Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

336201 matches found

EUVD
EUVDadded 2026/05/28 9:35 a.m.9 views

EUVD-2026-32873

In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Reject non-8-byte ATOMICWRITE payloads atomicwritereply at drivers/infiniband/sw/rxe/rxeresp.c unconditionally dereferences 8 bytes at payloadaddrpkt: value = u64 payloadaddrpkt; checkrkey previously accepted an...

5.8AI score0.00057EPSS
Exploits0References5
CVE
CVEadded 2026/05/28 9:35 a.m.25 views

CVE-2026-46113

CVE-2026-46113 (Linux kernel KVM x86 shadow paging use-after-free) is a resolved vulnerability in the KVM shadow paging path. The issue arises when the shadow MMU computes GFNs for direct shadow pages using sp->gfn plus the SPTE index and guest page-table modifications between VM entries can c...

8.8CVSS5.7AI score0.00013EPSS
Exploits0References6
ATTACKERKB
ATTACKERKBadded 2026/05/28 9:35 a.m.4 views

CVE-2026-46113

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Fix shadow paging use-after-free due to unexpected GFN The shadow MMU computes GFNs for direct shadow pages using sp-gfn plus the SPTE index. This assumption breaks for shadow paging if the guest page tables are modifie...

8.8CVSS5.7AI score0.00013EPSS
Exploits0References7Affected Software1
Cvelist
Cvelistadded 2026/05/28 9:35 a.m.29 views

CVE-2026-46113 KVM: x86: Fix shadow paging use-after-free due to unexpected GFN

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Fix shadow paging use-after-free due to unexpected GFN The shadow MMU computes GFNs for direct shadow pages using sp-gfn plus the SPTE index. This assumption breaks for shadow paging if the guest page tables are modifie...

8.8CVSS0.00013EPSS
Exploits0References6
Debian CVE
Debian CVEadded 2026/05/28 9:35 a.m.9 views

CVE-2026-46113

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Fix shadow paging use-after-free due to unexpected GFN The shadow MMU computes GFNs for direct shadow pages using sp-gfn plus the SPTE index. This assumption breaks for shadow paging if the guest page tables are modifie...

8.8CVSS5.7AI score0.00013EPSS
Exploits0
EUVD
EUVDadded 2026/05/28 9:35 a.m.7 views

EUVD-2026-32871

In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fix unlocked call to hnsroceqpremove Sashiko points out that hnsroceqpremove requires the caller to hold locks. The error flow in hnsrocecreateqpcommon doesn't hold those locks for the error unwind so it risks corruptin...

5.8AI score0.00013EPSS
Exploits0References5
Cvelist
Cvelistadded 2026/05/28 9:35 a.m.29 views

CVE-2026-46112 RDMA/hns: Fix unlocked call to hns_roce_qp_remove()

In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fix unlocked call to hnsroceqpremove Sashiko points out that hnsroceqpremove requires the caller to hold locks. The error flow in hnsrocecreateqpcommon doesn't hold those locks for the error unwind so it risks corruptin...

7.8CVSS0.00013EPSS
Exploits0References7
CVE
CVEadded 2026/05/28 9:35 a.m.16 views

CVE-2026-46112

CVE-2026-46112 relates to the Linux kernel RDMA/hns driver. The vulnerability arises from an unlocked call to hns_roce_qp_remove() during error unwinding in hns_roce_create_qp_common(), where the caller did not hold the required locks, risking memory corruption. The fixes synchronize by grabbing ...

7.8CVSS5.8AI score0.00013EPSS
Exploits0References7
ATTACKERKB
ATTACKERKBadded 2026/05/28 9:35 a.m.5 views

CVE-2026-46112

In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fix unlocked call to hnsroceqpremove Sashiko points out that hnsroceqpremove requires the caller to hold locks. The error flow in hnsrocecreateqpcommon doesn't hold those locks for the error unwind so it risks corruptin...

7.8CVSS5.8AI score0.00013EPSS
Exploits0References8Affected Software1
Cvelist
Cvelistadded 2026/05/28 9:35 a.m.28 views

CVE-2026-46111 Bluetooth: hci_conn: fix potential UAF in create_big_sync

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hciconn: fix potential UAF in createbigsync Add hciconnvalid check in createbigsync to detect stale connections before proceeding with BIG creation. Handle the resulting -ECANCELED in createbigcomplete and re-validate...

7.8CVSS0.00013EPSS
Exploits0References5
CVE
CVEadded 2026/05/28 9:35 a.m.12 views

CVE-2026-46111

The CVE concerns a use-after-free in the Linux kernel Bluetooth stack (hci_conn, BIG creation). The patch adds hci_conn_valid() in create_big_sync() to detect stale connections before BIG creation, handles -ECANCELED in create_big_complete(), and re-validates under hci_dev_lock() before dereferen...

7.8CVSS5.8AI score0.00013EPSS
Exploits0References5
CVE
CVEadded 2026/05/28 9:35 a.m.18 views

CVE-2026-46110

CVE-2026-46110 affects the Linux kernel stmmac driver. When RX memory is exhausted, stmmac_rx() could misinterpret descriptors (full vs dirty), risking a NULL pointer dereference and potential kernel panic. The fix adds an explicit check to bail out when the next RX descriptor is dirty before adv...

7.5CVSS5.9AI score0.00058EPSS
Exploits0References5
Cvelist
Cvelistadded 2026/05/28 9:35 a.m.31 views

CVE-2026-46110 net: stmmac: Prevent NULL deref when RX memory exhausted

In the Linux kernel, the following vulnerability has been resolved: net: stmmac: Prevent NULL deref when RX memory exhausted The CPU receives frames from the MAC through conventional DMA: the CPU allocates buffers for the MAC, then the MAC fills them and returns ownership to the CPU. For each...

7.5CVSS0.00058EPSS
Exploits0References5
ATTACKERKB
ATTACKERKBadded 2026/05/28 9:35 a.m.5 views

CVE-2026-46109

In the Linux kernel, the following vulnerability has been resolved: usb: ulpi: fix memory leak on ulpiregister error paths Commit 01af542392b5 "usb: ulpi: fix double free in ulpiregisterinterface error path" removed kfreeulpi from ulpiregisterinterface to fix a double-free when deviceregister...

5.7AI score0.00032EPSS
Exploits0References9Affected Software1
CVE
CVEadded 2026/05/28 9:35 a.m.14 views

CVE-2026-46109

The CVE-2026-46109 issue concerns a memory leak in the Linux kernel USB ULPI path: when ulpi_of_register() or ulpi_read_id() fail before device_register() is called, the allocated ulpi object is not freed. A fix was applied to add kfree(ulpi) on both error paths in ulpi_register() to prevent leak...

5.8AI score0.00032EPSS
Exploits0References8
Cvelist
Cvelistadded 2026/05/28 9:35 a.m.26 views

CVE-2026-46108 ipmi:si: Return state to normal if message allocation fails

In the Linux kernel, the following vulnerability has been resolved: ipmi:si: Return state to normal if message allocation fails There were places where nothing would get started if a message allocation failed, so the driver needs to return to normal state...

0.00032EPSS
Exploits0References8
ATTACKERKB
ATTACKERKBadded 2026/05/28 9:35 a.m.5 views

CVE-2026-46108

In the Linux kernel, the following vulnerability has been resolved: ipmi:si: Return state to normal if message allocation fails There were places where nothing would get started if a message allocation failed, so the driver needs to return to normal state...

5.7AI score0.00032EPSS
Exploits0References9Affected Software1
CVE
CVEadded 2026/05/28 9:35 a.m.15 views

CVE-2026-46108

The CVE concerns the Linux kernel IPMI:si driver. The issue occurred when message allocation failed and the driver did not return to a normal state, potentially leaving the driver in an incomplete state. The resolution ensures the driver returns to normal when allocation fails, addressing the sta...

5.8AI score0.00032EPSS
Exploits0References8
Cvelist
Cvelistadded 2026/05/28 9:35 a.m.29 views

CVE-2026-46107 dm-thin: fix metadata refcount underflow

In the Linux kernel, the following vulnerability has been resolved: dm-thin: fix metadata refcount underflow There's a bug in dm-thin in the function rebalancechildren. If the internal btree node has one entry, the code tries to copy all btree entries from the node's child to the node itself and...

7.8CVSS0.00013EPSS
Exploits0References7
ATTACKERKB
ATTACKERKBadded 2026/05/28 9:35 a.m.10 views

CVE-2026-46107

In the Linux kernel, the following vulnerability has been resolved: dm-thin: fix metadata refcount underflow There's a bug in dm-thin in the function rebalancechildren. If the internal btree node has one entry, the code tries to copy all btree entries from the node's child to the node itself and...

7.8CVSS5.7AI score0.00013EPSS
Exploits0References8Affected Software1
Rows per page
Query Builder