Lucene search
K

75 matches found

RedhatCVE
RedhatCVE
added last week7 views

CVE-2026-48913

A flaw was found in the Apache HTTP Server's modhttp2 module. This vulnerability, known as a Use After Free, occurs when the server's file handles are exhausted. An attacker could potentially exploit this to cause a denial of service or, in some cases, execute arbitrary code, leading to system...

7.3CVSS6AI score0.00461EPSS
Exploits0References4
OSV
OSV
added 2026/06/10 8:39 a.m.14 views

BIT-APACHE-2026-48913 Apache HTTP Server: mod_http2 memory corruption when file handles exhausted

Use After Free vulnerability in Apache HTTP Server module modhttp2 when file handles are already exhausted. This issue affects Apache HTTP Server: from 2.4.55 through 2.4.67...

7.3CVSS5.4AI score0.00461EPSS
Exploits0References3
NVD
NVD
added 2026/06/08 4:16 p.m.15 views

CVE-2026-48913

Use After Free vulnerability in Apache HTTP Server module modhttp2 when file handles are already exhausted. This issue affects Apache HTTP Server: from 2.4.55 through 2.4.67...

7.3CVSS0.00461EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/08 3:24 p.m.83 views

CVE-2026-48913 Apache HTTP Server: mod_http2 memory corruption when file handles exhausted

Use After Free vulnerability in Apache HTTP Server module modhttp2 when file handles are already exhausted. This issue affects Apache HTTP Server: from 2.4.55 through 2.4.67...

0.00461EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/08 3:24 p.m.9 views

CVE-2026-48913 Apache HTTP Server: mod_http2 memory corruption when file handles exhausted

Use After Free vulnerability in Apache HTTP Server module modhttp2 when file handles are already exhausted. This issue affects Apache HTTP Server: from 2.4.55 through 2.4.67...

5.4AI score0.00461EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/06/08 3:24 p.m.6 views

CVE-2026-48913

Use After Free vulnerability in Apache HTTP Server module modhttp2 when file handles are already exhausted. This issue affects Apache HTTP Server: from 2.4.55 through 2.4.67...

7.3CVSS5.4AI score0.00461EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/06/08 12:0 a.m.16 views

PT-2026-47331

Name of the Vulnerable Software and Affected Versions Apache HTTP Server versions 2.4.55 through 2.4.67 Description A Use After Free issue exists in the mod http2 module of Apache HTTP Server, which occurs when file handles are already exhausted. Use After Free is a memory corruption flaw where a...

9.1CVSS5.4AI score0.41861EPSS
Exploits0References125
RedhatCVE
RedhatCVE
added 2026/05/28 9:12 p.m.14 views

CVE-2026-46124

A flaw was found in the Linux kernel's isofs filesystem. An authenticated NFS Network File System peer can exploit this vulnerability by providing a specially crafted file handle. This allows the server to read arbitrary in-range blocks on the backing device, leading to information disclosure whe...

7.5CVSS5.9AI score0.00425EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/05/28 9:35 a.m.34 views

CVE-2026-46124 isofs: validate block number from NFS file handle in isofs_export_iget

In the Linux kernel, the following vulnerability has been resolved: isofs: validate block number from NFS file handle in isofsexportiget isofsfhtodentry and isofsfhtoparent pass an attacker- controlled block number ifid-block or ifid-parentblock from the NFS file handle to isofsexportiget, which...

7.5CVSS0.00425EPSS
Exploits0References8
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: fs: Relaxing the assertions when encoding file handles fails Encoding file handles is typically performed via a filesystem method called encodefh, which may fail for various reasons. Legacy users of exportfsencodefh—specifically,...

5.5CVSS6.1AI score0.002EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in durable v2 replay of active file handles parsedurablehandlecontext unconditionally assigns dhinfo-fp-conn to the current connection when handling a DURABLEREQV2 context with SMB2FLAGSREPLAYOPERATION...

9.8CVSS5.8AI score0.0029EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/04/03 11:28 p.m.5 views

SUSE CVE-2026-23427

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in durable v2 replay of active file handles parsedurablehandlecontext unconditionally assigns dhinfo-fp-conn to the current connection when handling a DURABLEREQV2 context with SMB2FLAGSREPLAYOPERATION...

9.8CVSS5.7AI score0.0029EPSS
Exploits0References3
EUVD
EUVD
added 2026/04/03 6:31 p.m.3 views

EUVD-2026-18659

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in durable v2 replay of active file handles parsedurablehandlecontext unconditionally assigns dhinfo-fp-conn to the current connection when handling a DURABLEREQV2 context with SMB2FLAGSREPLAYOPERATION...

5.8AI score0.0029EPSS
Exploits0References6
NVD
NVD
added 2026/04/03 4:16 p.m.2 views

CVE-2026-23427

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in durable v2 replay of active file handles parsedurablehandlecontext unconditionally assigns dhinfo-fp-conn to the current connection when handling a DURABLEREQV2 context with SMB2FLAGSREPLAYOPERATION...

9.8CVSS0.0029EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2026/04/03 4:16 p.m.4 views

CVE-2026-23427

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in durable v2 replay of active file handles parsedurablehandlecontext unconditionally assigns dhinfo-fp-conn to the current connection when handling a DURABLEREQV2 context with SMB2FLAGSREPLAYOPERATION...

9.8CVSS5.8AI score0.0029EPSS
Exploits0References7
OSV
OSV
added 2026/04/03 4:16 p.m.3 views

UBUNTU-CVE-2026-23427

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in durable v2 replay of active file handles parsedurablehandlecontext unconditionally assigns dhinfo-fp-conn to the current connection when handling a DURABLEREQV2 context with SMB2FLAGSREPLAYOPERATION...

9.8CVSS5.7AI score0.0029EPSS
Exploits0References11
CVE
CVE
added 2026/04/03 3:15 p.m.21 views

CVE-2026-23427

Summary: CVE-2026-23427 affects ksmbd in the Linux kernel and has been fixed to address a use-after-free in durable v2 replay of active SMB file handles. The root cause is that parse_durable_handle_context() unconditionally assigns dh_info->fp->conn to the current connection when handling D...

9.8CVSS5.8AI score0.0029EPSS
Exploits0References5Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/04/03 3:15 p.m.2 views

CVE-2026-23427

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in durable v2 replay of active file handles parsedurablehandlecontext unconditionally assigns dhinfo-fp-conn to the current connection when handling a DURABLEREQV2 context with SMB2FLAGSREPLAYOPERATION...

5.7AI score0.0029EPSS
Exploits0References6Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/03 12:0 a.m.3 views

PT-2026-30122

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 7.0.0-rc3+ Description The Linux kernel contained a use-after-free flaw within the ksmbd component, specifically in the handling of durable v2 replay operations involving active file handles. The parse durable...

9.8CVSS7.1AI score0.00817EPSS
Exploits8References105
RedhatCVE
RedhatCVE
added 2026/01/07 9:39 a.m.8 views

CVE-1999-0167

In SunOS, NFS file handles could be guessed, giving unauthorized access to the exported file system...

4.6CVSS6.9AI score0.00391EPSS
Exploits0References1
Rows per page
Query Builder