CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3 matches found

Microsoft CVE•added 2026/04/07 8:1 a.m.•4 views

netfilter: conntrack: add missing netlink policy validations

...

7.1CVSS5.8AI score0.00169EPSS

Exploits0

CVE•added 2026/04/06 7:38 a.m.•21 views

CVE-2026-31407

The CVE-2026-31407 entry covers a Linux kernel netfilter conntrack issue where missing netlink policy validations allow a local attacker to craft input that can cause a slab-out-of-bounds access in sctp/ctnetlink, via using unvalidated CTA_PROTOINFO_SCTP_STATE values and accessing ct->master-&...

7.1CVSS5.7AI score0.00169EPSS

Exploits0References8Affected Software1

Cvelist•added 2026/04/06 7:38 a.m.•30 views

CVE-2026-31407 netfilter: conntrack: add missing netlink policy validations

In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack: add missing netlink policy validations Hyunwoo Kim reports out-of-bounds access in sctp and ctnetlink. These attributes are used by the kernel without any validation. Extend the netlink policies accordingly...

7.1CVSS0.00169EPSS

Exploits0References8

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by