CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added last week•5 views

CVE-2026-46153

A flaw was found in the Linux kernel's 8021q VLAN module. This vulnerability occurs because cleared egress Quality of Service QoS mappings are not properly deleted, leading to an accumulation of mapping nodes. An attacker could repeatedly set and clear egress priority mappings, causing a memory...

5.5CVSS5.8AI score0.00024EPSS

Debian CVE•added 2026/05/27 12:55 p.m.•4 views

CVE-2026-45987

In the Linux kernel, the following vulnerability has been resolved: KVM: nSVM: Sync interrupt shadow to cached vmcb12 after VMRUN of L2 After VMRUN in guest mode, nestedsynccontrolfromvmcb02 syncs fields written by the CPU from vmcb02 to the cached vmcb12. This is because the cached vmcb12 is use...

5.7AI score0.00032EPSS

Exploits0

AstraLinux•added 2026/05/20 5:53 a.m.•4 views

Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1

In the Linux kernel, the following vulnerabilities have been resolved: l2tp: The correct message length must be passed to ip6 AppendData. l2tpip6sendmsg needs to avoid accounting for the transport header twice when splicing more data into an already partially-occupied skbuff. To handle this, we...

5.5CVSS6.3AI score0.00011EPSS

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: l2tp: Fixed a memory leak in l2tpudpencaprecv. syzbot reported a memory leak of struct l2tpsession, l2tptunnel, sock, etc. 0 The referenced commit moved the validation of the protocol version to l2tpudpencaprecv. The new location...

5.5CVSS5.8AI score0.00017EPSS

Exploits0References1

Cvelist•added 2026/05/18 12:30 a.m.•29 views

CVE-2026-8775 Edimax BR-6428NS POST Request formL2TPSetup buffer overflow

A flaw has been found in Edimax BR-6428NS 1.10. This affects the function formL2TPSetup of the file /goform/formL2TPSetup of the component POST Request Handler. This manipulation of the argument L2TPUserName causes buffer overflow. It is possible to initiate the attack remotely. The exploit has...

9CVSS0.00017EPSS

SUSE CVE•added 2026/05/07 2:19 a.m.•7 views

SUSE CVE-2026-43080

In the Linux kernel, the following vulnerability has been resolved: l2tp: Drop large packets with UDP encap syzbot reported a WARN on my patch series 1. The actual issue is an overflow of 16-bit UDP length field, and it exists in the upstream code. My series added a debug WARN with an overflow...

RedhatCVE•added 2026/05/06 2:43 p.m.•2 views

Exploits0References3

CVE-2026-43080

A flaw was found in the Linux kernel's L2TP Layer 2 Tunneling Protocol subsystem. This vulnerability allows a remote attacker to send an oversized PPPoL2TP packet with UDP encapsulation. Due to an overflow in the 16-bit UDP length field, the packet's length is incorrectly truncated, which can lea...

5.5CVSS5.9AI score0.00013EPSS

EUVD•added 2026/05/06 12:30 p.m.•1 views

EUVD-2026-27571

5.8AI score0.00013EPSS

Exploits0References6

NVD•added 2026/05/06 10:16 a.m.•4 views

CVE-2026-43080

5.5CVSS0.00013EPSS

Exploits0References8

Debian CVE•added 2026/05/06 7:40 a.m.•1 views

CVE-2026-43080

CVE•added 2026/05/06 7:40 a.m.•9 views

Exploits0

CVE-2026-43080

Summary of CVE-2026-43080 (Linux kernel) : The issue resides in the L2TP/PPP over L2TP code path where an oversized PPPoL2TP packet sent with UDP encapsulation can trigger an overflow of the 16‑bit UDP length field, causing the length to be trimmed and potentially sending malformed packets. The p...

Exploits0References8Affected Software1

Cvelist•added 2026/05/06 7:40 a.m.•24 views

CVE-2026-43080 l2tp: Drop large packets with UDP encap

0.00013EPSS

Exploits0References8

ATTACKERKB•added 2026/05/06 7:40 a.m.•2 views

CVE-2026-43080

5.8AI score0.00013EPSS

Exploits0References6Affected Software1

Tenable Nessus•added 2026/05/06 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2026-43080

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - l2tp: Drop large packets with UDP encap syzbot reported a WARN on my patch series 1. The actual issue is an overflow of 16-bit UDP length field, and it exists i...

5.5CVSS5.9AI score0.00013EPSS

CNNVD•added 2026/05/06 12:0 a.m.•4 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from l2tp’s failure to check for UDP length field overflows during UDP encapsulation. This could lead to the...

Positive Technologies•added 2026/05/06 12:0 a.m.•4 views

Exploits0References1

PT-2026-37390

5.8AI score0.00013EPSS

Exploits0References6

AstraLinux•added 2026/05/03 11:59 p.m.•3 views

Astra Linux - уязвимость в qemu

A bug in QEMU could cause a guest I/O operation that is normally directed to an arbitrary disk offset to be directed instead to offset 0. This could potentially overwrite the VM’s boot code. For example, this could be exploited by L2 guests who have a virtual disk vdiskL2 stored on the virtual di...

7CVSS6.9AI score0.00014EPSS

AstraLinux•added 2026/05/03 11:59 p.m.•2 views

Astra Linux - уязвимость в linux, linux-5.10

“Specifically timed and handcrafted traffic can cause internal errors in a WLAN device, leading to improper Layer 2 Wi-Fi encryption. This may result in information disclosure over the air for a specific set of traffic.” In Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon...

6.5CVSS6.7AI score0.00297EPSS

AstraLinux•added 2026/05/03 11:59 p.m.•3 views

Astra Linux - уязвимость в linux-5.15, linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: l2tp: All race conditions in l2tptunnelregister have been fixed. The code within l2tptunnelregister is problematic in several ways: 1. It modifies the tunnel socket after it is published. 2. It calls setupudptunnelsock on an...

4.7CVSS6.3AI score0.0002EPSS