Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

420 matches found

SUSE CVE
SUSE CVEadded 2026/05/28 3:57 a.m.3 views

SUSE CVE-2026-45874

In the Linux kernel, the following vulnerability has been resolved: phy: freescale: imx8qm-hsio: fix NULL pointer dereference During the probe the refclkpad pointer is set to NULL if the 'fsl,refclk-pad-mode' property is not defined in the devicetree node. But in imxhsioconfigureclkpad this point...

5.8AI score0.00023EPSS
Exploits0References3
SUSE CVE
SUSE CVEadded 2026/05/28 3:53 a.m.5 views

SUSE CVE-2026-46043

In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Validate pad and ICRC before payloadsize in rxercv rxercv currently checks only that the incoming packet is at least headersizepkt bytes long before payloadsize is used. However, payloadsize subtracts both the...

9.1CVSS5.8AI score0.0007EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2026/05/28 3:39 a.m.9 views

CVE-2026-45874

A flaw was found in the Linux kernel, within the phy: freescale: imx8qm-hsio component. This vulnerability occurs when a specific pointer, refclkpad, is not properly initialized and is later used without validation. This can lead to a NULL pointer dereference, which may cause the system to crash...

5.8AI score0.00023EPSS
Exploits0References4
Cvelist
Cvelistadded 2026/05/27 8:18 p.m.31 views

CVE-2026-44711 pam_usb: Symlink attacks on pad directory and pad files enable authentication bypass and root file corruption

pamusb provides hardware authentication for Linux using ordinary removable media. Prior to 0.8.7, symlink attacks on pad directory and pad files enable authentication bypass and root file corruption. This vulnerability is fixed in 0.8.7...

7.9CVSS0.00022EPSS
Exploits0References1
CVE
CVEadded 2026/05/27 8:18 p.m.7 views

CVE-2026-44711

The CVE concerns the pam_usb project for Linux. Affected: pam_usb versions prior to 0.8.7. Root cause: symlink attacks on the pad directory and pad files. Impact: authentication bypass and potential root file corruption. The issue is fixed in version 0.8.7. There is no explicit exploitation statu...

7.9CVSS5.8AI score0.00022EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/05/27 8:18 p.m.3 views

CVE-2026-44711 pam_usb: Symlink attacks on pad directory and pad files enable authentication bypass and root file corruption

pamusb provides hardware authentication for Linux using ordinary removable media. Prior to 0.8.7, symlink attacks on pad directory and pad files enable authentication bypass and root file corruption. This vulnerability is fixed in 0.8.7...

7.9CVSS5.8AI score0.00022EPSS
Exploits0References1
EUVD
EUVDadded 2026/05/27 8:18 p.m.2 views

EUVD-2026-32659

pamusb provides hardware authentication for Linux using ordinary removable media. Prior to 0.8.7, symlink attacks on pad directory and pad files enable authentication bypass and root file corruption. This vulnerability is fixed in 0.8.7...

7.9CVSS5.8AI score0.00022EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/05/27 8:18 p.m.5 views

CVE-2026-44711

pamusb provides hardware authentication for Linux using ordinary removable media. Prior to 0.8.7, symlink attacks on pad directory and pad files enable authentication bypass and root file corruption. This vulnerability is fixed in 0.8.7...

7.9CVSS5.8AI score0.00022EPSS
Exploits0References2Affected Software1
NVD
NVDadded 2026/05/27 8:16 p.m.6 views

CVE-2026-47272

pamusb provides hardware authentication for Linux using ordinary removable media. Prior to 0.9.0, the pusbpadcompare function in src/pad.c only verified that the user-side pad /.pamusb/device.pad could be read, but did not enforce that the system-side pad the pad file on the USB device was also...

7.1CVSS0.00016EPSS
Exploits0References1
EUVD
EUVDadded 2026/05/27 8:6 p.m.4 views

EUVD-2026-32653

pamusb provides hardware authentication for Linux using ordinary removable media. Prior to 0.9.0, the pusbpadcompare function in src/pad.c only verified that the user-side pad /.pamusb/device.pad could be read, but did not enforce that the system-side pad the pad file on the USB device was also...

7.1CVSS5.9AI score0.00016EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/05/27 8:6 p.m.6 views

CVE-2026-47272

pamusb provides hardware authentication for Linux using ordinary removable media. Prior to 0.9.0, the pusbpadcompare function in src/pad.c only verified that the user-side pad /.pamusb/device.pad could be read, but did not enforce that the system-side pad the pad file on the USB device was also...

7.1CVSS5.9AI score0.00016EPSS
Exploits0References2Affected Software1
CVE
CVEadded 2026/05/27 8:6 p.m.9 views

CVE-2026-47272

pam_usb for Linux allows local authentication bypass before version 0.9.0 due to pusb_pad_compare() only checking the user-side pad (~/.pamusb/device.pad) and not requiring the system-side pad on the USB device to be present. A local user can delete or obscure their own device.pad to bypass the U...

7.1CVSS5.9AI score0.00016EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/05/27 8:6 p.m.34 views

CVE-2026-47272 pam_usb: OTP pad authentication bypass via missing system pad check and uninitialized RNG buffer

pamusb provides hardware authentication for Linux using ordinary removable media. Prior to 0.9.0, the pusbpadcompare function in src/pad.c only verified that the user-side pad /.pamusb/device.pad could be read, but did not enforce that the system-side pad the pad file on the USB device was also...

7.1CVSS0.00016EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/05/27 8:6 p.m.2 views

CVE-2026-47272 pam_usb: OTP pad authentication bypass via missing system pad check and uninitialized RNG buffer

pamusb provides hardware authentication for Linux using ordinary removable media. Prior to 0.9.0, the pusbpadcompare function in src/pad.c only verified that the user-side pad /.pamusb/device.pad could be read, but did not enforce that the system-side pad the pad file on the USB device was also...

7.1CVSS5.9AI score0.00016EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/05/27 7:42 p.m.9 views

CVE-2026-46043

A flaw was found in the Linux kernel's RDMA/rxe component. The rxercv function does not adequately validate the BTH pad and ICRC fields of incoming packets before calculating the payload size. A remote attacker could exploit this by sending a specially crafted short packet or a packet with a forg...

9.1CVSS5.8AI score0.0007EPSS
Exploits0References4
EUVD
EUVDadded 2026/05/27 3:33 p.m.6 views

EUVD-2026-32340

In the Linux kernel, the following vulnerability has been resolved: phy: freescale: imx8qm-hsio: fix NULL pointer dereference During the probe the refclkpad pointer is set to NULL if the 'fsl,refclk-pad-mode' property is not defined in the devicetree node. But in imxhsioconfigureclkpad this point...

5.8AI score0.00023EPSS
Exploits0References5
NVD
NVDadded 2026/05/27 2:17 p.m.2 views

CVE-2026-45874

In the Linux kernel, the following vulnerability has been resolved: phy: freescale: imx8qm-hsio: fix NULL pointer dereference During the probe the refclkpad pointer is set to NULL if the 'fsl,refclk-pad-mode' property is not defined in the devicetree node. But in imxhsioconfigureclkpad this point...

0.00023EPSS
Exploits0References4
EUVD
EUVDadded 2026/05/27 12:56 p.m.5 views

EUVD-2026-32425

In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Validate pad and ICRC before payloadsize in rxercv rxercv currently checks only that the incoming packet is at least headersizepkt bytes long before payloadsize is used. However, payloadsize subtracts both the...

5.8AI score0.0007EPSS
Exploits0References5
CVE
CVEadded 2026/05/27 12:56 p.m.10 views

CVE-2026-46043

The CVE-2026-46043 detail shows a Linux kernel RDMA/rxe issue in rxe_rcv() where payload_size() could underflow due to attacker-controlled BTH pad and RXE_ICRC_SIZE not being accounted for in the initial length check. The fix requires validating paylen against the full minimum length: header_size...

9.1CVSS5.8AI score0.0007EPSS
Exploits0References8
CVE
CVEadded 2026/05/27 12:17 p.m.7 views

CVE-2026-45930

CVE-2026-45930 concerns the Linux kernel net:mctp subsystem. The issue involves RTM_GETNEIGH potentially returning uninitialized data in the pad bytes of ndmsg data within netlink responses. The description confirms a fix that initializes netlink data to zero in the link, addr, and neigh response...

5.8AI score0.00024EPSS
Exploits0References2
Rows per page
Query Builder