Lucene search
K

2335 matches found

CVE
CVE
added 2026/06/30 10:38 p.m.26 views

CVE-2026-13887

The CVE-2026-13887 entry relates to Google Chrome for Android, where an inappropriate NFC implementation before version 150.0.7871.47 allowed a remote attacker who had already compromised the renderer process to leak cross-origin data via a crafted HTML page. This is triggered by a renderer compr...

6.5CVSS5.8AI score0.00233EPSS
Exploits0References2Affected Software1
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.8 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: nfc: nci: Fixed a race condition between rfkill and nciunregisterdevice. syzbot reported the issue below 0 without a reproduction test. It was indicated that the struct ncidev.cmdwq was destroyed before nciclosedevice was called...

4.7CVSS5.8AI score0.00086EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/06/20 12:0 a.m.14 views

SUSE SLES15 Security Update : kernel (SUSE-SU-2026:2421-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2421-1 advisory. The SUSE Linux Enterprise 15 SP5 kernel was updated to fix various security issues The following security issues were fixed: -...

9.8CVSS6.7AI score0.00563EPSS
Exploits16References25
NVD
NVD
added 2026/06/17 1:19 p.m.13 views

CVE-2026-0082

In tryStartActivity of NfcDispatcher.java, there is a possible automatic special app access permission assignment due to an insecure default value. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

10CVSS0.00165EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 1:19 p.m.22 views

CVE-2026-0081

In NFC, there is a possible way to spoof an NFC event due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

10CVSS0.00148EPSS
Exploits0References1
CVE
CVE
added 2026/06/17 7:15 a.m.19 views

CVE-2026-0083

Summary: CVE-2026-0083 describes a possible use-after-free in Nfc::eventCallback() within Nfc.h caused by a race condition, enabling local privilege escalation with no additional privileges and no user interaction required. Connected sources (NVD, EUVD, CIRCL, CVE lists) reproduce the same descri...

10CVSS5.6AI score0.00121EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/06/17 7:12 a.m.35 views

CVE-2026-0081

In NFC, there is a possible way to spoof an NFC event due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

10CVSS0.00148EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/17 12:0 a.m.25 views

PT-2026-50235

Name of the Vulnerable Software and Affected Versions Google Android affected versions not specified Description A race condition in the eventCallback function of Nfc.h can lead to a use-after-free scenario. This issue allows for local escalation of privilege without requiring additional executio...

10CVSS5.5AI score0.00121EPSS
Exploits0References4
OSV
OSV
added 2026/06/16 2:35 p.m.4 views

SUSE-SU-2026:2421-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP5 kernel was updated to fix various security issues The following security issues were fixed: - CVE-2026-31629: nfc: llcp: add missing return after LLCPCLOSED checks bsc1263790. - CVE-2026-43037: ip6tunnel: clear skb2-cb in ip4ip6err bsc1263995. - CVE-2026-43206:...

9.8CVSS5.1AI score0.00563EPSS
Exploits16References17
Tenable Nessus
Tenable Nessus
added 2026/06/14 12:0 a.m.13 views

SUSE SLES15 Security Update : kernel (SUSE-SU-2026:2383-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2383-1 advisory. The SUSE Linux Enterprise 15 SP4 kernel was updated to fix various security issues The following security issues were fixed: -...

9.8CVSS6.6AI score0.00563EPSS
Exploits16References40
SUSE Linux
SUSE Linux
added 2026/06/12 9:14 a.m.10 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 kernel was updated to fix various security issues The following security issues were fixed: CVE-2026-31405: media: dvb-net: fix OOB access in ULE extension header tables bsc1261700. CVE-2026-31629: nfc: llcp: add missing return after LLCPCLOSED checks bsc1263790...

9.3CVSS5.1AI score0.00563EPSS
Exploits16References52
OSV
OSV
added 2026/06/12 9:14 a.m.13 views

SUSE-SU-2026:2383-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 kernel was updated to fix various security issues The following security issues were fixed: - CVE-2026-31405: media: dvb-net: fix OOB access in ULE extension header tables bsc1261700. - CVE-2026-31629: nfc: llcp: add missing return after LLCPCLOSED checks...

9.8CVSS5.1AI score0.00563EPSS
Exploits16References27
SUSE Linux
SUSE Linux
added 2026/06/10 8:40 a.m.6 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 RT kernel was updated to fix various security issues The following security issues were fixed: CVE-2026-31405: media: dvb-net: fix OOB access in ULE extension header tables bsc1261700. CVE-2026-31629: nfc: llcp: add missing return after LLCPCLOSED checks bsc126379...

9.3CVSS5.6AI score0.00563EPSS
Exploits16References52
OSV
OSV
added 2026/06/10 8:40 a.m.10 views

SUSE-SU-2026:2331-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 RT kernel was updated to fix various security issues The following security issues were fixed: - CVE-2026-31405: media: dvb-net: fix OOB access in ULE extension header tables bsc1261700. - CVE-2026-31629: nfc: llcp: add missing return after LLCPCLOSED checks...

9.8CVSS5.6AI score0.00563EPSS
Exploits16References27
SUSE Linux
SUSE Linux
added 2026/06/09 8:18 a.m.13 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP6 kernel was updated to fix various security issues The following security issues were fixed: CVE-2026-31405: media: dvb-net: fix OOB access in ULE extension header tables bsc1261700. CVE-2026-31473: media: mc, v4l2: serialize REINIT and REQBUFS with reqqueuemutex...

9.3CVSS6AI score0.00563EPSS
Exploits23References98
RedhatCVE
RedhatCVE
added 2026/06/07 4:58 a.m.11 views

CVE-2026-11108

An inappropriate implementation flaw was found in the NFC component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=500517053...

9.6CVSS5.4AI score0.00225EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2026/06/07 4:45 a.m.11 views

SUSE CVE-2026-11108

Inappropriate implementation in NFC in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to perform privilege escalation via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS5.5AI score0.00225EPSS
Exploits0References2
NVD
NVD
added 2026/06/03 6:16 p.m.15 views

CVE-2026-46267

In the Linux kernel, the following vulnerability has been resolved: nfc: hci: shdlc: Stop timers and work before freeing context llcshdlcdeinit purges SHDLC skb queues and frees the llcshdlc structure while its timers and state machine work may still be active. Timer callbacks can schedule smwork...

7.8CVSS0.00121EPSS
Exploits0References7
Cvelist
Cvelist
added 2026/06/03 3:50 p.m.44 views

CVE-2026-46267 nfc: hci: shdlc: Stop timers and work before freeing context

In the Linux kernel, the following vulnerability has been resolved: nfc: hci: shdlc: Stop timers and work before freeing context llcshdlcdeinit purges SHDLC skb queues and frees the llcshdlc structure while its timers and state machine work may still be active. Timer callbacks can schedule smwork...

0.00121EPSS
Exploits0References7
OSV
OSV
added 2026/05/30 9:9 a.m.16 views

CLSA-2026-1780132171 Fix of 25 CVEs

CVE-2025-68724 - crypto: asymmetrickeys - prevent overflow in asymmetrickeygenerateid CVE-2025-68724 CVE-2025-71196 - phy: stm32-usphyc: Fix off by one in probe CVE-2025-71196 CVE-2026-23033 - dmaengine: omap-dma: fix dmapool resource leak in error paths CVE-2026-23033 CVE-2026-23049 -...

9.8CVSS5.9AI score0.00501EPSS
Exploits0References1
Rows per page
Query Builder