CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

219860 matches found

ATTACKERKB•added 2026/05/28 9:36 a.m.•8 views

CVE-2026-46157

In the Linux kernel, the following vulnerability has been resolved: ALSA: pcm: oss: Fix data race at accessing runtime.oss.trigger Currently the runtime.oss.trigger field may be accessed concurrently without protection, which may lead to the data race. And, in this case, it may lead to more sever...

7.8CVSS5.7AI score0.00013EPSS

Exploits0References5Affected Software1

ATTACKERKB•added 2026/05/28 9:36 a.m.•6 views

CVE-2026-46155

In the Linux kernel, the following vulnerability has been resolved: smb/client: fix out-of-bounds read in smb2compoundop If a server sends a truncated response but a large OutputBufferLength, and terminates the EA list early, checkwsleas returns success without validating that the entire...

5.7AI score0.0006EPSS

Exploits0References6Affected Software1

Cvelist•added 2026/05/28 9:36 a.m.•27 views

CVE-2026-46155 smb/client: fix out-of-bounds read in smb2_compound_op()

9.1CVSS0.0006EPSS

Exploits0References5

EUVD•added 2026/05/28 9:36 a.m.•10 views

EUVD-2026-32782

5.8AI score0.0006EPSS

Exploits0References5

CVE•added 2026/05/28 9:36 a.m.•26 views

CVE-2026-46155

CVE-2026-46155 affects the Linux kernel SMB client. The vulnerability is an out-of-bounds read in smb2_compound_op() caused by memcpy reading size[0] (OutputBufferLength) when iov_len is smaller than that length after a truncated server response. This can leak adjacent kernel heap memory. Impact ...

9.1CVSS5.8AI score0.0006EPSS

Exploits0References5

EUVD•added 2026/05/28 9:36 a.m.•7 views

EUVD-2026-32781

In the Linux kernel, the following vulnerability has been resolved: schedext: Read scxroot under scxcgroupopsrwsem in cgroup setters scxgroupsetweight,idle,bandwidth cache scxroot before acquiring scxcgroupopsrwsem, so the pointer can be stale by the time the op runs. If the loaded scheduler is...

5.8AI score0.00013EPSS

Exploits0References3

CVE•added 2026/05/28 9:36 a.m.•11 views

CVE-2026-46154

CVE-2026-46154 affects the Linux kernel sched_ext functionality. Root cause: in cgroup setters, scx_group_set_{weight,idle,bandwidth}() cache the scx_root before acquiring scx_cgroup_ops_rwsem, enabling a window where the pointer can become stale if a scheduler is disabled and freed (via RCU) and...

7CVSS5.8AI score0.00013EPSS

Exploits0References3

ATTACKERKB•added 2026/05/28 9:36 a.m.•6 views

CVE-2026-46154

5.8AI score0.00013EPSS

Exploits0References4Affected Software1

EUVD•added 2026/05/28 9:36 a.m.•7 views

EUVD-2026-32780

In the Linux kernel, the following vulnerability has been resolved: 8021q: delete cleared egress QoS mappings vlandevsetegresspriority currently keeps cleared egress priority mappings in the hash as tombstones. Repeated set/clear cycles with distinct skb priorities therefore accumulate mapping...

5.8AI score0.00024EPSS

Exploits0References2

ATTACKERKB•added 2026/05/28 9:36 a.m.•6 views

CVE-2026-46153

5.8AI score0.00024EPSS

Exploits0References3Affected Software1

CVE•added 2026/05/28 9:36 a.m.•11 views

CVE-2026-46153

The CVE-2026-46153 fix affects the Linux kernel’s 8021q VLAN handling. The issue was that vlan_dev_set_egress_priority() kept cleared egress priority mappings as tombstones, causing memory growth through repeated set/clear cycles. The patch removes mappings when vlan_prio is cleared instead of ke...

5.8AI score0.00024EPSS

Exploits0References2

Cvelist•added 2026/05/28 9:36 a.m.•24 views

CVE-2026-46153 8021q: delete cleared egress QoS mappings

0.00024EPSS

Exploits0References2

Cvelist•added 2026/05/28 9:36 a.m.•26 views

CVE-2026-46152 wifi: mac80211: drop stray 'static' from fast-RX rx_result

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: drop stray 'static' from fast-RX rxresult ieee80211invokefastrx is documented as safe for parallel RX, but its per-invocation rxresult is declared static. Concurrent callers then share one instance and can overwri...

8.8CVSS0.00021EPSS

Exploits0References5

EUVD•added 2026/05/28 9:36 a.m.•8 views

EUVD-2026-32779

5.8AI score0.00021EPSS

Exploits0References5

ATTACKERKB•added 2026/05/28 9:36 a.m.•7 views

CVE-2026-46152

5.8AI score0.00021EPSS

Exploits0References6Affected Software1

CVE•added 2026/05/28 9:36 a.m.•11 views

CVE-2026-46152

CVE-2026-46152 affects the Linux kernel’s wifi/mac80211 subsystem. The root cause is that ieee80211_invoke_fast_rx() uses a static per-invocation rx_result, causing concurrent callers to share a single instance and potentially overwrite results between ieee80211_rx_mesh_data() and the switch on r...

8.8CVSS5.8AI score0.00021EPSS

Exploits0References5

EUVD•added 2026/05/28 9:36 a.m.•4 views

EUVD-2026-32778

In the Linux kernel, the following vulnerability has been resolved: usb: usblp: fix heap leak in IEEE 1284 device ID via short response usblpctrlmsg collapses the usbcontrolmsg return value to 0/-errno, discarding the actual number of bytes transferred. A broken printer can complete the GETDEVICE...

5.8AI score0.00032EPSS

Exploits0References5

CVE•added 2026/05/28 9:36 a.m.•8 views

CVE-2026-46151

The CVE-2026-46151 issue affects the Linux kernel usb: usblp driver. A vulnerable path in usblp_ctrl_msg() discards the actual bytes transferred, enabling a short GET_DEVICE_ID transfer to be misinterpreted. The cache_device_id_string() reads a 2-byte big-endian length from the response and trust...

5.8AI score0.00032EPSS

Exploits0References8

ATTACKERKB•added 2026/05/28 9:36 a.m.•7 views

CVE-2026-46151

5.8AI score0.00032EPSS

Exploits0References9Affected Software1

Cvelist•added 2026/05/28 9:36 a.m.•23 views

CVE-2026-46151 usb: usblp: fix heap leak in IEEE 1284 device ID via short response

0.00032EPSS

Exploits0References8

Rows per page