Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

CVE
CVEadded 2026/04/02 11:40 a.m.11 views

CVE-2026-23414

CVE-2026-23414 is addressed in the Linux kernel TLS code. The vulnerability involved the async_hold queue that pins encrypted input skbs while AEAD operations reference scatterlist data. The fix centralizes purge of async_hold in tls_decrypt_async_wait(), ensuring all callers (recvmsg drain path,...

7.5CVSS5.6AI score0.00052EPSS
Exploits0References6Affected Software1
Cvelist
Cvelistadded 2025/11/12 10:23 a.m.5 views

CVE-2025-40149 tls: Use __sk_dst_get() and dst_dev_rcu() in get_netdev_for_sock().

In the Linux kernel, the following vulnerability has been resolved: tls: Use skdstget and dstdevrcu in getnetdevforsock. getnetdevforsock is called during setsockopt, so not under RCU. Using skdstgetsk-dev could trigger UAF. Let's use skdstget and dstdevrcu. Note that the only -ndoskgetlowerdev...

0.00019EPSS
Exploits0References6
OSV
OSVadded 2025/07/28 12:15 p.m.0 views

DEBIAN-CVE-2025-38471

In the Linux kernel, the following vulnerability has been resolved: tls: always refresh the queue when reading sock After recent changes in net-next TCP compacts skbs much more aggressively. This unearthed a bug in TLS where we may try to operate on an old skb when checking if all skbs in the que...

7.8CVSS5.8AI score0.00071EPSS
Exploits0References1
RedHat Linux
RedHat Linuxadded 2024/07/15 5:18 a.m.8 views

kernel: tls: race between async notify and socket close

A race condition vulnerability was found in the tls subsystem of the Linux kernel. The submitting thread that calls recvmsg/sendmsg may exit as soon as the async crypto handler calls complete; any code past that point risks touching already freed data. This could lead to a use-after-free issue an...

4.7CVSS6.8AI score0.00025EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2024/04/30 9:57 a.m.1 views

kernel: tls: race between async notify and socket close

A race condition vulnerability was found in the tls subsystem of the Linux kernel. The submitting thread that calls recvmsg/sendmsg may exit as soon as the async crypto handler calls complete; any code past that point risks touching already freed data. This could lead to a use-after-free issue an...

4.7CVSS6.8AI score0.00025EPSS
Exploits0References5
Circl
Circladded 2024/02/21 4:31 p.m.7 views

CVE-2024-26583

creationtimestamp| type| source ---|---|--- 2024-02-21 16:31:23+00:00| seen| https://t.me/ctinow/189735 2024-02-21 16:31:30+00:00| seen| https://t.me/ctinow/189742 2024-02-22 16:11:24+00:00| seen| https://t.me/ctinow/190856 2024-02-22 22:28:36+00:00| seen| https://t.me/arpsyndicate/4077 2025-01-1...

4.7CVSS6AI score0.00025EPSS
Exploits0References7
OSV
OSVadded 2024/02/21 2:59 p.m.7 views

CVE-2024-26582 net: tls: fix use-after-free with partial reads and async decrypt

In the Linux kernel, the following vulnerability has been resolved: net: tls: fix use-after-free with partial reads and async decrypt tlsdecryptsg doesn't take a reference on the pages from clearskb, so the putpage in tlsdecryptdone releases them, and we trigger a use-after-free in processrxlist...

7.8CVSS6AI score0.00017EPSS
Exploits0References8
Vulnrichment
Vulnrichmentadded 2023/03/15 12:0 a.m.11 views

CVE-2023-28466

dotlsgetsockopt in net/tls/tlsmain.c in the Linux kernel through 6.2.6 lacks a locksock call, leading to a race condition with a resultant use-after-free or NULL pointer dereference...

6.8AI score0.00021EPSS
Exploits0References3
Rows per page
Query Builder