CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

328 matches found

CVE-2026-52921

In the Linux kernel netfilter ipset code, a vulnerability was fixed where iterating IPv4 ranges with a 32-bit iterator could advance past the end of the requested range. This affects the following hash set variants: hash:ip,mark; hash:ip,port; hash:ip,port,ip; hash:ip,port,net. The underlying iss...

5.7AI score

Exploits0References8

AstraLinux•added 5 days ago•6 views

Astra Linux – Vulnerability found in Linux 5.15, Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: A overflow issue was fixed in the bitmapipcreate function before the bitmap was widened. When firstip is 0, lastip is 0xFFFFFFFF, and the netmask is 31, the value of an arithmetic expression 2 netmask - maskbits...

5.5CVSS5.4AI score0.00179EPSS

Exploits0References2

AstraLinux•added 5 days ago•2 views

Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1

In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: Fixed a race condition between namespace cleanup and garbage collection for the list:set type. Lion Ackermann reported that there is a race condition between namespace cleanup in ipset and garbage collection of...

7CVSS6.1AI score0.00204EPSS

Exploits0References2

SUSE CVE•added 2026/05/28 3:56 a.m.•10 views

SUSE CVE-2026-45901

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: revert commitmutex usage in reset path It causes circular lock dependency between commitmutex, nfnlsubsysipset and nlkcbmutex when nft reset, ipset list, and iptables-nft with '-m set' rule run at the same...

5.8AI score0.00189EPSS

Exploits0References3

RedhatCVE•added 2026/05/28 3:0 a.m.•8 views

CVE-2026-45901

A flaw was found in the Linux kernel's netfilter nftables component. This vulnerability allows a local attacker to cause a denial of service DoS by triggering a circular lock dependency. This occurs when nft reset, ipset list, and iptables-nft with a '-m set' rule are executed concurrently, leadi...

5.5CVSS5.8AI score0.00189EPSS

Exploits0References4

EUVD•added 2026/05/27 3:33 p.m.•11 views

EUVD-2026-32367

5.8AI score0.00189EPSS

Exploits0References3

NVD•added 2026/05/27 2:17 p.m.•10 views

CVE-2026-45901

0.00189EPSS

Exploits0References2

CVE•added 2026/05/27 12:17 p.m.•17 views

CVE-2026-45901

The CVE-2026-45901 issue is in the Linux kernel netfilter nf_tables code. A circular lock dependency can occur between commit_mutex, nfnl_subsys_ipset, and nlk_cb_mutex when nft reset, ipset list, and iptables-nft with -m set run concurrently. The problem arose after changes that had previously a...

5.8AI score0.00189EPSS

Exploits0References2

Positive Technologies•added 2026/05/27 12:0 a.m.•9 views

PT-2026-43768

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A circular lock dependency exists within the netfilter nf tables component. This issue occurs when nft reset, ipset list, and iptables-nft with the -m set rule are executed simultaneousl...

5.4AI score0.00189EPSS

Exploits0References11

Tenable Nessus•added 2026/05/27 12:0 a.m.•10 views

Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.4-2026-124 (ALASKERNEL-5.4-2026-124)

The version of kernel installed on the remote host is prior to 5.4.302-224.473. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2KERNEL-5.4-2026-124 advisory. In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: drop logically empty...

7.8CVSS5.3AI score0.00257EPSS

Exploits2References6

Amazon•added 2026/05/26 12:0 a.m.•17 views

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: drop logically empty buckets in mtypedel CVE-2026-31418 In the Linux kernel, the following vulnerability has been resolved: net/rds: reset opnents when zerocopy page pin fails CVE-2026-43494...

7.8CVSS5.8AI score0.00257EPSS

Exploits2

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: Enforces the documented limit to prevent excessive memory allocation. Daniel Xu reported that the hash:net,iface type of the ipset subsystem does not limit adding the same network with different interfaces to a...

5.5CVSS6AI score0.00146EPSS

Exploits0References1

Tenable Nessus•added 2026/05/20 12:0 a.m.•4 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-021595)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-021595 advisory. In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: Hold module reference while requesting a module User space may unload ipset.ko...

4.7CVSS5.9AI score0.00162EPSS

Exploits0References4

OSV•added 2026/05/09 12:32 p.m.•6 views

OESA-2026-2236 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack: add missing netlink policy validations Hyunwoo Kim reports out-of-bounds access in sctp and ctnetlink. These attributes are used by the...

7.8CVSS5.8AI score0.00169EPSS

Exploits0References9

OSV•added 2026/05/09 12:32 p.m.•11 views

OESA-2026-2232 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, a security vulnerability exists in the IOMMU Shared Virtual Addressing SVA feature. On x86 architecture when CONFIGX86 is set, IOMMU hardware caches kernel page table entries. Due to the lack of notification...

7.8CVSS6.1AI score0.00169EPSS

Exploits0References11

AstraLinux•added 2026/05/03 11:59 p.m.•4 views

Astra Linux – Vulnerability found in Linux 5.15, Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: Reworked the handling of long task execution when adding/ deleting entries. When adding or deleting a large number of elements in one step using ipset, it may take considerable time, and soft lockup errors can...

5.5CVSS5.6AI score0.00115EPSS

Exploits0References1

AstraLinux•added 2026/05/03 11:59 p.m.•3 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: Added the missing IPSETHASHWITHNET0 macro for ipsethashnetportnet.c. The missing IPSETHASHWITHNET0 macro in ipsethashnetportnet can lead to the use of the incorrect CIDRPOSc for calculating array offsets, which...

7.8CVSS5.2AI score0.00157EPSS

Exploits0References2

Tenable Nessus•added 2026/04/21 12:0 a.m.•4 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-006908)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006908 advisory. In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: Rework long task execution when adding/deleting entries When adding/deleting...

5.5CVSS6AI score0.00115EPSS

Exploits0References4

Tenable Nessus•added 2026/04/21 12:0 a.m.•2 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-010971)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-010971 advisory. In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: Rework long task execution when adding/deleting entries When adding/deleting...

5.5CVSS6AI score0.00115EPSS

Exploits0References4