Lucene search
K

2200 matches found

NVD
NVD
added yesterday3 views

CVE-2026-56650

Heap-based buffer overflow in Windows Network File System allows an authorized attacker to elevate privileges locally...

7.8CVSS
Exploits0References1
NVD
NVD
added yesterday2 views

CVE-2026-56648

Time-of-check time-of-use toctou race condition in Windows Network File System allows an authorized attacker to elevate privileges over a network...

7.5CVSS
Exploits0References1
NVD
NVD
added yesterday3 views

CVE-2026-56649

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Network File System allows an unauthorized attacker to execute code over a network...

5.9CVSS
Exploits0References1
Cvelist
Cvelist
added yesterday16 views

CVE-2026-56650 Windows Network File System Elevation of Privilege Vulnerability

...

7.8CVSS
Exploits0References1
CVE
CVE
added yesterday5 views

CVE-2026-56650

CVE-2026-56650 is a Windows Network File System (NFS) vulnerability. A heap-based buffer overflow in NFS allows an authenticated local attacker to escalate privileges. The CVE entry is supported by multiple sources (NVD/MSRC/CIRCL/NCSC) with consistent description and references. Microsoft has re...

7.8CVSS6.1AI score
Exploits0References1
CVE
CVE
added yesterday4 views

CVE-2026-56649

Technical details are not publicly provided in the provided documents. The sources only state a race condition in Windows Network File System without specifying affected versions, exploit specifics, or mitigations. Monitor for updates.

5.9CVSS6.3AI score
Exploits0References1
CVE
CVE
added yesterday5 views

CVE-2026-56648

CVE-2026-56648 is a Windows Network File System (NFS) server vulnerability described as a time-of-check time-of-use (TOCTOU) race condition that could allow an authorized attacker to elevate privileges over the network. Public sources identify the root cause as a TOCTOU race in NFS and classify t...

7.5CVSS6.1AI score
Exploits0References1
CVE
CVE
added 2 days ago12 views

CVE-2026-15547

Shibby Tomato (up to 1.28.0000) contains a vulnerability in the CIFS Mount Handler sub_2D048 that allows remote OS command injection by manipulating the cifs1/cifs2 arguments. A public exploit exists; impact is described with network access and low privileges. The project is superseded by FreshTo...

6.5CVSS6.4AI score0.0105EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2 days ago6 views

Ubuntu 18.04 LTS : Linux kernel (AWS) vulnerabilities (USN-8530-1)

"The remote Ubuntu 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-8530-1 advisory. It was discovered that the Linux kernel did not properly handle shared page fragments during socket buffer operations, collectively known as Dirty Frag....

9.8CVSS6.9AI score0.93235EPSS
Exploits42References23
Tenable Nessus
Tenable Nessus
added 5 days ago8 views

MiracleLinux 9 : kernel-5.14.0-687.10.1.el9_8 (AXSA:2026-1231:47)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2026-1231:47 advisory. kernel: net/sched: Make cakeenqueue return NETXMITCN when past bufferlimit CVE-2025-39766 kernel: scsi: qla2xxx: Fix improper freeing of purex item...

9.8CVSS6.9AI score0.93235EPSS
Exploits52References19
NVD
NVD
added last week9 views

CVE-2026-29009

U-Boot through 2026.04-rc3 contains a buffer overflow vulnerability in nfsreadlinkreply net/nfs-common.c when CONFIGCMDNFS is enabled, allowing a malicious or compromised NFS server to overflow the 2048-byte nfspathbuff buffer by returning multiple relative symlink targets that are appended witho...

8.8CVSS0.00438EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added last week7 views

CVE-2026-29009 U-Boot 2026.04-rc3 Buffer Overflow in nfs_readlink_reply() via NFS READLINK

U-Boot through 2026.04-rc3 contains a buffer overflow vulnerability in nfsreadlinkreply net/nfs-common.c when CONFIGCMDNFS is enabled, allowing a malicious or compromised NFS server to overflow the 2048-byte nfspathbuff buffer by returning multiple relative symlink targets that are appended witho...

8.8CVSS6.3AI score0.00438EPSS
Exploits0References4
EUVD
EUVD
added last week5 views

EUVD-2026-42333

U-Boot through 2026.04-rc3 contains a buffer overflow vulnerability in nfsreadlinkreply net/nfs-common.c when CONFIGCMDNFS is enabled, allowing a malicious or compromised NFS server to overflow the 2048-byte nfspathbuff buffer by returning multiple relative symlink targets that are appended witho...

8.8CVSS6.3AI score0.00438EPSS
Exploits0References3
CVE
CVE
added last week12 views

CVE-2026-29009

CVE-2026-29009 affects U-Boot 2026.04-rc3 with CONFIG_CMD_NFS enabled. The flaw is a buffer overflow in nfs_readlink_reply() (net/nfs-common.c) where the 2048-byte nfs_path_buff can be overflowed by multiple relative symlink targets returned via NFS READLINK. Attackers can send two or more READLI...

8.8CVSS6.3AI score0.00438EPSS
Exploits0References4
Cvelist
Cvelist
added last week34 views

CVE-2026-29009 U-Boot 2026.04-rc3 Buffer Overflow in nfs_readlink_reply() via NFS READLINK

U-Boot through 2026.04-rc3 contains a buffer overflow vulnerability in nfsreadlinkreply net/nfs-common.c when CONFIGCMDNFS is enabled, allowing a malicious or compromised NFS server to overflow the 2048-byte nfspathbuff buffer by returning multiple relative symlink targets that are appended witho...

8.8CVSS0.00438EPSS
Exploits0References4
OSV
OSV
added last week4 views

CVE-2026-29009 U-Boot 2026.04-rc3 Buffer Overflow in nfs_readlink_reply() via NFS READLINK

U-Boot through 2026.04-rc3 contains a buffer overflow vulnerability in nfsreadlinkreply net/nfs-common.c when CONFIGCMDNFS is enabled, allowing a malicious or compromised NFS server to overflow the 2048-byte nfspathbuff buffer by returning multiple relative symlink targets that are appended witho...

8.8CVSS6.2AI score0.00438EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2026/07/08 4:26 a.m.6 views

kernel: nfsd: fix heap overflow in NFSv4.0 LOCK replay cache

A flaw was found in the Linux kernel's NFSv4.0 server nfsd. A remote, unauthenticated attacker can exploit this heap overflow vulnerability in the NFSv4.0 LOCK replay cache. By using two cooperating NFSv4.0 clients, where one sets a lock with a large owner string and another requests a conflictin...

9.8CVSS6.8AI score0.0049EPSS
Exploits0References5
OSV
OSV
added 2026/07/06 8:48 a.m.7 views

USN-8508-1 linux-nvidia-6.17 vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - S390 architecture; - Block layer subsystem; - Cryptographic API; - DMA engine subsystem; - GP...

9.8CVSS6.2AI score0.00817EPSS
Exploits9References85
Tenable Nessus
Tenable Nessus
added 2026/07/03 12:0 a.m.5 views

Ubuntu 14.04 LTS : Linux kernel vulnerabilities (USN-8501-1)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-8501-1 advisory. It was discovered that a logic flaw existed in the XFRM ESP-in-TCP subsystem in the Linux kernel when handling socket buffer fragments. This flaw is know...

9.8CVSS6.8AI score0.00563EPSS
Exploits11References15
OSV
OSV
added 2026/07/02 4:14 p.m.3 views

USN-8501-1 linux vulnerabilities

It was discovered that a logic flaw existed in the XFRM ESP-in-TCP subsystem in the Linux kernel when handling socket buffer fragments. This flaw is known as Fragnesia. A local attacker could use this to escalate privileges, or possibly escape a container. CVE-2026-43503 Several security issues...

9.8CVSS7.1AI score0.00563EPSS
Exploits11References15
Rows per page
Query Builder