CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

73641 matches found

CVE•added 2026/05/28 9:36 a.m.•13 views

CVE-2026-46176

The CVE-2026-46176 issue affects the Linux kernel RDMA mlx5 path (mlx5_ib_dev_res_srq_init): when ib_create_srq() fails for s1, the error path can end up with freed s0 and ERR_PTR s1 assigned to devr->s0/devr->s1, leading to use-after-free/double-free risk in subsequent access. The fix adds...

7.8CVSS5.8AI score0.00138EPSS

Exploits0References5Affected Software1

ATTACKERKB•added 2026/05/28 9:36 a.m.•13 views

CVE-2026-46176

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix error path fall-through in mlx5ibdevressrqinit mlx5ibdevressrqinit allocates two SRQs, s0 and s1. When ibcreatesrq fails for s1, the error branch destroys s0 but falls through and unconditionally assigns the freed ...

5.7AI score0.00138EPSS

Exploits0References6Affected Software1

EUVD•added 2026/05/28 9:36 a.m.•9 views

EUVD-2026-32803

5.8AI score0.00138EPSS

Exploits0References5

ATTACKERKB•added 2026/05/28 9:36 a.m.•7 views

CVE-2026-46172

In the Linux kernel, the following vulnerability has been resolved: ipv6: xfrm6: release dst on error in xfrm6rcvencap xfrm6rcvencap performs an IPv6 route lookup when the skb does not already have a dst attached. ip6routeinputlookup returns a referenced dst entry even when the lookup resolves to...

5.7AI score0.00128EPSS

Exploits0References9Affected Software1

EUVD•added 2026/05/28 9:36 a.m.•6 views

EUVD-2026-32799

5.8AI score0.00128EPSS

Exploits0References5

CVE•added 2026/05/28 9:36 a.m.•15 views

CVE-2026-46172

** CWE-XXXX**: CVE-2026-46172 affects the Linux kernel IPv6 xfrm6 path. The issue occurs in xfrm6_rcv_encap() during an IPv6 route lookup when a dst is not yet attached; ip6_route_input_lookup() can return a dst with an error, and if dst->error is set, the skb is dropped without attaching/rele...

5.5CVSS5.8AI score0.00128EPSS

Exploits0References8Affected Software1

Cvelist•added 2026/05/28 9:36 a.m.•30 views

CVE-2026-46164 btrfs: fix double free in create_space_info_sub_group() error path

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix double free in createspaceinfosubgroup error path When kobjectinitandadd fails, the call chain is: createspaceinfosubgroup - btrfssysfsaddspaceinfotype - kobjectinitandadd - failure - kobjectput&subgroup-kobj -...

7CVSS0.00138EPSS

Exploits0References6

Debian CVE•added 2026/05/28 9:36 a.m.•7 views

CVE-2026-46164

7CVSS5.7AI score0.00138EPSS

Exploits0

CVE•added 2026/05/28 9:36 a.m.•15 views

CVE-2026-46162

CVE-2026-46162 affects the Linux kernel ice driver. The vulnerability is a double free in the error path of ice_sf_eth_activate() : when auxiliary_device_add() fails, execution jumps to the auxiliary device uninit path, the device release callback frees the device, but the code then falls through...

7.8CVSS5.8AI score0.00138EPSS

Exploits0References4Affected Software1

Debian CVE•added 2026/05/28 9:36 a.m.•5 views

CVE-2026-46162

In the Linux kernel, the following vulnerability has been resolved: ice: fix double free in icesfethactivate error path When auxiliarydeviceadd fails, icesfethactivate jumps to auxdevuninit and calls auxiliarydeviceuninit&sfdev-adev. The device release callback icesfdevrelease frees sfdev, but th...

7.8CVSS5.7AI score0.00138EPSS

Exploits0

Debian CVE•added 2026/05/28 9:36 a.m.•7 views

CVE-2026-46144

In the Linux kernel, the following vulnerability has been resolved: RDMA/mana: Fix error unwind in manaibcreateqprss Sashiko points out that manaibcfgvportsteering is leaked, the normal destroy path cleans it up...

5.5CVSS5.7AI score0.00127EPSS

Exploits0

CVE•added 2026/05/28 9:36 a.m.•17 views

CVE-2026-46144

The CVE-2026-46144 entry concerns the Linux kernel RDMA mana driver. A resource leak occurs during error unwind in mana_ib_create_qp_rss(), where mana_ib_cfg_vport_steering() is not properly cleaned up; this could cause resource exhaustion (DoS). The issue has been fixed in the kernel (patched), ...

5.5CVSS5.8AI score0.00127EPSS

Exploits0References5Affected Software1

EUVD•added 2026/05/28 9:36 a.m.•10 views

EUVD-2026-32771

5.8AI score0.00127EPSS

Exploits0References5

Debian CVE•added 2026/05/28 9:35 a.m.•5 views

CVE-2026-46129

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix double free in createspaceinfo error path When kobjectinitandadd fails, the call chain is: createspaceinfo - btrfssysfsaddspaceinfotype - kobjectinitandadd - failure - kobjectput&spaceinfo-kobj - spaceinforelease -...

7.8CVSS5.7AI score0.00138EPSS

Exploits0

ATTACKERKB•added 2026/05/28 9:35 a.m.•6 views

CVE-2026-46129

7.8CVSS5.7AI score0.00138EPSS

Exploits0References7Affected Software1

CVE•added 2026/05/28 9:35 a.m.•13 views

CVE-2026-46129

CVE-2026-46129 concerns the Linux kernel’s btrfs subsystem. In the create_space_info() error path, if kobject_init_and_add() fails, the chain leads to a double free of space_info due to both a direct kfree and a later release via space_info->kobj. The fix changes cleanup so that after kobject_...

7.8CVSS5.8AI score0.00138EPSS

Exploits0References6

Cvelist•added 2026/05/28 9:35 a.m.•29 views

CVE-2026-46127 RDMA/ocrdma: Don't NULL deref uctx on errors in ocrdma_copy_pd_uresp()

In the Linux kernel, the following vulnerability has been resolved: RDMA/ocrdma: Don't NULL deref uctx on errors in ocrdmacopypduresp Sashiko points out that pd-uctx isn't initialized until late in the function so all these error flow references are NULL and will crash. Use the uctx that isn't NU...

0.00184EPSS

Exploits0References8

ATTACKERKB•added 2026/05/28 9:35 a.m.•7 views

CVE-2026-46127

5.7AI score0.00184EPSS

Exploits0References9Affected Software1

EUVD•added 2026/05/28 9:35 a.m.•11 views

EUVD-2026-32886

5.8AI score0.00184EPSS

Exploits0References5

Debian CVE•added 2026/05/28 9:35 a.m.•9 views

CVE-2026-46127