CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedHat Linux•added 2026/05/28 2:21 a.m.•16 views

Important: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

9.4CVSS6AI score0.00076EPSS

Exploits0References19

EUVD•added 2026/05/27 3:33 p.m.•4 views

EUVD-2026-32246

In the Linux kernel, the following vulnerability has been resolved: ublk: Validate SQE128 flag before accessing the cmd ublkctrlcmddump accesses header sqe-cmd before IOURINGFSQE128 flag check. This could cause out of boundary memory access. Move the SQE128 flag check earlier in ublkctrluringcmd ...

5.8AI score0.00032EPSS

Exploits0References7

NVD•added 2026/05/27 2:17 p.m.•3 views

CVE-2026-45975

0.00024EPSS

Exploits0References2

NVD•added 2026/05/27 2:17 p.m.•6 views

CVE-2026-45962

0.00032EPSS

OSV•added 2026/05/27 2:17 p.m.•1 views

UBUNTU-CVE-2026-45962

5.7AI score0.00032EPSS

CVE•added 2026/05/27 12:18 p.m.•7 views

CVE-2026-45962

In the Linux kernel ublk subsystem, CVE-2026-45962 describes a vulnerability where ublk_ctrl_cmd_dump() may access (header *)sqe->cmd before validating IO_URING_F_SQE128, risking out-of-bounds memory access. The fix moves the SQE128 flag check earlier in ublk_ctrl_uring_cmd() to immediately re...

5.8AI score0.00032EPSS

Cvelist•added 2026/05/27 12:18 p.m.•28 views

CVE-2026-45962 ublk: Validate SQE128 flag before accessing the cmd

0.00032EPSS

Tenable Nessus•added 2026/05/27 12:0 a.m.•6 views

Amazon Linux 2023 : bpftool6.12, kernel6.12, kernel6.12-devel (ALAS2023-2026-1753)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2026-1753 advisory. In the Linux kernel, the following vulnerability has been resolved: ptrace: slightly saner 'getdumpable' logic CVE-2026-46333PinTheft is a Linux local privilege escalation exploit for an RDS zerocopy...

7.1CVSS5.8AI score0.00007EPSS

Exploits4References4

Tenable Nessus•added 2026/05/27 12:0 a.m.•7 views

Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.15-2026-104 (ALASKERNEL-5.15-2026-104)

The version of kernel installed on the remote host is prior to 5.15.206-144.232. It is, therefore, affected by a vulnerability as referenced in the ALAS2KERNEL-5.15-2026-104 advisory. PinTheft is a Linux local privilege escalation exploit for an RDS zerocopy double-free that can be turned into a...

Positive Technologies•added 2026/05/27 12:0 a.m.•5 views

Exploits0References2

PT-2026-43842

In the Linux kernel, the following vulnerability has been resolved: ublk: use READ ONCE to read struct ublksrv ctrl cmd struct ublksrv ctrl cmd is part of the io uring sqe, which may lie in userspace-mapped memory. It's racy to access its fields with normal loads, as userspace may write to them...

5.8AI score0.00024EPSS

CNNVD•added 2026/05/27 12:0 a.m.•3 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from accessing the cmd variable before checking the IOURINGFSQE128 flag. This vulnerability may lead t...

5.8AI score0.00032EPSS

Positive Technologies•added 2026/05/27 12:0 a.m.•5 views

PT-2026-43862

In the Linux kernel, the following vulnerability has been resolved: io uring/zcrx: fix user struct uaf io free rbuf ring usees a struct user struct, which io zcrx ifq free puts it down before destroying the ring...

5.8AI score0.00024EPSS

Amazon•added 2026/05/26 12:0 a.m.•9 views

Important: kernel-livepatch-6.18.15-14.217

Issue Overview: PinTheft is a Linux local privilege escalation exploit for an RDS zerocopy double-free that can be turned into a page-cache overwrite through iouring fixed buffers. Affected Packages: kernel-livepatch-6.18.15-14.217 Issue Correction: Please ensure you have live patching enabled. R...

Amazon•added 2026/05/26 12:0 a.m.•7 views

Important: kernel-livepatch-5.10.252-250.1005

Issue Overview: PinTheft is a Linux local privilege escalation exploit for an RDS zerocopy double-free that can be turned into a page-cache overwrite through iouring fixed buffers. Affected Packages: kernel-livepatch-5.10.252-250.1005 Issue Correction: Please ensure you have live patching enabled...

Amazon•added 2026/05/26 12:0 a.m.•7 views

Important: kernel-livepatch-6.1.168-203.330

Issue Overview: PinTheft is a Linux local privilege escalation exploit for an RDS zerocopy double-free that can be turned into a page-cache overwrite through iouring fixed buffers. Affected Packages: kernel-livepatch-6.1.168-203.330 Issue Correction: Please ensure you have live patching enabled...

Amazon•added 2026/05/26 12:0 a.m.•8 views

Important: kernel-livepatch-6.1.163-186.299

Issue Overview: PinTheft is a Linux local privilege escalation exploit for an RDS zerocopy double-free that can be turned into a page-cache overwrite through iouring fixed buffers. Affected Packages: kernel-livepatch-6.1.163-186.299 Issue Correction: Please ensure you have live patching enabled...

Amazon•added 2026/05/26 12:0 a.m.•7 views

Important: kernel-livepatch-6.12.83-115.161

Issue Overview: PinTheft is a Linux local privilege escalation exploit for an RDS zerocopy double-free that can be turned into a page-cache overwrite through iouring fixed buffers. Affected Packages: kernel-livepatch-6.12.83-115.161 Issue Correction: Please ensure you have live patching enabled...

Amazon•added 2026/05/26 12:0 a.m.•3 views

Important: kernel-livepatch-6.18.25-57.109

Issue Overview: PinTheft is a Linux local privilege escalation exploit for an RDS zerocopy double-free that can be turned into a page-cache overwrite through iouring fixed buffers. Affected Packages: kernel-livepatch-6.18.25-57.109 Issue Correction: Please ensure you have live patching enabled. R...