CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2026/05/28 9:35 a.m.•6 views

EUVD-2026-32766

In the Linux kernel, the following vulnerability has been resolved: smb: client: use kzalloc to zero-initialize security descriptor buffer Commit 62e7dd0a39c2d "smb: common: change the data type of numaces to le16" split struct smbacl's le32 numaces field into le16 numaces and le16 reserved. The...

5.9AI score0.00024EPSS

EUVD•added 2026/05/28 9:35 a.m.•9 views

EUVD-2026-32765

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcievent: Fix OOB read and infinite loop in hcilecreatebigcompleteevt hcilecreatebigcompleteevt iterates over BTBOUND connections for a BIG handle using a while loop, accessing ev-bishandlei++ on each iteration. Howeve...

5.7AI score0.00021EPSS

8.1CVSS5.7AI score0.00021EPSS

CVE-2026-46138

The CVE-2026-46138 issue affects the Linux kernel Bluetooth subsystem, specifically hci_le_create_big_complete_evt. A loop over BT_BOUND connections for a BIG handle may access ev->bis_handle[i++] without ensuring i

EUVD•added 2026/05/28 9:35 a.m.•9 views

EUVD-2026-32764

In the Linux kernel, the following vulnerability has been resolved: mptcp: pm: ADDADDR rtx: fix potential data-race This mptcppmaddtimer helper is executed as a timer callback in softirq context. To avoid any data races, the socket lock needs to be held with bhlocksock. If the socket is in use,...

5.8AI score0.0006EPSS

EUVD•added 2026/05/28 9:35 a.m.•7 views

EUVD-2026-32763

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7921: fix a potential clc buffer length underflow The buflen is used to limit the iterations for retrieving the country power setting and may underflow under certain conditions due to changes in the power table in...

5.8AI score0.00032EPSS

Cvelist•added 2026/05/28 9:35 a.m.•26 views

CVE-2026-46136 wifi: mt76: mt7921: fix a potential clc buffer length underflow

0.00032EPSS

Exploits0References6

ATTACKERKB•added 2026/05/28 9:35 a.m.•4 views

CVE-2026-46136

The CVE affects the Linux kernel WiFi driver for mt76 (mt7921). A buffer length underflow in the CLC power table retrieval (buf_len) can underflow under certain power-table changes, potentially causing an almost infinite loop or an invalid power setting and may lead to driver initialization failu...

5.8AI score0.00032EPSS

Exploits0References6

CVE-2026-46136

5.8AI score0.00032EPSS

Exploits0References7Affected Software1

EUVD•added 2026/05/28 9:35 a.m.•8 views

EUVD-2026-32761

In the Linux kernel, the following vulnerability has been resolved: platform/chrome: crosectypec: Init mutex in Thunderbolt registration crostypecregisterthunderbolt missed initializing the adata-lock mutex. This leads to a NULL dereference when the mutex is later acquired e.g. in...

5.8AI score0.00022EPSS

Exploits0References3

Cvelist•added 2026/05/28 9:35 a.m.•30 views

CVE-2026-46134

Summary: CVE-2026-46134 affects the Linux kernel, specifically the Thunderbolt path under platform/chrome for CrosEC Type-C. The root cause was that in cros_typec_register_thunderbolt(), the adata->lock mutex was not initialized, which can lead to a NULL dereference when the mutex is later acq...

5.8AI score0.00022EPSS

Exploits0References3

CVE-2026-46133 RDMA/rxe: Reject unknown opcodes before ICRC processing

In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Reject unknown opcodes before ICRC processing Even after applying commit 7244491dab34 "RDMA/rxe: Validate pad and ICRC before payloadsize in rxercv", a single unauthenticated UDP packet can still trigger panic. That pat...

7.5CVSS0.00103EPSS

EUVD•added 2026/05/28 9:35 a.m.•6 views

EUVD-2026-32760

5.7AI score0.00103EPSS

ATTACKERKB•added 2026/05/28 9:35 a.m.•5 views

CVE-2026-46132

In the Linux kernel, the following vulnerability has been resolved: net: rtnetlink: zero iflavfbroadcast to avoid stack infoleak in rtnlfillvfinfo rtnlfillvfinfo declares struct iflavfbroadcast on the stack without initialisation: struct iflavfbroadcast vfbroadcast; The struct contains a single...

5.6AI score0.00032EPSS

Exploits0References9Affected Software1

CVE•added 2026/05/28 9:35 a.m.•16 views

CVE-2026-46133

The CVE-2026-46133 issue affects Linux kernel’s Soft RoCE (RDMA/rxe) where an unauthenticated UDP packet with an unknown opcode could trigger an out-of-bounds read during ICRC/CRC processing due to missing validation of opcodes before length arithmetic. The advisory describes that entries in the ...

7.5CVSS5.7AI score0.00103EPSS

ATTACKERKB•added 2026/05/28 9:35 a.m.•6 views

CVE-2026-46133

7.5CVSS5.7AI score0.00103EPSS

Exploits0References9Affected Software1

Cvelist•added 2026/05/28 9:35 a.m.•27 views

CVE-2026-46132 net: rtnetlink: zero ifla_vf_broadcast to avoid stack infoleak in rtnl_fill_vfinfo

0.00032EPSS

CVE•added 2026/05/28 9:35 a.m.•25 views

CVE-2026-46132

CVE-2026-46132 : The Linux kernel vulnerability in net: rtnetlink/vf broadcast handling arises from an uninitialized on-stack vf_broadcast struct in rtnl_fill_vfinfo(). Only the first 6 bytes of the 32-byte field are written on Ethernet SR-IOV NICs, leaving 26 bytes of stack data exposed to users...

5.7AI score0.00032EPSS

EUVD•added 2026/05/28 9:35 a.m.•8 views

EUVD-2026-32891

5.7AI score0.00032EPSS

CVE-2026-46131

The CVE-2026-46131 entry concerns the Linux kernel KVM/x86 hypervisor path. It states a vulnerability in the slow flush hypercalls where the is_guest_mode(vcpu) check is incorrect; translate_nested_gpa() is only valid if an L2 guest is running with nested EPT/NPT enabled. The fix uses the same co...

5.8AI score0.00024EPSS