CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

SUSE Linux•added 2026/04/24 11:48 a.m.•2 views

Security update for openssl-3

This update for openssl-3 fixes the following issue: Security issues fixed: CVE-2026-28390: NULL pointer dereference during processing of a crafted CMS EnvelopedData message with KeyTransportRecipientInfo bsc1261678. Other updates and bugfixes: Enable MD2 in legacy provider jscPED-15724. Patch...

8.2CVSS5.2AI score0.0014EPSS

Exploits0References6

CNNVD•added 2026/04/24 12:0 a.m.•6 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from an error in the bnge error path that leads to the dereferencing of a null pointer...

7.5CVSS5.8AI score0.00074EPSS

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the function rxrpcinputpacketonconn. When this function is called on a current client via the channel, ...

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the cp2615 driver not verifying the existence of the USB device serial number string, potentially leadi...

CNNVD•added 2026/04/24 12:0 a.m.•6 views

Exploits0References2

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the null pointer dereferencing in iassoc inode in nilfs2, potentially leading to general protecti...

5.5CVSS5.8AI score0.00014EPSS

Exploits0References2

Positive Technologies•added 2026/04/24 12:0 a.m.•2 views

PT-2026-35003

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A NULL-pointer dereference or use-after-free issue exists in the mmc: vub300 component. This occurs during disconnect if the controller is not deregistered before the reference to the...

5.5CVSS5.5AI score0.00015EPSS

Exploits0References19

Positive Technologies•added 2026/04/24 12:0 a.m.•5 views

PT-2026-34973

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the bnge driver where the error path fails to return after calling the auxiliary device uninit function. When auxiliary device add fails, the system calls auxiliary...

9.8CVSS5.9AI score0.00102EPSS

Exploits0References68

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from a notification error where NULL is returned instead of ERRPTR, potentially leading to null pointe...

CNNVD•added 2026/04/24 12:0 a.m.•3 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the bonddebugrlbhashshow function not checking whether the slave pointer is empty, potentially...

5.5CVSS5.8AI score0.00019EPSS

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the lack of verification of endpoint indices in the standard request processing routine, potentially...

SUSE CVE•added 2026/04/23 1:28 a.m.•2 views

SUSE CVE-2026-6844

A flaw was found in the readelf utility of the binutils package. A local attacker could exploit two Denial of Service DoS vulnerabilities by providing a specially crafted Executable and Linkable Format ELF file. One vulnerability, a resource exhaustion CWE-400, can lead to an out-of-memory...

5.5CVSS5.7AI score0.00019EPSS

SUSE CVE•added 2026/04/23 1:26 a.m.•3 views

SUSE CVE-2026-31437

In the Linux kernel, the following vulnerability has been resolved: netfs: Fix NULL pointer dereference in netfsunbufferedwrite on retry When a write subrequest is marked NETFSSREQNEEDRETRY, the retry path in netfsunbufferedwrite unconditionally calls stream-preparewrite without checking if it is...

5.6AI score0.00015EPSS

SUSE CVE•added 2026/04/23 1:24 a.m.•3 views

SUSE CVE-2026-33600

An RPZ sent by a malicious authoritative server can result in a null pointer dereference, caused by a missing consistency check and leading to a denial of service...

4.4CVSS5.8AI score0.00002EPSS

Tenable Nessus•added 2026/04/23 12:0 a.m.•1 views

Oracle Linux 10 : wireshark (ELSA-2026-9666)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-9666 advisory. - Resolves: RHEL-152921 - CVE-2026-3203 Buffer Over-read - Resolves: RHEL-152912 - CVE-2026-3201 Improperly Controlled Sequential Memory Allocation -...

7.8CVSS5.8AI score0.00034EPSS

Exploits4References3

Tenable Nessus•added 2026/04/23 12:0 a.m.•1 views

Linux Distros Unpatched Vulnerability : CVE-2026-33262

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An attacker can send replies that result in a null pointer dereference, caused by a missing consistency check and leading to a denial of service. Cookies are...

5.9CVSS5.8AI score0.00002EPSS