Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8706 matches found

UbuntuCve
UbuntuCveadded 2026/02/14 3:16 p.m.2 views

CVE-2026-23123

In the Linux kernel, the following vulnerability has been resolved: interconnect: debugfs: initialize srcnode and dstnode to empty strings The debugfscreatestr API assumes that the string pointer is either NULL or points to valid kmalloc memory. Leaving the pointer uninitialized can cause problem...

5.5CVSS5.7AI score0.00017EPSS
Exploits0References12
OSV
OSVadded 2026/02/14 3:16 p.m.1 views

UBUNTU-CVE-2026-23123

In the Linux kernel, the following vulnerability has been resolved: interconnect: debugfs: initialize srcnode and dstnode to empty strings The debugfscreatestr API assumes that the string pointer is either NULL or points to valid kmalloc memory. Leaving the pointer uninitialized can cause problem...

5.5CVSS5.7AI score0.00017EPSS
Exploits0References14
OSV
OSVadded 2026/02/14 3:16 p.m.0 views

UBUNTU-CVE-2026-23117

In the Linux kernel, the following vulnerability has been resolved: ice: add missing icedeinithw in devlink reinit path devlink-reload results in iceinithw failed error, and then removing the ice driver causes a NULL pointer dereference. +0.102213 ice 0000:ca:00.0: iceinithw failed: -16...

5.5CVSS5.7AI score0.00019EPSS
Exploits0References5
OSV
OSVadded 2026/02/14 3:16 p.m.5 views

UBUNTU-CVE-2026-23125

In the Linux kernel, the following vulnerability has been resolved: sctp: move SCTPCMDASSOCSHKEY right after SCTPCMDPEERINIT A null-ptr-deref was reported in the SCTP transmit path when SCTP-AUTH key initialization fails: ================================================================== KASAN:...

5.5CVSS5.7AI score0.00016EPSS
Exploits0References30
CVE
CVEadded 2026/02/14 3:9 p.m.9 views

CVE-2026-23125

CVE-2026-23125 (Linux kernel SCTP) : A null-pointer dereference in the SCTP transmit path could occur when SCTP-AUTH key initialization fails during INIT_ACK processing. The issue arises because SCTP_CMD_ASSOC_SHKEY is executed after PEER_INIT and can leave asoc->shkey NULL if key setup fails,...

5.5CVSS5.3AI score0.00016EPSS
Exploits0References7Affected Software1
Debian CVE
Debian CVEadded 2026/02/14 3:9 p.m.4 views

CVE-2026-23125

In the Linux kernel, the following vulnerability has been resolved: sctp: move SCTPCMDASSOCSHKEY right after SCTPCMDPEERINIT A null-ptr-deref was reported in the SCTP transmit path when SCTP-AUTH key initialization fails: ================================================================== KASAN:...

5.5CVSS5.2AI score0.00016EPSS
Exploits0
Cvelist
Cvelistadded 2026/02/14 3:9 p.m.24 views

CVE-2026-23125 sctp: move SCTP_CMD_ASSOC_SHKEY right after SCTP_CMD_PEER_INIT

In the Linux kernel, the following vulnerability has been resolved: sctp: move SCTPCMDASSOCSHKEY right after SCTPCMDPEERINIT A null-ptr-deref was reported in the SCTP transmit path when SCTP-AUTH key initialization fails: ================================================================== KASAN:...

0.00016EPSS
Exploits0References7
EUVD
EUVDadded 2026/02/14 3:9 p.m.4 views

EUVD-2026-5913

In the Linux kernel, the following vulnerability has been resolved: interconnect: debugfs: initialize srcnode and dstnode to empty strings The debugfscreatestr API assumes that the string pointer is either NULL or points to valid kmalloc memory. Leaving the pointer uninitialized can cause problem...

5.2AI score0.00017EPSS
Exploits0References4
Cvelist
Cvelistadded 2026/02/14 3:9 p.m.25 views

CVE-2026-23117 ice: add missing ice_deinit_hw() in devlink reinit path

In the Linux kernel, the following vulnerability has been resolved: ice: add missing icedeinithw in devlink reinit path devlink-reload results in iceinithw failed error, and then removing the ice driver causes a NULL pointer dereference. +0.102213 ice 0000:ca:00.0: iceinithw failed: -16...

0.00019EPSS
Exploits0References2
CNNVD
CNNVDadded 2026/02/14 12:0 a.m.3 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the failure to cancel the mloscanstartwk task. This vulnerability may lead to queuing after...

7.8CVSS7AI score0.00019EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2026/02/13 7:18 p.m.4 views

CVE-2026-26218

newbee-mall includes pre-seeded administrator accounts in its database initialization script. These accounts are provisioned with a predictable default password. Deployments that initialize or reset the database using the provided schema and fail to change the default administrative credentials m...

9.8CVSS5.5AI score0.00204EPSS
Exploits1References1
Cvelist
Cvelistadded 2026/02/13 12:0 a.m.21 views

CVE-2025-70956

A State Pollution vulnerability was discovered in the TON Virtual Machine TVM before v2025.04. The issue exists in the RUNVM instruction logic VmState::runchildvm, which is responsible for initializing child virtual machines. The operation moves critical resources specifically libraries and log...

0.00096EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2026/02/13 12:0 a.m.9 views

Ubuntu 22.04 LTS : Linux kernel (GCP) vulnerabilities (USN-8031-1)

"The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-8031-1 advisory. It was discovered that improper initialization of CPU cache memory could allow a local attacker with hypervisor access to overwrite SEV-SNP guest memory...

9.8CVSS8.3AI score0.00452EPSS
Exploits8References753
NVD
NVDadded 2026/02/12 8:16 p.m.3 views

CVE-2026-24044

Element Server Suite Community Edition ESS Community deploys a Matrix stack using the provided Helm charts and Kubernetes distribution. The ESS Community Helm Chart secrets initialization hook using matrix-tools container before 0.5.7 is using an insecure Matrix server key generation method,...

9.2CVSS0.0006EPSS
Exploits0References3
NVD
NVDadded 2026/02/12 7:15 p.m.2 views

CVE-2026-26218

newbee-mall includes pre-seeded administrator accounts in its database initialization script. These accounts are provisioned with a predictable default password. Deployments that initialize or reset the database using the provided schema and fail to change the default administrative credentials m...

9.8CVSS0.00204EPSS
Exploits1References2
OSV
OSVadded 2026/02/12 7:15 p.m.1 views

CVE-2026-26218

newbee-mall includes pre-seeded administrator accounts in its database initialization script. These accounts are provisioned with a predictable default password. Deployments that initialize or reset the database using the provided schema and fail to change the default administrative credentials m...

9.8CVSS5.8AI score0.00204EPSS
Exploits1References2
CVE
CVEadded 2026/02/12 7:6 p.m.8 views

CVE-2026-24044

CVE-2026-24044 affects Element Server Suite Community Edition (ESS Community) Helm Chart. The issue arises in the Helm Chart secrets initialization hook (using matrix-tools container prior to 0.5.7) where an insecure Matrix server key generation method can produce the same key pair, enabling netw...

9.2CVSS5.6AI score0.0006EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2026/02/12 6:38 p.m.2 views

CVE-2026-26218 newbee-mall Default Seeded Administrator Credentials Allow Account Takeover

newbee-mall includes pre-seeded administrator accounts in its database initialization script. These accounts are provisioned with a predictable default password. Deployments that initialize or reset the database using the provided schema and fail to change the default administrative credentials m...

9.8CVSS5.5AI score0.00204EPSS
Exploits1References2
ATTACKERKB
ATTACKERKBadded 2026/02/12 6:38 p.m.2 views

CVE-2026-26218

newbee-mall includes pre-seeded administrator accounts in its database initialization script. These accounts are provisioned with a predictable default password. Deployments that initialize or reset the database using the provided schema and fail to change the default administrative credentials m...

9.8CVSS5.5AI score0.00204EPSS
Exploits1References3Affected Software1
Cvelist
Cvelistadded 2026/02/12 6:38 p.m.20 views

CVE-2026-26218 newbee-mall Default Seeded Administrator Credentials Allow Account Takeover

newbee-mall includes pre-seeded administrator accounts in its database initialization script. These accounts are provisioned with a predictable default password. Deployments that initialize or reset the database using the provided schema and fail to change the default administrative credentials m...

9.8CVSS0.00204EPSS
Exploits1References2
Rows per page
Query Builder