CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1263 matches found

EUVD•added 2026/05/06 12:30 p.m.•10 views

EUVD-2026-27674

In the Linux kernel, the following vulnerability has been resolved: dm: clear cloned request bio pointer when last clone bio completes Stale rq-bio values have been observed to cause double-initialization of cloned bios in request-based device-mapper targets, leading to use-after-free and...

5.8AI score0.00117EPSS

Exploits0References9

EUVD•added 2026/05/06 12:30 p.m.•2 views

EUVD-2026-27752

In the Linux kernel, the following vulnerability has been resolved: dm mpath: Add missing dmputdevice when failing to get scsi dh name When commit fd81bc5cca8f "scsi: devicehandler: Return error pointer in scsidhattachedhandlername" added code to fail parsing the path if scsidhattachedhandlername...

5.8AI score0.00112EPSS

Exploits0References3

EUVD•added 2026/05/06 12:30 p.m.•4 views

EUVD-2026-27692

In the Linux kernel, the following vulnerability has been resolved: dm-verity: correctly handle dmbufioclientcreate failure If either of the calls to dmbufioclientcreate in verityfecctr fails, then dmbufioclientdestroy is later called with an ERRPTR argument. That causes a crash. Fix this...

5.8AI score0.00128EPSS

Exploits0References9

EUVD•added 2026/05/06 12:30 p.m.•12 views

EUVD-2026-27626

In the Linux kernel, the following vulnerability has been resolved: soc: qcom: pd-mapper: Fix element length in servreglocpfrreqei It looks element length declared in servreglocpfrreqei for reason not matching servreglocpfrreq's reason field due which we could observe decoding error on PD crash...

5.8AI score0.00114EPSS

Exploits0References5

NVD•added 2026/05/06 12:16 p.m.•9 views

CVE-2026-43278

7.8CVSS0.00117EPSS

Exploits0References8

CVE•added 2026/05/06 11:29 a.m.•15 views

CVE-2026-43278

The vulnerability CVE-2026-43278 affects the Linux kernel’s device-mapper (dm) component, notably dm-multipath, where stale cloned bio pointers in cloned requests can lead to use-after-free and double-free of bios. The sequence shows cloned bios freed during blk_complete_request() while rq->bi...

7.8CVSS5.8AI score0.00117EPSS

Exploits0References8Affected Software1

Cvelist•added 2026/05/06 11:29 a.m.•29 views

CVE-2026-43278 dm: clear cloned request bio pointer when last clone bio completes

7.8CVSS0.00117EPSS

Exploits0References6

Debian CVE•added 2026/05/06 11:29 a.m.•2 views

CVE-2026-43278

7.8CVSS5.7AI score0.00117EPSS

Exploits0

CVE•added 2026/05/06 11:28 a.m.•7 views

CVE-2026-43192

The provided sources describe CVE-2026-43192 as a Linux kernel issue in the device-mapper multipath (dm mpath) subsystem. A missing cleanup (dm_put_device) when failing to retrieve the SCSI handler name during path parsing (scsi_dh_attached_handler_name) could leak references to the path device. ...

5.5CVSS5.8AI score0.00112EPSS

Exploits0References2Affected Software1

Cvelist•added 2026/05/06 11:28 a.m.•25 views

CVE-2026-43192 dm mpath: Add missing dm_put_device when failing to get scsi dh name

0.00112EPSS

Exploits0References2

Debian CVE•added 2026/05/06 11:28 a.m.•5 views

CVE-2026-43192

5.5CVSS5.8AI score0.00112EPSS

Exploits0

Cvelist•added 2026/05/06 11:27 a.m.•27 views

CVE-2026-43132 dm-verity: correctly handle dm_bufio_client_create() failure

0.00128EPSS

Exploits0References8

NVD•added 2026/05/06 10:16 a.m.•9 views

CVE-2026-43108

5.5CVSS0.00114EPSS

Exploits0References4

CVE•added 2026/05/06 7:40 a.m.•13 views

CVE-2026-43108

In CVE-2026-43108, the issue is in the Linux kernel's Qualcomm SoC PD-mapper component. The root cause is a mismatch between the declared length of a string element in servreg_loc_pfr_req_ei and the reason field of servreg_loc_pfr_req, which can trigger decoding errors during PD crashes. The conc...

5.5CVSS5.8AI score0.00114EPSS

Exploits0References4Affected Software1

Cvelist•added 2026/05/06 7:40 a.m.•24 views

CVE-2026-43108 soc: qcom: pd-mapper: Fix element length in servreg_loc_pfr_req_ei

0.00114EPSS

Exploits0References4

ATTACKERKB•added 2026/05/06 7:40 a.m.•6 views

CVE-2026-43108

5.7AI score0.00114EPSS

Exploits0References5Affected Software1

Debian CVE•added 2026/05/06 7:40 a.m.•5 views

CVE-2026-43108

5.5CVSS5.7AI score0.00114EPSS

Exploits0

CNNVD•added 2026/05/06 12:0 a.m.•5 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the fact that the bio pointer in the cloning request in the dm driver is not cleared after the la...

7.8CVSS5.8AI score0.00117EPSS

Exploits0References1

Positive Technologies•added 2026/05/06 12:0 a.m.•5 views

PT-2026-37418

In the Linux kernel, the following vulnerability has been resolved: soc: qcom: pd-mapper: Fix element length in servreg loc pfr req ei It looks element length declared in servreg loc pfr req ei for reason not matching servreg loc pfr req's reason field due which we could observe decoding error on...

5.8AI score0.00114EPSS

Exploits0References5

Positive Technologies•added 2026/05/06 12:0 a.m.•7 views

PT-2026-37532

In the Linux kernel, the following vulnerability has been resolved: dm mpath: Add missing dm put device when failing to get scsi dh name When commit fd81bc5cca8f "scsi: device handler: Return error pointer in scsi dh attached handler name" added code to fail parsing the path if scsi dh attached...

5.8AI score0.00112EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by