CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

126292 matches found

EUVD-2026-38945

In the Linux kernel, the following vulnerability has been resolved: net/rds: Restrict use of RDS/IB to the initial network namespace Prevent using RDS/IB in network namespaces other than the initial one. The existing RDS/IB code will not work properly in non-initial network namespaces...

5.8AI score0.00164EPSS

Exploits0References8

EUVD•added 2 days ago•3 views

EUVD-2026-38943

In the Linux kernel, the following vulnerability has been resolved: ppp: require CAPNETADMIN in target netns for unattached ioctls /dev/ppp open is currently authorized against file-fcred-userns, while unattached administrative ioctls operate on current-nsproxy-netns. As a result, a local...

5.7AI score0.00257EPSS

Exploits1References8

CVE•added 2 days ago•5 views

CVE-2026-53075

In the Linux kernel, CVE-2026-53075 affects PPP handling of unattached administrative ioctls. The flaw permits a local unprivileged user who creates a new user namespace (CLONE_NEWUSER) to obtain CAP_NET_ADMIN in that namespace and still invoke PPPIOCNEWUNIT, PPPIOCATTACH, or PPPIOCATTCHAN agains...

5.7AI score0.00257EPSS

Exploits1References8

CVE•added 2 days ago•4 views

CVE-2026-53074

Summary of CVE-2026-53074 (Linux kernel) : The issue occurs in the bpf_prog_test_run_skb() path where the code may access ip_hdr(skb) or ipv6_hdr(skb) for IPv4/IPv6 inputs even when only an Ethernet header is present. If the Ethernet frame carries an IPv4/IPv6 EtherType but the Layer 3 header is ...

5.7AI score0.00164EPSS

Exploits0References8

CVE•added 2 days ago•4 views

CVE-2026-53011

The CVE-2026-53011 issue affects the Linux kernel net/sched taprio code. When advance_sched() schedules a change and should_change_schedules() returns true, switch_schedules() promotes the admin schedule to oper and queues the old oper schedule for RCU freeing. The problem is that after the switc...

5.7AI score0.00176EPSS

Exploits0References8

RedhatCVE•added 2 days ago•4 views

CVE-2026-52920

A flaw was found in the Linux kernel's netfilter component, which is responsible for network packet filtering. This vulnerability, located in the xtpolicy module, involves an error in how strict inbound network policies are matched. This could allow an attacker to bypass established security rule...

7CVSS5.8AI score0.00164EPSS

Exploits0References4

RedhatCVE•added 2 days ago•5 views

CVE-2026-44393

A flaw was found in OpenStack oslo.messaging. The RabbitMQ driver does not properly verify the hostname of the message broker when establishing a TLS Transport Layer Security connection. An attacker capable of intercepting control-plane network traffic can exploit this vulnerability to impersonat...

7.4CVSS5.8AI score0.00133EPSS

Exploits0References5

OSV•added 2 days ago•2 views

UBUNTU-CVE-2026-52940

In the Linux kernel, the following vulnerability has been resolved: tun: zero the whole vnet header in tunputuser tunputuser declares an on-stack struct virtionethdrv1hashtunnel without zeroing it. For a non-tunnel skb, virtionethdrtnlfromskb only initializes the first 10 bytes sizeofstruct...

5.7AI score0.00154EPSS

Exploits0References6

RedhatCVE•added 2 days ago•5 views

CVE-2026-49468

A flaw was found in LiteLLM, a proxy server AI Gateway used to call Large Language Model LLM APIs. A remote attacker could exploit a Host-header parsing vulnerability in the proxy authentication layer. By sending a crafted Host header, an attacker could gain unauthenticated access to protected...

9.8CVSS6AI score0.00454EPSS

Exploits0References5

EUVD•added 2 days ago•10 views

EUVD-2026-38710

5.8AI score0.00154EPSS

Exploits0References3

Debian CVE•added 2 days ago•5 views

CVE-2026-52939

In the Linux kernel, the following vulnerability has been resolved: net/rds: fix NULL deref in rdsibsendcqehandler on masked atomic completion rdsibxmitatomic always programs a masked atomic opcode IBWRMASKEDATOMICCMPANDSWP or IBWRMASKEDATOMICFETCHANDADD for every RDS atomic cmsg. But the...

5.7AI score0.00164EPSS

Exploits0

EUVD•added 2 days ago•8 views

EUVD-2026-38715

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfqueue: hold bridge skb-dev while queued brpassframeup rewrites skb-dev from the ingress port to the bridge master before queueing bridge LOCALIN packets. NFQUEUE only holds references on state.in/out and bridge...

5.7AI score0.0019EPSS

Exploits0References8

CVE•added 2 days ago•8 views

CVE-2026-52912

The CVE-2026-52912 entry describes a Linux kernel netfilter NFQUEUE use-after-free caused by br_pass_frame_up() rewriting skb->dev to the bridge master, leading to a freed device being observed on reinjection via br_netif_receive_skb(). The fix stores skb->dev in the queue entry and maintai...

5.7AI score0.0019EPSS

Exploits0References8

NVD•added 2 days ago•6 views

CVE-2026-12851

Multiple OS command injection vulnerabilities exist in the libNetSetObj.so functionality of GeoVision GV-I/O Box 4E 2.09. A specially crafted network packet can lead to command execution. An attacker can send a network request to trigger this vulnerability. libNetSetObj.so is an internal library...

9.1CVSS0.01684EPSS

Exploits0References2

NVD•added 2 days ago•6 views

CVE-2026-12850

9.1CVSS0.0172EPSS

Exploits0References2

NVD•added 2 days ago•4 views

CVE-2026-12847

GV-I/O Box 4E is a smart embedded device with 4 input and 4 relays output that can be controlled over Ethernet and RS-485. DVRSearch is a service running by default on the IOBox listening for UDP messages on port 10001. Any user on the network can send messages to this service and interact with i...

10CVSS0.00427EPSS

Exploits0References2

EUVD•added 2 days ago•7 views

EUVD-2026-38653

9.1CVSS5.9AI score0.01684EPSS

Exploits0References2