CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

870 matches found

Tenable Nessus•added 2026/03/11 12:0 a.m.•2 views

Oracle Linux 8 / 9 : Unbreakable Enterprise kernel (ELSA-2026-50145)

The remote Oracle Linux 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-50145 advisory. - macvlan: fix error recovery in macvlancommonnewlink Eric Dumazet Orabug: 39057366 CVE-2026-23209 - netfilter: nftables: fix inverted genmask che...

9.8CVSS7.1AI score0.00158EPSS

Exploits0References148

Tenable Nessus•added 2026/03/06 12:0 a.m.•20 views

Oracle Linux 8 / 9 : Unbreakable Enterprise kernel (ELSA-2026-50133)

The remote Oracle Linux 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-50133 advisory. - tls: Use skdstget and dstdevrcu in getnetdevforsock. Kuniyuki Iwashima Orabug: 39016219 CVE-2025-40149 Tenable has extracted the preceding...

7.8CVSS5.9AI score0.0004EPSS

Exploits0References3

Oracle linux•added 2026/02/27 12:0 a.m.•8 views

Unbreakable Enterprise kernel security update

5.15.0-317.197.5.2 - xfrm: flush all states in xfrmstatefini Sabrina Dubroca Orabug: 39016261 - xfrm: also call xfrmstatedeletetunnel at destroy time for states that were never added Sabrina Dubroca Orabug: 39016261 - Revert 'xfrm: destroy xfrmstate synchronously on net exit path' Sabrina Dubroca...

7.8CVSS6.6AI score0.0004EPSS

Exploits0

OSV•added 2026/02/14 5:15 p.m.•0 views

UBUNTU-CVE-2026-23192

In the Linux kernel, the following vulnerability has been resolved: linkwatch: use devput in callers to prevent UAF After linkwatchdodev calls devput to release the linkwatch reference, the device refcount may drop to 1. At this point, netdevruntodo can proceed since linkwatchsyncdev sees an empt...

7.8CVSS5.7AI score0.00019EPSS

Exploits0References5

NVD•added 2026/02/14 4:15 p.m.•3 views

CVE-2026-23155

In the Linux kernel, the following vulnerability has been resolved: can: gsusb: gsusbreceivebulkcallback: fix error message Sinc commit 79a6d1bfe114 "can: gsusb: gsusbreceivebulkcallback: unanchor URL on usbsubmiturb error" a failing resubmit URB will print an info message. In the case of a short...

5.5CVSS0.00018EPSS

Exploits0References6

CVE•added 2026/02/14 4:1 p.m.•9 views

CVE-2026-23155

CVE-2026-23155 affects the Linux kernel; it fixes a gs_usb_receive_bulk_callback path in can: gs_usb by correcting error messaging and resubmission handling. The patch adds null initialization for netdev when reads are short and未assigned, and reports the failed resubmit error value. This is a loc...

5.5CVSS5.2AI score0.00018EPSS

Exploits0References6Affected Software1

OSV•added 2026/02/14 4:1 p.m.•2 views

CVE-2026-23155 can: gs_usb: gs_usb_receive_bulk_callback(): fix error message

5.5CVSS5.3AI score0.00018EPSS

Exploits0References8

Tenable Nessus•added 2026/02/06 12:0 a.m.•3 views

Oracle Linux 10 / 9 : Unbreakable Enterprise kernel (ELSA-2026-50094)

The remote Oracle Linux 10 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-50094 advisory. - mptcp: fix a race in mptcppmdeladdtimer Eric Dumazet Orabug: 38932996 CVE-2025-40257 - tls: Use skdstget and dstdevrcu in getnetdevforsock...

7.8CVSS6.8AI score0.00058EPSS

Exploits0References5

SUSE CVE•added 2026/02/01 12:23 a.m.•4 views

SUSE CVE-2026-23035

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Pass netdev to mlx5edestroynetdev instead of priv mlx5epriv is an unstable structure that can be memset0 if profile attaching fails. Pass netdev to mlx5edestroynetdev to guarantee it will work on a valid netdev. On...

5.5CVSS5.8AI score0.00012EPSS

Exploits0References19

NVD•added 2026/01/31 12:16 p.m.•2 views

CVE-2026-23035

0.00012EPSS

Exploits0References3

OSV•added 2026/01/31 12:16 p.m.•1 views

AZL-77232 CVE-2026-23035 affecting package kernel 6.6.126.1-1

5.6AI score0.00012EPSS

Exploits0References1

UbuntuCve•added 2026/01/31 12:16 p.m.•2 views

CVE-2026-23035

5.7AI score0.00012EPSS

Exploits0References11

OSV•added 2026/01/31 12:16 p.m.•2 views

UBUNTU-CVE-2026-23035

5.7AI score0.00012EPSS

Exploits0References12

ATTACKERKB•added 2026/01/31 11:42 a.m.•2 views

CVE-2026-23035

5.7AI score0.00012EPSS

Exploits0References4Affected Software1

Cvelist•added 2026/01/31 11:42 a.m.•28 views

CVE-2026-23035 net/mlx5e: Pass netdev to mlx5e_destroy_netdev instead of priv

0.00012EPSS

Exploits0References3

CVE•added 2026/01/31 11:42 a.m.•7 views

CVE-2026-23035

The CVE-2026-23035 entries describe a Linux kernel mlx5e issue where mlx5e_priv is an unstable structure that can be memset(0) if profile attaching fails. The fix involves passing netdev to mlx5e_destroy_netdev() instead of priv and validating priv->profile in mlx5e_remove to avoid operating o...

5.8AI score0.00012EPSS

Exploits0References3

EUVD•added 2026/01/31 11:42 a.m.•2 views

EUVD-2026-5059

5.8AI score0.00012EPSS

Exploits0References3

OSV•added 2026/01/31 11:42 a.m.•3 views

CVE-2026-23035 net/mlx5e: Pass netdev to mlx5e_destroy_netdev instead of priv

5.8AI score0.00012EPSS

Exploits0References6

ATTACKERKB•added 2026/01/31 11:38 a.m.•2 views

CVE-2025-71182

In the Linux kernel, the following vulnerability has been resolved: can: j1939: make j1939sessionactivate fail if device is no longer registered syzbot is still reporting unregisternetdevice: waiting for vcan0 to become free. Usage count = 2 even after commit 93a27b5891b8 "can: j1939: add missing...

5.7AI score0.00009EPSS

Exploits0References8Affected Software1

Cvelist•added 2026/01/31 11:38 a.m.•30 views

CVE-2025-71182 can: j1939: make j1939_session_activate() fail if device is no longer registered

0.00009EPSS

Exploits0References7

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by