Lucene search
K

31585 matches found

Tenable Nessus
Tenable Nessus
added 2026/04/07 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2026-28388

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Issue summary: When a delta CRL that contains a Delta CRL Indicator extension is processed a NULL pointer dereference might happen if the required CRL Number...

7.5CVSS8.1AI score0.00885EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/04/07 12:0 a.m.6 views

OpenSSL 安全漏洞

OpenSSL is an open-source encryption library developed by the OpenSSL team that enables secure implementation of Secure Sockets Layer SSLv2/v3 and Secure Transport Layer TLSv1 protocols. This product supports various encryption algorithms, including symmetric ciphers, hash algorithms, and secure...

7.5CVSS7.3AI score0.00805EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2026/04/07 12:0 a.m.4 views

PT-2026-31038

Name of the Vulnerable Software and Affected Versions OpenSSL versions 3.0 through 3.6 Description Processing a crafted CMS EnvelopedData message with KeyAgreeRecipientInfo can lead to a NULL pointer dereference. This can cause applications that process attacker-controlled CMS data to crash befor...

7.5CVSS5.8AI score0.00805EPSS
Exploits0References127
Packet Storm News
Packet Storm News
added 2026/04/07 12:0 a.m.3 views

OpenSSL Security Advisory 20260407

OpenSSL Security Advisory 20260407 - Applications using RSASVE key encapsulation to establish a secret encryption key can send contents of an uninitialized memory buffer to a malicious peer. Applications using AES-CFB128 encryption or decryption on systems with AVX-512 and VAES support can trigge...

7.5CVSS6.1AI score0.00981EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2026/04/06 2:26 a.m.3 views

kernel: Linux kernel: Denial of Service in ice driver due to race condition during VSI rebuild

A flaw was found in the Linux kernel's ice network driver. A local attacker could exploit a race condition during the Virtual Station Interface VSI rebuild process. This flaw occurs when the Precision Time Protocol PTP periodic work attempts to access uninitialized memory, leading to a NULL point...

4.7CVSS5.9AI score0.00106EPSS
Exploits0References5
GithubExploit
GithubExploit
added 2026/04/05 8:48 p.m.116 views

Exploit for CVE-2026-23398

CVE-2026-23398 Linux Kernel icmptagvalidation NULL Poin...

5.9AI score0.00114EPSS
Exploits2
NVD
NVD
added 2026/04/05 4:16 a.m.7 views

CVE-2026-5590

A race condition during TCP connection teardown can cause tcprecv to operate on a connection that has already been released. If tcpconnsearch returns NULL while processing a SYN packet, a NULL pointer derived from stale context data is passed to tcpbacklogisfull and dereferenced without validatio...

6.4CVSS0.00158EPSS
Exploits0References1
CVE
CVE
added 2026/04/05 3:34 a.m.20 views

CVE-2026-5590

CVE-2026-5590 describes a race condition during TCP connection teardown where tcp_recv() may operate on a released connection. If tcp_conn_search() returns NULL while processing a SYN, a NULL pointer from stale context data is passed to tcp_backlog_is_full() and dereferenced without validation, c...

6.4CVSS5.8AI score0.00158EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/04/05 12:0 a.m.8 views

Zephyr 安全漏洞

Zephyr is an open-source, scalable real-time operating system RTOS developed by Zephyr. There is a security vulnerability in Zephyr, which stems from race conditions during the termination of TCP connections. This vulnerability may lead to null pointer dereferencing and system crashes...

6.4CVSS5.8AI score0.00158EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/04/05 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2026-23438

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: mvpp2: guard flow control update with globaltxfc in buffer switching mvpp2bmswitchbuffers unconditionally calls mvpp2bmpoolupdateprivfc when switching...

5.5CVSS6.5AI score0.00123EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/04/05 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-23442

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ipv6: add NULL checks for idev in SRv6 paths in6devget can return NULL when the device has no IPv6 configuration e.g. MTU IPV6MINMTU or after NETDEVUNREGISTER...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/04 12:0 a.m.4 views

openSUSE 16 Security Update : expat (openSUSE-SU-2026:20448-1)

The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20448-1 advisory. - CVE-2026-32776: NULL pointer dereference when processing empty external parameter entities inside an entity declaration value bsc1259726. -...

5.5CVSS6AI score0.00216EPSS
Exploits1References9
Tenable Nessus
Tenable Nessus
added 2026/04/04 12:0 a.m.2 views

SUSE SLES15: expat / libexpat-devel / libexpat-devel-32bit / libexpat1 / etc (SUSE-SU-2026:1166-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1166-1 advisory. - CVE-2026-32776: NULL pointer dereference when processing empty external parameter entities inside an entity...

5.5CVSS7.2AI score0.00216EPSS
Exploits1References10
SUSE CVE
SUSE CVE
added 2026/04/03 11:27 p.m.3 views

SUSE CVE-2026-23435

In the Linux kernel, the following vulnerability has been resolved: perf/x86: Move event pointer setup earlier in x86pmuenable A production AMD EPYC system crashed with a NULL pointer dereference in the PMU NMI handler: BUG: kernel NULL pointer dereference, address: 0000000000000198 RIP:...

5.5CVSS5.8AI score0.00121EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/04/03 11:26 p.m.5 views

SUSE CVE-2026-23475

In the Linux kernel, the following vulnerability has been resolved: spi: fix statistics allocation The controller per-cpu statistics is not allocated until after the controller has been registered with driver core, which leaves a window where accessing the sysfs attributes can trigger a...

4.7CVSS5.7AI score0.00123EPSS
Exploits0References16
RedhatCVE
RedhatCVE
added 2026/04/03 7:52 p.m.3 views

CVE-2026-23450

A flaw was found in the Linux kernel's net/smc component. A remote attacker could exploit a race condition during the concurrent closing of an SMC listen socket. This could lead to a NULL pointer dereference or a use-after-free vulnerability in the smctcpsynrecvsock function, potentially causing ...

9.8CVSS5.9AI score0.00488EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/04/03 7:31 p.m.5 views

CVE-2026-23442

A flaw was found in the Linux kernel. Missing null pointer checks in the IPv6 Segment Routing SRv6 implementation, specifically within the seg6hmacvalidateskb and ipv6srhrcv functions, can occur when an IPv6 device lacks proper configuration. This oversight may allow an attacker to trigger a null...

6.5CVSS5.9AI score0.00123EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/04/03 7:17 p.m.10 views

CVE-2026-31394

A flaw was found in the Linux kernel's mac80211 component. This vulnerability occurs when processing stations on APVLAN interfaces, such as 4-address Wireless Distribution System WDS clients. An attacker could trigger a null pointer dereference during Channel Switch Announcement CSA operations,...

5.5CVSS5.9AI score0.00114EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/04/03 6:47 p.m.4 views

CVE-2026-23460

A flaw was found in the Linux kernel's net/rose component. A local user can trigger a NULL pointer dereference by calling connect a second time while a connection attempt is already in progress. This improper handling of concurrent connection attempts can lead to a system crash, resulting in a...

5.9AI score0.00123EPSS
Exploits0References4
EUVD
EUVD
added 2026/04/03 6:31 p.m.5 views

EUVD-2026-18720

In the Linux kernel, the following vulnerability has been resolved: net/rose: fix NULL pointer dereference in rosetransmitlink on reconnect syzkaller reported a bug 1, and the reproducer is available at 2. ROSE sockets use four sk-skstate values: TCPCLOSE, TCPLISTEN, TCPSYNSENT, and TCPESTABLISHE...

5.7AI score0.00123EPSS
Exploits0References7
Rows per page
Query Builder