Lucene search
K

177 matches found

Cvelist
Cvelist
added 2026/05/11 6:26 a.m.46 views

CVE-2026-43500 rxrpc: Also unshare DATA/RESPONSE packets when paged frags are present

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Also unshare DATA/RESPONSE packets when paged frags are present The DATA-packet handler in rxrpcinputcallevent and the RESPONSE handler in rxrpcverifyresponse copy the skb to a linear one before calling into the security o...

7.8CVSS0.92766EPSS
Exploits20References5
Vulnrichment
Vulnrichment
added 2026/05/11 6:26 a.m.16 views

CVE-2026-43500 rxrpc: Also unshare DATA/RESPONSE packets when paged frags are present

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Also unshare DATA/RESPONSE packets when paged frags are present The DATA-packet handler in rxrpcinputcallevent and the RESPONSE handler in rxrpcverifyresponse copy the skb to a linear one before calling into the security o...

7.8CVSS5.8AI score0.92766EPSS
Exploits20References5
ATTACKERKB
ATTACKERKB
added 2026/05/11 6:26 a.m.5 views

CVE-2026-43500

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Also unshare DATA/RESPONSE packets when paged frags are present The DATA-packet handler in rxrpcinputcallevent and the RESPONSE handler in rxrpcverifyresponse copy the skb to a linear one before calling into the security o...

7.8CVSS5.8AI score0.92766EPSS
Exploits20References6Affected Software1
CVE
CVE
added 2026/05/11 6:26 a.m.183 views

CVE-2026-43500

Summary: CVE-2026-43500 affects the Linux kernel RXRPC path for DATA/RESPONSE packets. The issue occurs when skb fragments are externally owned (e.g., via splice() or frag lists) and the code path decrypts in place, binding frag pages into the AEAD/skcipher SGL. The fix extends the gate to unshar...

7.8CVSS5.8AI score0.92766EPSS
In wildExploits20References9Affected Software1
Debian CVE
Debian CVE
added 2026/05/11 6:26 a.m.22 views

CVE-2026-43500

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Also unshare DATA/RESPONSE packets when paged frags are present The DATA-packet handler in rxrpcinputcallevent and the RESPONSE handler in rxrpcverifyresponse copy the skb to a linear one before calling into the security o...

7.8CVSS6AI score0.92766EPSS
Exploits20
VulnCheck KEV
VulnCheck KEV
added 2026/05/11 12:0 a.m.119 views

VulnCheck KEV: CVE-2026-43500

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Also unshare DATA/RESPONSE packets when paged frags are present The DATA-packet handler in rxrpcinputcallevent and the RESPONSE handler in rxrpcverifyresponse copy the skb to a linear one before calling into the security o...

7.8CVSS5.8AI score0.92766EPSS
In wildExploits20References2
Tenable Nessus
Tenable Nessus
added 2026/05/10 12:0 a.m.7 views

Oracle Linux 10 / 9 : Unbreakable Enterprise kernel (ELSA-2026-50259)

The remote Oracle Linux 10 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-50259 advisory. - rxrpc: Also unshare DATA/RESPONSE packets when paged frags are present Hyunwoo Kim Orabug: 39342689 CVE-2026-43500 Tenable has extracted the...

8.8CVSS6.1AI score0.93235EPSS
Exploits33References3
OSV
OSV
added 2026/05/08 7:44 p.m.11 views

CLSA-2026-1778267481 Update of kernel-uek

rxrpc: Also unshare DATA/RESPONSE packets when paged frags are present - xfrm: esp: avoid in-place decrypt on shared skb frags...

5.8AI score
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/23 9:14 p.m.6 views

CVE-2026-23764

VB-Audio Voicemeeter, Voicemeeter Banana, and Voicemeeter Potato versions ending in 1.1.1.9, 2.1.1.9, and 3.1.1.9 and earlier, respectively, as well as VB-Audio Matrix and Matrix Coconut versions ending in 1.0.2.2 and 2.0.2.2 and earlier, respectively, contain a vulnerability in their virtual aud...

6.8CVSS5.5AI score0.00139EPSS
Exploits0References1
NVD
NVD
added 2026/01/22 5:16 p.m.5 views

CVE-2026-23762

VB-Audio Voicemeeter, Voicemeeter Banana, and Voicemeeter Potato versions ending in 1.1.1.9, 2.1.1.9, and 3.1.1.9 and earlier, respectively, as well as VB-Audio Matrix and Matrix Coconut versions ending in 1.0.2.2 and 2.0.2.2 and earlier, respectively, contain a vulnerability in their virtual aud...

6.9CVSS0.00182EPSS
Exploits0References5
NVD
NVD
added 2026/01/22 5:16 p.m.6 views

CVE-2026-23764

VB-Audio Voicemeeter, Voicemeeter Banana, and Voicemeeter Potato versions ending in 1.1.1.9, 2.1.1.9, and 3.1.1.9 and earlier, respectively, as well as VB-Audio Matrix and Matrix Coconut versions ending in 1.0.2.2 and 2.0.2.2 and earlier, respectively, contain a vulnerability in their virtual aud...

6.8CVSS0.00139EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/01/22 4:17 p.m.3 views

CVE-2026-23762

VB-Audio Voicemeeter, Voicemeeter Banana, and Voicemeeter Potato versions ending in 1.1.1.9, 2.1.1.9, and 3.1.1.9 and earlier, respectively, as well as VB-Audio Matrix and Matrix Coconut versions ending in 1.0.2.2 and 2.0.2.2 and earlier, respectively, contain a vulnerability in their virtual aud...

6.9CVSS5.4AI score0.00182EPSS
Exploits0References7
CVE
CVE
added 2026/01/22 4:17 p.m.18 views

CVE-2026-23762

CVE-2026-23762 affects VB-Audio Voicemeeter, Voicemeeter Banana, Voicemeeter Potato (and Matrix variants) with vulnerable virtual audio drivers (vbvoicemeetervaio64*.sys, vbmatrixvaio64*.sys, vbaudio_vmauxvaio*.sys, vbaudio_vmvaio*.sys, vbaudio_vmvaio3*.sys). The flaw maps non-paged pool memory i...

6.9CVSS5.5AI score0.00182EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/01/22 4:17 p.m.23 views

CVE-2026-23762 VB-Audio Voicemeeter & Matrix Drivers DoS via MmMapLockedPagesSpecifyCache

VB-Audio Voicemeeter, Voicemeeter Banana, and Voicemeeter Potato versions ending in 1.1.1.9, 2.1.1.9, and 3.1.1.9 and earlier, respectively, as well as VB-Audio Matrix and Matrix Coconut versions ending in 1.0.2.2 and 2.0.2.2 and earlier, respectively, contain a vulnerability in their virtual aud...

6.9CVSS0.00182EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/01/22 4:16 p.m.3 views

CVE-2026-23764 VB-Audio Voicemeeter & Matrix Drivers DoS via Corrupted IoAllocateMdl Length

VB-Audio Voicemeeter, Voicemeeter Banana, and Voicemeeter Potato versions ending in 1.1.1.9, 2.1.1.9, and 3.1.1.9 and earlier, respectively, as well as VB-Audio Matrix and Matrix Coconut versions ending in 1.0.2.2 and 2.0.2.2 and earlier, respectively, contain a vulnerability in their virtual aud...

6.8CVSS5.5AI score0.00139EPSS
Exploits0References5
CVE
CVE
added 2026/01/22 4:16 p.m.11 views

CVE-2026-23764

CVE-2026-23764 affects VB-Audio Voicemeeter, Voicemeeter Banana, Voicemeeter Potato, and related Matrix drivers (Matrix Coconut) up to specific early 1.x/2.x versions. The issue is a local-privilege vulnerability in their virtual audio drivers where non-paged pool is mapped to user space; an expo...

6.8CVSS5.5AI score0.00139EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/01/22 4:16 p.m.22 views

CVE-2026-23764 VB-Audio Voicemeeter & Matrix Drivers DoS via Corrupted IoAllocateMdl Length

VB-Audio Voicemeeter, Voicemeeter Banana, and Voicemeeter Potato versions ending in 1.1.1.9, 2.1.1.9, and 3.1.1.9 and earlier, respectively, as well as VB-Audio Matrix and Matrix Coconut versions ending in 1.0.2.2 and 2.0.2.2 and earlier, respectively, contain a vulnerability in their virtual aud...

6.8CVSS0.00139EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.4 views

MiracleLinux 8 : libldb-2.1.3-2.el8 (AXSA:2020-1023:03)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-1023:03 advisory. samba: NULL pointer de-reference and use-after-free in Samba AD DC LDAP Server with ASQ, VLV and pagedresults CVE-2020-10730 Tenable has extracted the...

6.5CVSS5.6AI score0.0244EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.7 views

MiracleLinux 7 : openldap-2.4.44-5.el7 (AXSA:2017-1911:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2017-1911:01 advisory. OpenLDAP is an open source suite of LDAP Lightweight Directory Access Protocol applications and development tools. LDAP is a set of protocols for accessing...

6.5CVSS6.9AI score0.07143EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/11/06 4:3 a.m.10 views

CVE-2025-12580

The SMS for WordPress plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'paged' parameter in all versions up to, and including, 1.1.8 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web...

6.1CVSS5.6AI score0.00243EPSS
Exploits0References1
Rows per page
Query Builder