Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

4989 matches found

CVE
CVEadded 2026/05/08 2:21 p.m.14 views

CVE-2026-43356

The CVE-2026-43356 issue affects the Linux kernel IIO ADIS IMU drivers (e.g., adis16480, adis16490, adis16545). In adis_init(), the code dereferences adis->ops to inspect function pointers without first verifying that adis->ops itself is non-NULL, leading to a NULL pointer dereference durin...

5.5CVSS5.8AI score0.00121EPSS
Exploits0References3Affected Software1
NVD
NVDadded 2026/05/08 2:16 p.m.7 views

CVE-2026-43337

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix NULL pointer dereference in dcn401inithw dcn401inithw assumes that updatebwboundingbox is valid when entering the update path. However, the existing condition: !fams2enable && updatebwboundingbox || freqchang...

5.5CVSS0.00112EPSS
Exploits0References3
NVD
NVDadded 2026/05/08 2:16 p.m.7 views

CVE-2026-43328

In the Linux kernel, the following vulnerability has been resolved: cpufreq: governor: fix double free in cpufreqdbsgovernorinit error path When kobjectinitandadd fails, cpufreqdbsgovernorinit calls kobjectput&dbsdata-attrset.kobj. The kobject release callback cpufreqdbsdatarelease calls...

7.8CVSS0.00129EPSS
Exploits0References8
NVD
NVDadded 2026/05/08 2:16 p.m.8 views

CVE-2026-43312

In the Linux kernel, the following vulnerability has been resolved: media: i2c: ov5647: Initialize subdev before controls In ov5647initcontrols we call v4l2getsubdevdata, but it is initialized by v4l2i2csubdevinit in the probe, which currently happens after initcontrols. This can result in a...

5.5CVSS0.00123EPSS
Exploits0References7
UbuntuCve
UbuntuCveadded 2026/05/08 2:16 p.m.5 views

CVE-2026-43312

In the Linux kernel, the following vulnerability has been resolved: media: i2c: ov5647: Initialize subdev before controls In ov5647initcontrols we call v4l2getsubdevdata, but it is initialized by v4l2i2csubdevinit in the probe, which currently happens after initcontrols. This can result in a...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References9
UbuntuCve
UbuntuCveadded 2026/05/08 2:16 p.m.4 views

CVE-2026-43337

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix NULL pointer dereference in dcn401inithw dcn401inithw assumes that updatebwboundingbox is valid when entering the update path. However, the existing condition: !fams2enable && updatebwboundingbox || freqchang...

5.5CVSS5.7AI score0.00112EPSS
Exploits0References5
OSV
OSVadded 2026/05/08 2:16 p.m.2 views

UBUNTU-CVE-2026-43288

In the Linux kernel, the following vulnerability has been resolved: ext4: move ext4percpuparaminit before ext4mbinit When running kvm-xfstests -c ext4/1k -C 1 generic/383 with the DOUBLECHECK macro defined, the following panic is triggered:...

5.5CVSS5.8AI score0.0013EPSS
Exploits0References8
Cvelist
Cvelistadded 2026/05/08 1:39 p.m.26 views

CVE-2026-43344 perf/x86/intel/uncore: Fix die ID init and look up bugs

In the Linux kernel, the following vulnerability has been resolved: perf/x86/intel/uncore: Fix die ID init and look up bugs In snbeppci2phymapinit, in the nrnodeids 8 path, uncoredevicetodie may return -1 when all CPUs associated with the UBOX device are offline. Remove the WARNONONCEdieid == -1...

0.00102EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2026/05/08 1:39 p.m.4 views

CVE-2026-43344

In the Linux kernel, the following vulnerability has been resolved: perf/x86/intel/uncore: Fix die ID init and look up bugs In snbeppci2phymapinit, in the nrnodeids 8 path, uncoredevicetodie may return -1 when all CPUs associated with the UBOX device are offline. Remove the WARNONONCEdieid == -1...

5.7AI score0.00102EPSS
Exploits0References3Affected Software1
CVE
CVEadded 2026/05/08 1:39 p.m.13 views

CVE-2026-43344

CVE-2026-43344 affects the Linux kernel perf/x86/intel/uncore subsystem. The root cause is incorrect die ID initialization/lookup in snbep_pci2phy_map_init() that can produce die_id == -1 when CPUs are offline or when NUMA is disabled, causing uncore_device_to_die() to misbehave and PMON units to...

5.5CVSS5.8AI score0.00102EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/05/08 1:31 p.m.5 views

CVE-2026-43337

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix NULL pointer dereference in dcn401inithw dcn401inithw assumes that updatebwboundingbox is valid when entering the update path. However, the existing condition: !fams2enable && updatebwboundingbox || freqchang...

5.5CVSS5.7AI score0.00112EPSS
Exploits0References4Affected Software1
Debian CVE
Debian CVEadded 2026/05/08 1:31 p.m.6 views

CVE-2026-43337

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix NULL pointer dereference in dcn401inithw dcn401inithw assumes that updatebwboundingbox is valid when entering the update path. However, the existing condition: !fams2enable && updatebwboundingbox || freqchang...

5.5CVSS5.7AI score0.00112EPSS
Exploits0
CVE
CVEadded 2026/05/08 1:31 p.m.14 views

CVE-2026-43337

CVE-2026-43337 concerns the Linux kernel DRM/AMD display path, where a NULL pointer dereference can occur in dcn401_init_hw() when calling update_bw_bounding_box() without validating the callback pointer. The existing condition ((!fams2_enable && update_bw_bounding_box) || freq_changed) can evalu...

5.5CVSS5.7AI score0.00112EPSS
Exploits0References3Affected Software1
CVE
CVEadded 2026/05/08 1:31 p.m.13 views

CVE-2026-43328

Root cause: in the Linux kernel cpufreq governor, the error path in cpufreq_dbs_governor_init() could trigger a double free when kobject_init_and_add() fails. The kobject release path previously attempted cleanup via gov->exit(dbs_data) and kfree(dbs_data) twice. The fix keeps a direct kfree(d...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References8Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/05/08 1:31 p.m.3 views

CVE-2026-43328

In the Linux kernel, the following vulnerability has been resolved: cpufreq: governor: fix double free in cpufreqdbsgovernorinit error path When kobjectinitandadd fails, cpufreqdbsgovernorinit calls kobjectputdata-attrset.kobj. The kobject release callback cpufreqdbsdatarelease calls...

7.8CVSS5.7AI score0.00129EPSS
Exploits0References8Affected Software1
CVE
CVEadded 2026/05/08 1:11 p.m.13 views

CVE-2026-43297

The CVE-2026-43297 issue affects the Linux kernel rockchip: rga driver. rga_get_frame() can return ERR_PTR(-EINVAL) for unsupported/invalid buffer types, and rga_buf_init() may dereference that pointer without checking the error, leading to a crash. The fix adds proper ERR_PTR checking in rga_buf...

5.5CVSS5.9AI score0.00122EPSS
Exploits0References4Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/05/08 1:11 p.m.6 views

CVE-2026-43288

In the Linux kernel, the following vulnerability has been resolved: ext4: move ext4percpuparaminit before ext4mbinit When running kvm-xfstests -c ext4/1k -C 1 generic/383 with the DOUBLECHECK macro defined, the following panic is triggered:...

5.8AI score0.0013EPSS
Exploits0References6Affected Software1
CVE
CVEadded 2026/05/08 1:11 p.m.15 views

CVE-2026-43288

Summary: CVE-2026-43288 relates to the Linux kernel ext4 filesystem. The root cause is a per-CPU counter accessed before it is initialized during block bitmap validation, which can cause a kernel panic and potential DoS when mounting a specially crafted ext4 filesystem with quota/project options....

5.5CVSS5.9AI score0.0013EPSS
Exploits0References5Affected Software1
Cvelist
Cvelistadded 2026/05/08 1:11 p.m.29 views

CVE-2026-43288 ext4: move ext4_percpu_param_init() before ext4_mb_init()

In the Linux kernel, the following vulnerability has been resolved: ext4: move ext4percpuparaminit before ext4mbinit When running kvm-xfstests -c ext4/1k -C 1 generic/383 with the DOUBLECHECK macro defined, the following panic is triggered:...

0.0013EPSS
Exploits0References5
Tenable Nessus
Tenable Nessusadded 2026/05/08 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-43328

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - cpufreq: governor: fix double free in cpufreqdbsgovernorinit error path When kobjectinitandadd fails, cpufreqdbsgovernorinit calls...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References3
Rows per page
Query Builder