CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1108 matches found

Cvelist•added 2026/05/05 8:45 p.m.•25 views

CVE-2026-39402 lxc lxc-user-nic insufficient ownership validation allows cross-tenant OVS port deletion

lxc is a Linux container runtime. In the setuid helper lxc-user-nic, the delete path contains a logic flaw in the findline function that allows an unprivileged user to delete OVS-attached network interfaces belonging to other users. When lxc-user-nic delete scans its NIC database to authorize a...

4.3CVSS0.00015EPSS

Exploits1References1

EUVD•added 2026/05/05 8:45 p.m.•2 views

EUVD-2026-27497

4.3CVSS5.8AI score0.00015EPSS

Exploits1References1

Positive Technologies•added 2026/05/04 12:0 a.m.•5 views

PT-2026-36995

Name of the Vulnerable Software and Affected Versions lxc versions prior to 7.0.0 Description A logic flaw in the find line function of the lxc-user-nic setuid helper allows an unprivileged user to delete OVS-attached network interfaces belonging to other users. When scanning the NIC database to...

6.5CVSS5.8AI score0.00015EPSS

Exploits1References8

AstraLinux•added 2026/05/03 11:59 p.m.•2 views

Astra Linux - уязвимость в linux-5.10, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: openvswitch: The issue of locking up the core during the process of unregistering a netdev due to the carrier status was fixed. The commit in the fixes tag attempted to address this issue through the following sequence of calls:...

5.5CVSS6.1AI score0.00016EPSS

Exploits0References2

AstraLinux•added 2026/05/03 11:59 p.m.•4 views

Astra Linux - уязвимость в openvswitch

A flaw was discovered in OpenVSwitch OVS. When processing an IP packet with protocol 0, OVS will install a datapath flow without modifying the IP header. This issue results in the installation of a datapath flow that matches all IP protocols with “nwproto” set to wildcard, but with an incorrect...

8.2CVSS6.8AI score0.00239EPSS

Exploits0References2

AstraLinux•added 2026/05/03 11:59 p.m.•5 views

Astra Linux - уязвимость в openvswitch

An integer underflow occurred in the Organization Specific TLV in various versions of OpenvSwitch...

9.8CVSS7.3AI score0.00642EPSS

Exploits0References2

AstraLinux•added 2026/05/03 11:59 p.m.•4 views

Astra Linux - уязвимость в linux-6.1, linux, linux-5.10, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: inet: inetdefrag: prevent sk from being released while still in use The functions iplocalout and others can pass skb-sk as a function argument. If the skb is a fragment and reassembly occurs before such a function call returns, t...

5.5CVSS6.4AI score0.00078EPSS

Exploits1References2

AstraLinux•added 2026/05/03 11:59 p.m.•0 views

Astra Linux - уязвимость в linux, linux-5.15, linux-5.10

An integer coercion error was detected in the openvswitch kernel module. When there are a sufficient number of actions, while copying and reserving memory for a new action of a new flow, the reservesfasize function does not return -EMSGSIZE as expected. This could potentially lead to an...

7.8CVSS6.8AI score0.01089EPSS

Exploits5References2

AstraLinux•added 2026/05/03 11:59 p.m.•1 views

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux, linux-5.15

In the Linux kernel, the following vulnerabilities have been resolved: openvswitch: Use RCU protection in ovsvportcmdfillinfo. ovsvportcmdfillinfo can be called without RTNL or RCU. Use RCU protection and devnetrcu to avoid potential UAF Use-After-Free errors...

7.8CVSS6.5AI score0.00015EPSS

Exploits0References2

Microsoft CVE•added 2026/04/30 8:9 a.m.•3 views

net: openvswitch: Avoid releasing netdev before teardown completes

...

7.8CVSS5.8AI score0.00017EPSS

Exploits0

RedhatCVE•added 2026/04/27 10:49 a.m.•1 views

CVE-2026-31679

A flaw was found in the Linux kernel's openvswitch component. This vulnerability arises from improper validation of Multiprotocol Label Switching MPLS payload lengths during SET/SETMASKED actions. An attacker could potentially exploit this by providing malformed MPLS key data, leading to unexpect...

7.1CVSS5.4AI score0.00017EPSS

Exploits0References4

SUSE CVE•added 2026/04/26 1:52 a.m.•5 views

SUSE CVE-2026-31678

In the Linux kernel, the following vulnerability has been resolved: openvswitch: defer tunnel netdevput to RCU release ovsnetdevtunneldestroy may run after NETDEVUNREGISTER already detached the device. Dropping the netdev reference in destroy can race with concurrent readers that still observe...

6.4CVSS5.4AI score0.00014EPSS

Exploits0References5

SUSE CVE•added 2026/04/26 1:52 a.m.•4 views

SUSE CVE-2026-31679

In the Linux kernel, the following vulnerability has been resolved: openvswitch: validate MPLS set/setmasked payload length validateset accepted OVSKEYATTRMPLS as variable-sized payload for SET/SETMASKED actions. In action handling, OVS expects fixed-size MPLS key data struct ovskeympls. Use the...

6.7CVSS5.4AI score0.00017EPSS

Exploits0References16

Cvelist•added 2026/04/25 8:46 a.m.•28 views

CVE-2026-31679 openvswitch: validate MPLS set/set_masked payload length

7.1CVSS0.00017EPSS

Exploits0References8

EUVD•added 2026/04/25 8:46 a.m.•1 views

EUVD-2026-25646

5.3AI score0.00017EPSS

Exploits0References8

CVE•added 2026/04/25 8:46 a.m.•10 views

CVE-2026-31679

Summary: CVE-2026-31679 affects the Linux kernel openvswitch code. The vulnerability arises from improper validation of MPLS payload lengths in SET/SET_MASKED actions: openvswitch accepted OVS_KEY_ATTR_MPLS as a variable-sized payload, while action handling expects fixed-size MPLS data (struct ov...

7.1CVSS5.3AI score0.00017EPSS

Exploits0References8Affected Software1