CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Vulnrichment•added 5 days ago•9 views

CVE-2026-44640 NanoMQ: QUIC Dialer Close Type Confusion

CVE•added 5 days ago•15 views

CVE-2026-44640

CVE-2026-44640 affects NanoMQ (MQTT Broker). The issue is a type confusion in the QUIC dialer: aio->prov_data is stored as nni_quic_conn * during dialing but read as ex_quic_conn * during dialer close, leading to invalid object interpretation and a close-path hang/crash. This describes the vul...

EUVD•added 5 days ago•4 views

EUVD-2026-33428

SUSE CVE•added 5 days ago•6 views

SUSE CVE-2026-46156

In the Linux kernel, the following vulnerability has been resolved: LoongArch: Fix potential ADE in loongsongpufixupdmahang The switch case in loongsongpufixupdmahang may not DC2 or DC3, and readlcrtcreg will access with random address, because the "device" is from "base+PCIDEVICEID", "base" is...

Tenable Nessus•added 5 days ago•5 views

Exploits0References3

Linux Distros Unpatched Vulnerability : CVE-2026-45880

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: PCI/P2PDMA: Release per-CPU pgmap ref when vminsertpage fails When vminsertpage fails in...

5.7AI score0.00024EPSS

Tenable Nessus•added 5 days ago•5 views

Linux Distros Unpatched Vulnerability : CVE-2026-46156

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - LoongArch: Fix potential ADE in loongsongpufixupdmahang The switch case in loongsongpufixupdmahang may not DC2 or DC3, and readlcrtcreg will access with random...

5.9AI score0.00024EPSS

Positive Technologies•added 5 days ago•6 views

PT-2026-44985

NanoMQ MQTT Broker NanoMQ is an all-around Edge Messaging Platform. Prior to 0.24.14, aio-prov data is stored as nni quic conn during dialing, but read as ex quic conn during dialer close. This type confusion causes invalid object interpretation and leads to close-path hang/crash behavior. This...

RedhatCVE•added 6 days ago•2 views

Exploits0References3

CVE-2026-46142

A flaw was found in the Linux kernel's libwx network driver. When a Virtual Function VF is initialized, it attempts to read a Physical Function PF restricted register, WXCFGPORTST. This illegal register access can lead to a system hang, resulting in a Denial of Service DoS...

5.8AI score0.00018EPSS

Exploits0References4

RedhatCVE•added 6 days ago•7 views

CVE-2026-46156

A flaw was found in the Linux kernel's LoongArch architecture. An issue in the loongsongpufixupdmahang function, specifically with incorrect handling of device IDs when a discrete GPU is inserted, can lead to an Address Data Error ADE. This flaw may allow a local attacker to trigger a kernel pani...

RedhatCVE•added 6 days ago•3 views

Exploits0References4

CVE-2026-46177

A flaw was found in the Linux kernel's Intelligent Platform Management Interface IPMI driver. This vulnerability allows a malfunctioning Baseboard Management Controller BMC to cause the IPMI driver to continuously fetch events and messages, or become stuck if the attention bit remains active. Thi...

7.5CVSS5.8AI score0.00052EPSS

Exploits0References4

NVD•added 6 days ago•2 views

CVE-2026-46156

0.00024EPSS

Exploits0References6

OSV•added 6 days ago•1 views

UBUNTU-CVE-2026-46156

5.7AI score0.00024EPSS

Exploits0References8

Debian CVE•added 6 days ago•5 views

CVE-2026-46156

5.7AI score0.00024EPSS

Exploits0

EUVD•added 6 days ago•4 views

EUVD-2026-32783

ATTACKERKB•added 6 days ago•4 views

Exploits0References5

CVE-2026-46156

Exploits0References7Affected Software1

CVE•added 6 days ago•7 views

CVE-2026-46142

In the Linux kernel, the net: libwx fix resolves a VF initialization issue where WX_CFG_PORT_ST, a PF-restricted register, could be illegally read, causing a system hang. The vulnerability surfaced when a VF could derive the bus function ID directly from PCI_FUNC(pdev->devfn). The patch addres...

5.8AI score0.00018EPSS

Exploits0References5

SUSE CVE•added 6 days ago•3 views

SUSE CVE-2026-45880

In the Linux kernel, the following vulnerability has been resolved: PCI/P2PDMA: Release per-CPU pgmap ref when vminsertpage fails When vminsertpage fails in p2pmemallocmmap, p2pmemallocmmap doesn't invoke percpurefput to free the per-CPU ref of pgmap acquired after genpoolallocowner, and...