Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

30 matches found

Tenable Nessus
Tenable Nessusadded 2 days ago4 views

EulerOS Virtualization 2.13.1 : kernel (EulerOS-SA-2026-2132)

According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : nvme: nvme-fc: Ensure -ioerrwork is cancelled in nvmefcdeletectrlCVE-2025-40261 cifs: fix session state check in reconnect to avoid...

7.8CVSS7AI score0.03752EPSS
Exploits6References506
Tenable Nessus
Tenable Nessusadded 2 days ago7 views

EulerOS Virtualization 2.13.0 : kernel (EulerOS-SA-2026-2171)

According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : nvme: nvme-fc: Ensure -ioerrwork is cancelled in nvmefcdeletectrlCVE-2025-40261 cifs: fix session state check in reconnect to avoid...

7.8CVSS8.2AI score0.03752EPSS
Exploits6References506
AstraLinux
AstraLinuxadded 2026/05/20 5:53 a.m.4 views

Astra Linux - уязвимость в linux-6.1

In the Linux kernel, the following vulnerability has been resolved: nvmet-fc: Avoid scheduling association deletion twice. When forcibly shutting down a port via the configfs interface, nvmetportsubsysdroplink first calls nvmetportdelctrls, and then nvmetdisableport. Both functions will eventuall...

5.8AI score0.00076EPSS
Exploits0References1
AstraLinux
AstraLinuxadded 2026/05/03 11:59 p.m.2 views

Astra Linux - уязвимость в linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: nvmet-fc: The work of moving lsop to the nvmetfclsreqop structure has been completed. It is possible for more than one async command to be executed by nvmetfcsendlsreq. For each command, a reference to the target port is created...

5.6AI score0.0004EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2026/03/10 12:0 a.m.15 views

EulerOS 2.0 SP13 : kernel (EulerOS-SA-2026-1244)

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : nvme: nvme-fc: Ensure -ioerrwork is cancelled in nvmefcdeletectrlCVE-2025-40261 cifs: fix session state check in reconnect to avoid use-after-free...

7.8CVSS6.9AI score0.03752EPSS
Exploits6References407
NVD
NVDadded 2025/12/09 4:17 p.m.2 views

CVE-2025-40343

In the Linux kernel, the following vulnerability has been resolved: nvmet-fc: avoid scheduling association deletion twice When forcefully shutting down a port via the configfs interface, nvmetportsubsysdroplink first calls nvmetportdelctrls and then nvmetdisableport. Both functions will eventuall...

0.00076EPSS
Exploits0References6
OSV
OSVadded 2025/12/09 4:17 p.m.1 views

UBUNTU-CVE-2025-40343

In the Linux kernel, the following vulnerability has been resolved: nvmet-fc: avoid scheduling association deletion twice When forcefully shutting down a port via the configfs interface, nvmetportsubsysdroplink first calls nvmetportdelctrls and then nvmetdisableport. Both functions will eventuall...

5.8AI score0.00076EPSS
Exploits0References34
CVE
CVEadded 2025/12/09 4:10 a.m.11 views

CVE-2025-40343

CVE-2025-40343 affects the Linux kernel in nvmet-fc where forceful port shutdown can schedule deletion of associations twice. Root cause: nvmet_port_subsys_drop_link() schedules work items for both nvmet_port_del_ctrls() and nvmet_disable_port() before verifying if an association is already being...

5.9AI score0.00076EPSS
Exploits0References6
Debian CVE
Debian CVEadded 2025/12/09 4:10 a.m.3 views

CVE-2025-40343

In the Linux kernel, the following vulnerability has been resolved: nvmet-fc: avoid scheduling association deletion twice When forcefully shutting down a port via the configfs interface, nvmetportsubsysdroplink first calls nvmetportdelctrls and then nvmetdisableport. Both functions will eventuall...

5.3AI score0.00076EPSS
Exploits0
Cvelist
Cvelistadded 2025/12/09 4:10 a.m.26 views

CVE-2025-40343 nvmet-fc: avoid scheduling association deletion twice

In the Linux kernel, the following vulnerability has been resolved: nvmet-fc: avoid scheduling association deletion twice When forcefully shutting down a port via the configfs interface, nvmetportsubsysdroplink first calls nvmetportdelctrls and then nvmetdisableport. Both functions will eventuall...

0.00076EPSS
Exploits0References6
Tenable Nessus
Tenable Nessusadded 2025/12/09 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-40343

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - nvmet-fc: avoid scheduling association deletion twice When forcefully shutting down a port via the configfs interface, nvmetportsubsysdroplink first calls...

6AI score0.00076EPSS
Exploits0References4
SUSE CVE
SUSE CVEadded 2025/11/14 12:24 a.m.2 views

SUSE CVE-2025-40171

In the Linux kernel, the following vulnerability has been resolved: nvmet-fc: move lsop put work to nvmetfclsreqop It's possible for more than one async command to be in flight from nvmetfcsendlsreq. For each command, a tgtport reference is taken. In the current code, only one put work item is...

5.3CVSS6.1AI score0.0004EPSS
Exploits0References20
RedhatCVE
RedhatCVEadded 2025/11/13 2:3 p.m.2 views

CVE-2025-40171

In the Linux kernel, the following vulnerability has been resolved: nvmet-fc: move lsop put work to nvmetfclsreqop It’s possible for more than one async command to be in flight from nvmetfcsendlsreq. For each command, a tgtport reference is taken. In the current code, only one put work item is...

5.5CVSS5.9AI score0.0004EPSS
Exploits0References4
NVD
NVDadded 2025/11/12 11:15 a.m.6 views

CVE-2025-40171

In the Linux kernel, the following vulnerability has been resolved: nvmet-fc: move lsop put work to nvmetfclsreqop It’s possible for more than one async command to be in flight from nvmetfcsendlsreq. For each command, a tgtport reference is taken. In the current code, only one put work item is...

0.0004EPSS
Exploits0References6
OSV
OSVadded 2025/11/12 10:46 a.m.3 views

CVE-2025-40171 nvmet-fc: move lsop put work to nvmet_fc_ls_req_op

In the Linux kernel, the following vulnerability has been resolved: nvmet-fc: move lsop put work to nvmetfclsreqop It’s possible for more than one async command to be in flight from nvmetfcsendlsreq. For each command, a tgtport reference is taken. In the current code, only one put work item is...

6.1AI score0.0004EPSS
Exploits0References9
Cvelist
Cvelistadded 2025/11/12 10:46 a.m.6 views

CVE-2025-40171 nvmet-fc: move lsop put work to nvmet_fc_ls_req_op

In the Linux kernel, the following vulnerability has been resolved: nvmet-fc: move lsop put work to nvmetfclsreqop It’s possible for more than one async command to be in flight from nvmetfcsendlsreq. For each command, a tgtport reference is taken. In the current code, only one put work item is...

0.0004EPSS
Exploits0References6
CVE
CVEadded 2025/11/12 10:46 a.m.10 views

CVE-2025-40171

CVE-2025-40171: In the Linux kernel nvmet-fc driver, multiple async commands could leak references due to queuing only a single put_work item in __nvmet_fc_send_ls_req. The fix moves the work item to the nvmet_fc_ls_req_op struct (which tracks all resources for the command), preventing reference ...

5.8AI score0.0004EPSS
Exploits0References6
Debian CVE
Debian CVEadded 2025/11/12 10:46 a.m.3 views

CVE-2025-40171

In the Linux kernel, the following vulnerability has been resolved: nvmet-fc: move lsop put work to nvmetfclsreqop It’s possible for more than one async command to be in flight from nvmetfcsendlsreq. For each command, a tgtport reference is taken. In the current code, only one put work item is...

5.1AI score0.0004EPSS
Exploits0
Redos
Redosadded 2024/10/22 12:0 a.m.38 views

ROS-20241021-09

A vulnerability in the ntfs3 component of the Linux operating system kernel is related to read errors outside the bounds in the ntfslistea function in fs/ntfs3/xattr.c. Exploitation of the vulnerability could allow an attacker to cause a denial of service A vulnerability in the qedr component of...

7.8CVSS8.2AI score0.00049EPSS
Exploits0
RedHat Linux
RedHat Linuxadded 2024/09/24 2:39 a.m.1 views

kernel: nvmet-fc: avoid deadlock on delete association path

In the Linux kernel, the following vulnerability has been resolved: nvmet-fc: avoid deadlock on delete association path When deleting an association the shutdown path is deadlocking because we try to flush the nvmetwq nested. Avoid this by deadlock by deferring the put work into its own work item...

4.4CVSS6.8AI score0.00008EPSS
Exploits0References5
Rows per page
Query Builder