CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 2026/05/27 12:15 p.m.•39 views

CVE-2026-45869 power: supply: wm97xx: Fix NULL pointer dereference in power_supply_changed()

In the Linux kernel, the following vulnerability has been resolved: power: supply: wm97xx: Fix NULL pointer dereference in powersupplychanged In probe, requestirq is called before allocating/registering a powersupply handle. If an interrupt is fired between the call to requestirq and...

0.0021EPSS

CVE•added 2026/05/27 12:15 p.m.•16 views

CVE-2026-45869

CVE-2026-45869 relates to the Linux kernel driver wm97xx power supply. The race condition occurs in probe(): IRQ is requested before the power_supply handle is registered, allowing an interrupt to fire and trigger power_supply_changed() while the handle is uninitialized, causing a NULL pointer de...

5.8AI score0.0021EPSS

Debian CVE•added 2026/05/27 12:15 p.m.•7 views

CVE-2026-45869

5.7AI score0.0021EPSS

CVE•added 2026/05/27 12:15 p.m.•12 views

CVE-2026-45857

Affected software: Linux kernel (scsi: csiostor). Issue: dereferencing a null pointer rn in the error path when rn is NULL due to macro CSIO_INC_STATS. Root cause: missing safe control flow after macro usage. Impact: potential null-pointer dereference in the SCSI path; no exploitation details pro...

5.8AI score0.0021EPSS

Cvelist•added 2026/05/27 12:15 p.m.•36 views

CVE-2026-45857 scsi: csiostor: Fix dereference of null pointer rn

In the Linux kernel, the following vulnerability has been resolved: scsi: csiostor: Fix dereference of null pointer rn The error exit path when rn is NULL ends up deferencing the null pointer rn via the use of the macro CSIOINCSTATS. Fix this by adding a new error return path label after the use ...

0.0021EPSS

Debian CVE•added 2026/05/27 12:15 p.m.•8 views

CVE-2026-45857

5.7AI score0.0021EPSS

Cvelist•added 2026/05/27 12:15 p.m.•30 views

CVE-2026-45848 apparmor: fix NULL sock in aa_sock_file_perm

In the Linux kernel, the following vulnerability has been resolved: apparmor: fix NULL sock in aasockfileperm Deal with the potential that sock and sock-sk can be NULL during socket setup or teardown. This could lead to an oops. The fix for NULL pointer dereference in unixneedsrevalidation shows...

0.0021EPSS

CVE•added 2026/05/27 12:15 p.m.•14 views

CVE-2026-45848

The CVE-2026-45848 entry concerns the Linux kernel apparmor component, specifically aa_sock_file_perm. The vulnerability arises from handling when sock and sock-sk can be NULL during socket setup or teardown, which could lead to a NULL pointer dereference and an oops. The description notes this i...

5.7AI score0.0021EPSS

Cvelist•added 2026/05/27 12:15 p.m.•34 views

CVE-2025-71308 accel/amdxdna: Fix potential NULL pointer dereference in context cleanup

In the Linux kernel, the following vulnerability has been resolved: accel/amdxdna: Fix potential NULL pointer dereference in context cleanup aiedestroycontext is invoked during error handling in aie2createcontext. However, aiedestroycontext assumes that the context's mailbox channel pointer is...

0.00189EPSS

CVE•added 2026/05/27 12:15 p.m.•13 views

CVE-2025-71308

The CVE-2025-71308 entry concerns the Linux kernel component accel/amdxdna, where a NULL pointer dereference could occur during context cleanup. Root cause: in aie2_create_context(), error handling may call aie_destroy_context() when the context mailbox channel pointer is NULL if mailbox channel ...

5.8AI score0.00189EPSS

Debian CVE•added 2026/05/27 12:15 p.m.•7 views

CVE-2025-71308

5.7AI score0.00189EPSS

CVE•added 2026/05/27 12:14 p.m.•13 views

CVE-2025-71307

CVE-2025-71307 affects the Linux kernel’s DRM panthor path. The vulnerability arises in panthor_fw_unplug() where the MCU halt-and-wait sequence could dereference a NULL pointer if the MCU is in an unexpected state or the firmware is not loaded/initialized. The patch removes the MCU halt/wait dur...

5.7AI score0.00189EPSS

Cvelist•added 2026/05/27 12:14 p.m.•37 views

CVE-2025-71307 drm/panthor: Fix NULL pointer dereference on panthor_fw_unplug

In the Linux kernel, the following vulnerability has been resolved: drm/panthor: Fix NULL pointer dereference on panthorfwunplug This patch removes the MCU halt and wait for halt procedures during panthorfwunplug as the MCU can be in a variety of states or the FW may not even be loaded/initialize...

0.00189EPSS

Debian CVE•added 2026/05/27 12:14 p.m.•7 views

CVE-2025-71307

5.7AI score0.00189EPSS

NVD•added 2026/05/27 11:16 a.m.•11 views

CVE-2026-45846

In the Linux kernel, the following vulnerability has been resolved: bareudp: fix NULL pointer dereference in bareudpfillmetadatadst bareudpfillmetadatadst passes bareudp-sock to udptunnel6dstlookup in the IPv6 path without a NULL check. The socket is only created in bareudpopen and NULLed in...

0.00165EPSS

NVD•added 2026/05/27 11:16 a.m.•11 views

CVE-2026-45842

In the Linux kernel, the following vulnerability has been resolved: slip: reject VJ receive packets on instances with no rstate array slhcinit accepts rslots == 0 as a valid configuration, with the documented meaning of 'no receive compression'. In that case the allocation loop in slhcinit is...

0.00164EPSS

NVD•added 2026/05/27 11:16 a.m.•17 views

CVE-2026-45843

In the Linux kernel, the following vulnerability has been resolved: slip: bound decode reads against the compressed packet length slhcuncompress parses a VJ-compressed TCP header by advancing a pointer through the packet via decode and pull16. Neither helper bounds-checks against isize, and decod...

8.2CVSS0.00278EPSS