist
Cvelistadded 2026/04/24 2:44 p.m.28 views

CVE-2026-31645 net: lan966x: fix page pool leak in error paths

In the Linux kernel, the following vulnerability has been resolved: net: lan966x: fix page pool leak in error paths lan966xfdmarxalloc creates a page pool but does not destroy it if the subsequent fdmaalloccoherent call fails, leaking the pool. Similarly, lan966xfdmainit frees the coherent DMA...

0.00122EPSS
Exploits0References4
Debian CVE
Debian CVEadded 2026/04/24 2:44 p.m.4 views

CVE-2026-31645

In the Linux kernel, the following vulnerability has been resolved: net: lan966x: fix page pool leak in error paths lan966xfdmarxalloc creates a page pool but does not destroy it if the subsequent fdmaalloccoherent call fails, leaking the pool. Similarly, lan966xfdmainit frees the coherent DMA...

5.5CVSS5.2AI score0.00122EPSS
Exploits0
Debian CVE
Debian CVEadded 2026/04/24 2:44 p.m.7 views

CVE-2026-31638

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Only put the call ref if one was acquired rxrpcinputpacketonconn can process a to-client packet after the current client call on the channel has already been torn down. In that case chan-call is NULL, rxrpctrygetcall retur...

7.5CVSS5.3AI score0.00441EPSS
Exploits0
EUVD
EUVDadded 2026/04/24 2:42 p.m.5 views

EUVD-2026-25516

In the Linux kernel, the following vulnerability has been resolved: net: usb: cdc-phonet: fix skb frags overflow in rxcomplete A malicious USB device claiming to be a CDC Phonet modem can overflow the skbsharedinfo-frags array by sending an unbounded sequence of full-page bulk transfers. Drop the...

5.3AI score0.00125EPSS
Exploits0References4
Cvelist
Cvelistadded 2026/04/24 2:42 p.m.33 views

CVE-2026-31623 net: usb: cdc-phonet: fix skb frags[] overflow in rx_complete()

In the Linux kernel, the following vulnerability has been resolved: net: usb: cdc-phonet: fix skb frags overflow in rxcomplete A malicious USB device claiming to be a CDC Phonet modem can overflow the skbsharedinfo-frags array by sending an unbounded sequence of full-page bulk transfers. Drop the...

0.00125EPSS
Exploits0References9
CVE
CVEadded 2026/04/24 2:42 p.m.26 views

CVE-2026-31623

The CVE-2026-31623 issue affects the Linux kernel net: usb: cdc-phonet driver. A malicious USB device claiming to be a CDC Phonet modem can overflow the skb_shared_info->frags[] array by sending an unbounded sequence of full-page bulk transfers in rx_complete(). The consequence described is a ...

5.5CVSS5.3AI score0.00125EPSS
Exploits0References9Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/04/24 2:42 p.m.4 views

CVE-2026-31621

In the Linux kernel, the following vulnerability has been resolved: bnge: return after auxiliarydeviceuninit in error path When auxiliarydeviceadd fails, the error block calls auxiliarydeviceuninit but does not return. The uninit drops the last reference and synchronously runs bngeauxdevrelease,...

5.3AI score0.00121EPSS
Exploits0References4Affected Software1
Cvelist
Cvelistadded 2026/04/24 2:42 p.m.30 views

CVE-2026-31621 bnge: return after auxiliary_device_uninit() in error path

In the Linux kernel, the following vulnerability has been resolved: bnge: return after auxiliarydeviceuninit in error path When auxiliarydeviceadd fails, the error block calls auxiliarydeviceuninit but does not return. The uninit drops the last reference and synchronously runs bngeauxdevrelease,...

0.00121EPSS
Exploits0References3
EUVD
EUVDadded 2026/04/24 2:42 p.m.6 views

EUVD-2026-25514

In the Linux kernel, the following vulnerability has been resolved: bnge: return after auxiliarydeviceuninit in error path When auxiliarydeviceadd fails, the error block calls auxiliarydeviceuninit but does not return. The uninit drops the last reference and synchronously runs bngeauxdevrelease,...

5.4AI score0.00121EPSS
Exploits0References2
CVE
CVEadded 2026/04/24 2:42 p.m.12 views

CVE-2026-31621

The CVE-2026-31621 issue affects the Linux kernel bnge driver: on failure of auxiliary_device_add(), the error path calls auxiliary_device_uninit() but does not return, causing a null dereference when cleanup runs bnge_aux_dev_release() (bd->auxr_dev is freed and then dereferenced). Red Hat re...

5.5CVSS5.4AI score0.00121EPSS
Exploits0References3Affected Software1
Cvelist
Cvelistadded 2026/04/24 2:42 p.m.32 views

CVE-2026-31613 smb: client: fix OOB reads parsing symlink error response

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix OOB reads parsing symlink error response When a CREATE returns STATUSSTOPPEDONSYMLINK, smb2checkmessage returns success without any length validation, leaving the symlink parsers as the only defense against an...

8.1CVSS0.00378EPSS
Exploits0References7
CVE
CVEadded 2026/04/24 2:42 p.m.27 views

CVE-2026-31613

The CVE-2026-31613 issue affects the Linux kernel SMB client. A crafted symlink error response from a remote SMB server can trigger an out-of-bounds read during symlink parsing, allowing UTF-16 data to be read via readlink(2). Root cause: smb2_check_message() accepts a CREATE status without valid...

8.1CVSS5.5AI score0.00378EPSS
Exploits0References7Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/04/24 2:42 p.m.3 views

CVE-2026-31613

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix OOB reads parsing symlink error response When a CREATE returns STATUSSTOPPEDONSYMLINK, smb2checkmessage returns success without any length validation, leaving the symlink parsers as the only defense against an...

8.1CVSS5.4AI score0.00378EPSS
Exploits0References7Affected Software1
EUVD
EUVDadded 2026/04/24 2:42 p.m.4 views

EUVD-2026-25506

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix OOB reads parsing symlink error response When a CREATE returns STATUSSTOPPEDONSYMLINK, smb2checkmessage returns success without any length validation, leaving the symlink parsers as the only defense against an...

5.4AI score0.00378EPSS
Exploits0References3
Debian CVE
Debian CVEadded 2026/04/24 2:42 p.m.6 views

CVE-2026-31613

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix OOB reads parsing symlink error response When a CREATE returns STATUSSTOPPEDONSYMLINK, smb2checkmessage returns success without any length validation, leaving the symlink parsers as the only defense against an...

8.1CVSS5.4AI score0.00378EPSS
Exploits0
Rows per page
Query Builder