Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

SUSE CVE
SUSE CVEadded 2026/05/02 1:25 a.m.4 views

SUSE CVE-2026-31711

In the Linux kernel, the following vulnerability has been resolved: smb: server: fix activenumconn leak on transport allocation failure Commit 77ffbcac4e56 "smb: server: fix leak of activenumconn in ksmbdtcpnewconnection" addressed the kthreadrun failure path. The earlier alloctransport == NULL...

7.5CVSS5.8AI score0.00383EPSS
Exploits0References4
OSV
OSVadded 2025/03/12 9:42 a.m.8 views

CVE-2025-21844 smb: client: Add check for next_buffer in receive_encrypted_standard()

In the Linux kernel, the following vulnerability has been resolved: smb: client: Add check for nextbuffer in receiveencryptedstandard Add check for the return value of cifsbufget and cifssmallbufget in receiveencryptedstandard to prevent null pointer dereference...

5.5CVSS6.1AI score0.00017EPSS
Exploits0References12
CVE
CVEadded 2025/03/12 9:42 a.m.139 views

CVE-2025-21844

CVE-2025-21844 affects the Linux kernel SMB client path. The vulnerability could allow a NULL pointer dereference in the receive_encrypted_standard() path due to missing checks, which could crash the kernel. The fix adds checks for the next_buffer in receive_encrypted_standard() and validates the...

5.5CVSS6.6AI score0.00017EPSS
Exploits0References10Affected Software1
CVE
CVEadded 2025/02/27 2:7 a.m.114 views

CVE-2025-21725

CVE-2025-21725 concerns the Linux kernel CIFS/SMB client. The issue arises when NETWORK_INTERFACE_INFO::LinkSpeed is not guaranteed to be set by the server, potentially causing an oops (divide error) in the cifs client path. The provided connected documents specify the fix as: fix by setting cifs...

5.5CVSS6.3AI score0.00024EPSS
Exploits0References6Affected Software1
NVD
NVDadded 2024/12/29 12:15 p.m.8 views

CVE-2024-56729

In the Linux kernel, the following vulnerability has been resolved: smb: Initialize cfid-tcon before performing network ops Avoid leaking a tcon ref when a lease break races with opening the cached directory. Processing the leak break might take a reference to the tcon in cacheddirleasebreak and...

4.7CVSS0.00022EPSS
Exploits0References4
OSV
OSVadded 2023/10/03 3:15 a.m.2 views

AZL-31730 CVE-2023-5345 affecting package hyperv-daemons for versions less than 5.15.135.1-1

A use-after-free vulnerability in the Linux kernel's fs/smb/client component can be exploited to achieve local privilege escalation. In case of an error in smb3fscontextparseparam, ctx-password was freed but the field was not set to NULL which could lead to double free. We recommend upgrading pas...

7.8CVSS6.9AI score0.00025EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2023/07/24 3:19 p.m.7 views

CVE-2023-32258 Session race condition remote code execution vulnerability

A flaw was found in the Linux kernel's ksmbd, a high-performance in-kernel SMB server. The specific flaw exists within the processing of SMB2LOGOFF and SMB2CLOSE commands. The issue results from the lack of proper locking when performing operations on an object. An attacker can leverage this...

8.1CVSS7.2AI score0.00107EPSS
Exploits0References4
Rows per page
Query Builder