Lucene search
+L

603 matches found

NVD
NVD
added 2026/05/01 3:16 p.m.7 views

CVE-2026-31738

In the Linux kernel, the following vulnerability has been resolved: vxlan: validate ND option lengths in vxlannacreate vxlannacreate walks ND options according to option-provided lengths. A malformed option can make the parser advance beyond the computed option span or use a too-short source LLAD...

5.5CVSS0.00123EPSS
Exploits0References8
Cvelist
Cvelist
added 2026/05/01 2:14 p.m.36 views

CVE-2026-31752 bridge: br_nd_send: validate ND option lengths

In the Linux kernel, the following vulnerability has been resolved: bridge: brndsend: validate ND option lengths brndsend walks ND options according to option-provided lengths. A malformed option can make the parser advance beyond the computed option span or use a too-short source LLADDR option...

0.00129EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2026/05/01 2:14 p.m.7 views

CVE-2026-31752

In the Linux kernel, the following vulnerability has been resolved: bridge: brndsend: validate ND option lengths brndsend walks ND options according to option-provided lengths. A malformed option can make the parser advance beyond the computed option span or use a too-short source LLADDR option...

5.5CVSS5.7AI score0.00129EPSS
Exploits0
CVE
CVE
added 2026/05/01 2:14 p.m.18 views

CVE-2026-31752

CVE-2026-31752 affects the Linux kernel bridge/networking path: br_nd_send validates IPv6 neighbor discovery options, and a malformed ND option could cause the parser to read beyond the intended option span or read an LLADDR payload that is too short. The issue is mitigated by option-length check...

5.5CVSS5.8AI score0.00129EPSS
Exploits0References10Affected Software1
OSV
OSV
added 2026/05/01 2:14 p.m.3 views

CVE-2026-31752 bridge: br_nd_send: validate ND option lengths

In the Linux kernel, the following vulnerability has been resolved: bridge: brndsend: validate ND option lengths brndsend walks ND options according to option-provided lengths. A malformed option can make the parser advance beyond the computed option span or use a too-short source LLADDR option...

5.5CVSS5.8AI score0.00129EPSS
Exploits0References13
ATTACKERKB
ATTACKERKB
added 2026/05/01 2:14 p.m.5 views

CVE-2026-31738

In the Linux kernel, the following vulnerability has been resolved: vxlan: validate ND option lengths in vxlannacreate vxlannacreate walks ND options according to option-provided lengths. A malformed option can make the parser advance beyond the computed option span or use a too-short source LLAD...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References9Affected Software1
CVE
CVE
added 2026/05/01 2:14 p.m.22 views

CVE-2026-31738

CVE-2026-31738 concerns the Linux kernel vxlan code (vxlan_na_create) where ND option lengths are not properly validated. The flaw can cause the parser to advance beyond the option span or read an undersized LLADDR payload, enabling source address reading only when the option is large enough; imp...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References8Affected Software1
EUVD
EUVD
added 2026/05/01 2:14 p.m.13 views

EUVD-2026-26551

In the Linux kernel, the following vulnerability has been resolved: vxlan: validate ND option lengths in vxlannacreate vxlannacreate walks ND options according to option-provided lengths. A malformed option can make the parser advance beyond the computed option span or use a too-short source LLAD...

5.8AI score0.00123EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2026/05/01 2:14 p.m.4 views

CVE-2026-31738

In the Linux kernel, the following vulnerability has been resolved: vxlan: validate ND option lengths in vxlannacreate vxlannacreate walks ND options according to option-provided lengths. A malformed option can make the parser advance beyond the computed option span or use a too-short source LLAD...

5.5CVSS5.7AI score0.00123EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/05/01 12:0 a.m.6 views

PT-2026-36373

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the vxlan na create function where ND options are processed based on lengths provided within the options. A malformed option can cause the parser to advance beyond the...

5.5CVSS5.3AI score0.00123EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/05/01 12:0 a.m.4 views

PT-2026-36387

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The br nd send function processes Neighbor Discovery ND options based on lengths provided within the options. A malformed option can cause the parser to advance beyond the calculated...

5.5CVSS5.4AI score0.00129EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/05/01 12:0 a.m.13 views

PT-2026-36409

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the io uring network component where a slab-out-of-bounds read can occur in the io bundle nbufs function. This happens when userspace provides a sqe-len value exceedin...

7.8CVSS6.6AI score0.00126EPSS
Exploits0References280
Tenable Nessus
Tenable Nessus
added 2026/05/01 12:0 a.m.4 views

Wireshark 2.4.x < 2.4.8 Multiple Vulnerabilities

The version of Wireshark installed on the remote Windows host is prior to 2.4.8. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-2.4.8 advisory. - In Wireshark 2.6.0 to 2.6.1 and 2.4.0 to 2.4.7, the IEEE 802.11 protocol dissector could crash. This was address...

7.8CVSS7.3AI score0.03773EPSS
Exploits3References31
Tenable Nessus
Tenable Nessus
added 2026/05/01 12:0 a.m.3 views

Wireshark 2.4.x < 2.4.7 Multiple Vulnerabilities (macOS)

The version of Wireshark installed on the remote macOS / Mac OS X host is prior to 2.4.7. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-2.4.7 advisory. - In Wireshark 2.6.0, 2.4.0 to 2.4.6, and 2.2.0 to 2.2.14, the LDSS dissector could crash. This was...

7.5CVSS7.5AI score0.03509EPSS
Exploits0References19
NVD
NVD
added 2026/04/30 8:16 p.m.9 views

CVE-2025-56568

Assertion failure vulnerability in the PCO Protocol Configuration Options parser in the SMF Session Management Function component of Open5GS before v2.7.5 allows remote attackers to cause denial of service via specially crafted NGAP messages containing malformed length fields in protocol...

7.5CVSS0.00332EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/04/28 1:34 a.m.7 views

SUSE CVE-2026-41476

Deskflow is a keyboard and mouse sharing app. Prior to 1.26.0.138, a remote memory-safety vulnerability in Deskflow's clipboard deserialization allows a connected peer to trigger an out-of-bounds read by sending a malformed clipboard update. The issue is in the implementation of...

8.8CVSS5.7AI score0.00344EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2026/04/27 10:49 a.m.6 views

CVE-2026-31679

A flaw was found in the Linux kernel's openvswitch component. This vulnerability arises from improper validation of Multiprotocol Label Switching MPLS payload lengths during SET/SETMASKED actions. An attacker could potentially exploit this by providing malformed MPLS key data, leading to unexpect...

7.1CVSS5.4AI score0.00117EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/04/27 5:50 a.m.42 views

CVE-2026-42371

uriparser before 1.0.1 has numeric truncation in text range comparison, if an application accepts URIs with a length in gigabytes...

5.1CVSS0.00172EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/04/27 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-31617

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - usb: gadget: fncm: validate minimum blocklen in ncmunwrapntb The blocklen read from the host- supplied NTB header is checked against ntbmax but has no lower...

7CVSS6AI score0.00129EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/04/26 12:0 a.m.2 views

Unity Linux 20.1060a Security Update: kernel (UTSA-2026-014356)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-014356 advisory. In the Linux kernel, the following vulnerability has been resolved: LoongArch: csum: Fix OoB access in IP checksum code for negative lengths Commit 69e3a6aa6be2...

7.1CVSS6.5AI score0.00216EPSS
Exploits0References4
Rows per page
Query Builder