CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 2026/04/24 10:0 p.m.•0 views

CVE-2026-31651

A flaw was found in the Linux kernel's mmc: vub300 driver. This vulnerability allows a local attacker to trigger a NULL-pointer dereference or use-after-free condition during device disconnection. Successful exploitation could lead to a system crash, resulting in a denial of service...

RedhatCVE•added 2026/04/24 8:38 p.m.•1 views

CVE-2026-31625

A flaw was found in the Linux kernel's HID Human Interface Device alps driver. This vulnerability, a NULL pointer dereference, occurs because the driver attempts to process raw events without properly verifying if the device has been claimed. An attacker could potentially exploit this to cause a...

5.5CVSS5.3AI score0.00014EPSS

RedhatCVE•added 2026/04/24 8:34 p.m.•2 views

CVE-2026-31621

A flaw was found in the Linux kernel's bnge driver. When an error occurs during device initialization, the driver fails to return after deallocating a device, leading to a null pointer dereference. This can cause system instability or a crash, resulting in a Denial of Service DoS for affected...

RedhatCVE•added 2026/04/24 6:24 p.m.•0 views

CVE-2026-31577

A flaw was found in the nilfs2 filesystem within the Linux kernel. A local user can trigger a null pointer dereference by calling the NILFSIOCTLCLEANSEGMENTS operation immediately after mounting the filesystem, but before any btree operations have occurred on the Data Allocation Table DAT inode...

5.5CVSS5.4AI score0.00014EPSS

RedhatCVE•added 2026/04/24 5:45 p.m.•1 views

CVE-2026-31562

A flaw was found in the Linux kernel's drm/mediatek DSI Display Serial Interface driver. A local attacker can exploit an uninitialized driver data structure, which, when accessed during the mipidsihostregister process, leads to a kernel null pointer dereference. This can cause a system crash,...

5.5CVSS5.4AI score0.00015EPSS

RedhatCVE•added 2026/04/24 5:11 p.m.•1 views

CVE-2026-31549

A flaw was found in the Linux kernel's cp2615 driver. A malicious device can exploit this vulnerability by not providing a USB device serial string. This improper handling of the serial string during the i2c adapter name assignment can trigger a NULL-pointer dereference, leading to a system crash...

OSV•added 2026/04/24 3:16 p.m.•1 views

DEBIAN-CVE-2026-31599

In the Linux kernel, the following vulnerability has been resolved: media: vidtv: fix NULL pointer dereference in vidtvchannelpmtmatchsections syzbot reported a general protection fault in vidtvpsidescassign 1. vidtvpsipmtstreaminit can return NULL on memory allocation failure, but...

5.5CVSS5.2AI score0.00014EPSS

OSV•added 2026/04/24 3:16 p.m.•1 views

DEBIAN-CVE-2026-31592

In the Linux kernel, the following vulnerability has been resolved: KVM: SEV: Protect all of sevmemencregisterregion with kvm-lock Take and hold kvm-lock for before checking sevguest in sevmemencregisterregion, as sevguest isn't stable unless kvm-lock is held or KVM can guarantee KVMSEVINIT2 has...

5.5CVSS5.2AI score0.00015EPSS

NVD•added 2026/04/24 3:16 p.m.•2 views

CVE-2026-31583

In the Linux kernel, the following vulnerability has been resolved: media: em28xx: fix use-after-free in em28xxv4l2open em28xxv4l2open reads dev-v4l2 without holding dev-lock, creating a race with em28xxv4l2init's error path and em28xxv4l2fini, both of which free the em28xxv4l2 struct and set...

7.8CVSS0.00014EPSS

Exploits0References9

OSV•added 2026/04/24 3:16 p.m.•1 views

DEBIAN-CVE-2026-31540

In the Linux kernel, the following vulnerability has been resolved: drm/i915/gt: Check setdefaultsubmission before deferencing When the i915 driver firmware binaries are not present, the setdefaultsubmission pointer is not set. This pointer is dereferenced during suspend anyways. Add a check to...

5.5CVSS5.2AI score0.00015EPSS

UbuntuCve•added 2026/04/24 3:16 p.m.•3 views

CVE-2026-31549

In the Linux kernel, the following vulnerability has been resolved: i2c: cp2615: fix serial string NULL-deref at probe The cp2615 driver uses the USB device serial string as the i2c adapter name but does not make sure that the string exists. Verify that the device has a serial number before...

EUVD•added 2026/04/24 2:42 p.m.•2 views

Exploits0References9

EUVD-2026-25518

In the Linux kernel, the following vulnerability has been resolved: HID: alps: fix NULL pointer dereference in alpsrawevent Commit ecfa6f34492c "HID: Add HIDCLAIMEDINPUT guards in rawevent callbacks missing them" attempted to fix up the HID drivers that had missed the previous fix that was done i...

5.3AI score0.00014EPSS

ATTACKERKB•added 2026/04/24 2:42 p.m.•1 views

CVE-2026-31599

5.2AI score0.00014EPSS

Exploits0References7Affected Software1

Cvelist•added 2026/04/24 2:35 p.m.•24 views

CVE-2026-31562 drm/mediatek: dsi: Store driver data before invoking mipi_dsi_host_register

In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: dsi: Store driver data before invoking mipidsihostregister The call to mipidsihostregister triggers a callback to mtkdsibind, which uses devgetdrvdata to retrieve the mtkdsi struct, so this structure needs to be...

0.00015EPSS

Exploits0References3

SUSE Linux•added 2026/04/24 11:48 a.m.•2 views

Security update for openssl-3

This update for openssl-3 fixes the following issue: Security issues fixed: CVE-2026-28390: NULL pointer dereference during processing of a crafted CMS EnvelopedData message with KeyTransportRecipientInfo bsc1261678. Other updates and bugfixes: Enable MD2 in legacy provider jscPED-15724. Patch...

8.2CVSS5.2AI score0.0014EPSS

Exploits0References6

CNNVD•added 2026/04/24 12:0 a.m.•6 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from an error in the bnge error path that leads to the dereferencing of a null pointer...

5.5CVSS5.8AI score0.00015EPSS