CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedHat Linux•added 2026/06/10 8:9 p.m.•6 views

kernel: smc: Fix use-after-free in tcp_write_timer_handler()

In the Linux kernel, the following vulnerability has been resolved: smc: Fix use-after-free in tcpwritetimerhandler. With Eric's ref tracker, syzbot finally found a repro for use-after-free in tcpwritetimerhandler by kernel TCP sockets. 0 If SMC creates a kernel socket in smccreate, the kernel...

5.3AI score0.00155EPSS

Exploits0References5

Vulnrichment•added 2026/05/28 7:4 p.m.•9 views

CVE-2026-9037 Download of code without integrity check in XCharge C6

A firmware update mechanism in the affected charging controller fails to validate the authenticity of firmware packages delivered through the device's management interface. Because cryptographic signatures are not verified, an attacker with the ability to interfere with or impersonate the...

9.3CVSS6AI score0.00246EPSS

Cvelist•added 2026/05/28 7:4 p.m.•26 views

CVE-2026-9037 Download of code without integrity check in XCharge C6

9.3CVSS0.00246EPSS

Positive Technologies•added 2026/05/28 12:0 a.m.•26 views

PT-2026-44498

Name of the Vulnerable Software and Affected Versions Charging controller affected versions not specified Description A firmware update mechanism fails to validate the authenticity of firmware packages delivered through the device's management interface. Due to the lack of cryptographic signature...

9.3CVSS6AI score0.00246EPSS

Tenable Nessus•added 2026/03/28 12:0 a.m.•9 views

Linux Distros Unpatched Vulnerability : CVE-2026-23328

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - accel/amdxdna: Fix NULL pointer dereference of mgmtchann mgmtchann may be set to NULL if the firmware returns an unexpected error in aie2sendmgmtmsgwait. This c...

5.5CVSS6AI score0.00107EPSS

Exploits0References2

SUSE CVE•added 2026/03/25 4:56 p.m.•4 views

SUSE CVE-2026-23328

In the Linux kernel, the following vulnerability has been resolved: accel/amdxdna: Fix NULL pointer dereference of mgmtchann mgmtchann may be set to NULL if the firmware returns an unexpected error in aie2sendmgmtmsgwait. This can later lead to a NULL pointer dereference in aie2hwstop. Fix this b...

RedhatCVE•added 2026/03/25 1:38 p.m.•4 views

Exploits0References3

CVE-2026-23328

A flaw was found in the Linux kernel's accel/amdxdna component. An unexpected firmware error during message handling can cause a critical communication variable mgmtchann to be set to NULL. This can lead to a NULL pointer dereference when the system attempts to stop hardware operations, resulting...

5.7AI score0.00107EPSS

NVD•added 2026/03/25 11:16 a.m.•6 views

CVE-2026-23328

5.5CVSS0.00107EPSS

Exploits0References2

UbuntuCve•added 2026/03/25 11:16 a.m.•5 views

CVE-2026-23328

OSV•added 2026/03/25 11:16 a.m.•3 views

UBUNTU-CVE-2026-23328

Cvelist•added 2026/03/25 10:27 a.m.•19 views

Exploits0References5

CVE-2026-23328 accel/amdxdna: Fix NULL pointer dereference of mgmt_chann

0.00107EPSS

Exploits0References2

OSV•added 2026/03/25 10:27 a.m.•4 views

CVE-2026-23328 accel/amdxdna: Fix NULL pointer dereference of mgmt_chann

CVE•added 2026/03/25 10:27 a.m.•16 views

Exploits0References5

CVE-2026-23328

CVE-2026-23328 – Linux kernel (accel/amdxdna): The vulnerability is a NULL pointer dereference in mgmt_chann when the firmware returns an unexpected error in aie2_send_mgmt_msg_wait(), which may set mgmt_chann to NULL and cause a later NULL dereference in aie2_hw_stop(). The fixed patch introduce...

5.5CVSS5.6AI score0.00107EPSS

Exploits0References2Affected Software1

ATTACKERKB•added 2026/03/25 10:27 a.m.•5 views

CVE-2026-23328

5.6AI score0.00107EPSS

Exploits0References3Affected Software1

Debian CVE•added 2026/03/25 10:27 a.m.•5 views

CVE-2026-23328

5.5CVSS5.2AI score0.00107EPSS

Exploits0

Positive Technologies•added 2026/01/01 12:0 a.m.•5 views

PT-2026-27693

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel's accel/amdxdna component where a NULL pointer dereference can occur in the aie2 hw stop function. This is due to the mgmt chann potentially being set t...

5.9AI score0.00107EPSS

Exploits0References7

CVE•added 2025/09/16 4:11 p.m.•20 views

CVE-2022-50339

CVE-2022-50339 : In the Linux kernel Bluetooth stack, a race exists between mgmt_init_hdev() and mgmt_index_removed() where the HCI_MGMT flag testing/setting can race against testing due to missing serialization (hci_dev_lock()). The fix splits hci_dev_test_and_set_flag() into hci_dev_test_flag()...

7CVSS5.8AI score0.00098EPSS

Exploits0References2Affected Software1

Positive Technologies•added 2025/09/16 12:0 a.m.•4 views

PT-2025-38008

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains a flaw related to Bluetooth functionality. Specifically, a race condition can occur within the mgmt init hdev function due to the lack of serialization via hc...

5.8AI score0.00098EPSS

OSV•added 2025/06/06 7:15 a.m.•4 views

CVE-2025-48909

Bypass vulnerability in the device management channel Impact: Successful exploitation of this vulnerability may affect service confidentiality...

7.1CVSS5.8AI score0.0013EPSS