CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tenable Nessus•added 2026/05/02 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2026-43050

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - atm: lec: fix use-after-free in sockdefreadable A race condition exists between lecatmclose setting priv-lecd to NULL and concurrent access to priv-lecd in...

7CVSS5.9AI score0.00018EPSS

Tenable Nessus•added 2026/05/02 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2026-43036

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: use skbheaderpointer for TCPv4 GSO fragoff check Syzbot reported a KMSAN uninit-value warning in gsofeaturescheck called from netifskbfeatures 1...

Tenable Nessus•added 2026/05/02 12:0 a.m.•0 views

openSUSE 16 Security Update : libssh (openSUSE-SU-2026:20647-1)

The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20647-1 advisory. - Update to version 0.11.4: - CVE-2026-0964: SCP Protocol Path Traversal in sshscppullrequest bsc1258049 - CVE-2026-0965: Possible Denial of...

8.2CVSS5.8AI score0.00158EPSS

Exploits8References21

Tenable Nessus•added 2026/05/02 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2026-31727

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: usb: gadget: uether: Fix NULL pointer deref in ethgetdrvinfo Commit ec35c1969650 usb: gadget...

5.5CVSS5.7AI score0.00015EPSS

Tenable Nessus•added 2026/05/02 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2026-31755

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - usb: cdns3: gadget: fix NULL pointer dereference in epqueue When the gadget endpoint is disabled or not yet configured, the ep-desc pointer can be NULL. This...

Tenable Nessus•added 2026/05/02 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2026-43013

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net/mlx5: lag: Check for LAG device before creating debugfs mlx5lagdevaddmdev may return 0 success even when an error occurs that is handled gracefully...

RedhatCVE•added 2026/05/01 10:17 p.m.•3 views

CVE-2026-31753

A flaw was found in the Linux kernel, specifically within the auxdisplay and line-display modules. This vulnerability occurs when the linedisprelease function attempts to free display resources. If the associated attachment list has already been removed, the function dereferences a null pointer,...

5.5CVSS5.8AI score0.00017EPSS

RedhatCVE•added 2026/05/01 10:8 p.m.•2 views

CVE-2026-31749

A flaw was found in the niatmio16d driver within the Comedi Comedi is a collection of drivers for data acquisition equipment subsystem of the Linux kernel. This vulnerability occurs when an error during the driver's attach process causes the cleanup function atmio16ddetach to be called with...

RedhatCVE•added 2026/05/01 9:53 p.m.•2 views

CVE-2026-31744

A flaw was found in the Linux kernel. When processing energy model performance domains, the devenergymodelnlgetperfdomainsdoit function fails to validate the return value from emperfdomaingetbyid. If a non-existent performance domain ID is provided, this leads to a null pointer dereference, which...

5.5CVSS5.8AI score0.00017EPSS

RedhatCVE•added 2026/05/01 9:33 p.m.•2 views

CVE-2026-31736

A flaw was found in the Linux kernel's mtkppe Ethernet driver. When the gmac0 interface is disabled, a precheck for a valid ingress device can lead to a NULL pointer dereference. This vulnerability can cause a system crash, resulting in a Denial of Service DoS...

RedhatCVE•added 2026/05/01 9:10 p.m.•2 views

CVE-2026-31728

A flaw was found in the Linux kernel's usb: gadget: uether module. A race condition between the getherdisconnect and ethstop functions can lead to a NULL pointer dereference. This occurs when ethstop is triggered concurrently while getherdisconnect is tearing down USB endpoints. The vulnerability...

5.5CVSS5.8AI score0.00014EPSS

RedhatCVE•added 2026/05/01 9:3 p.m.•2 views

CVE-2026-31727

A flaw was found in the Linux kernel's USB gadget subsystem, specifically within the uether module. A local user can exploit this vulnerability by using a userspace tool to query a USB gadget interface during a specific detached state. This action can trigger a NULL pointer dereference, potential...

RedhatCVE•added 2026/05/01 9:2 p.m.•2 views

CVE-2026-31726

A flaw was found in the Linux kernel's USB Video Class UVC gadget driver. A race condition during power management PM transitions can cause a null pointer dereference. This occurs when the system attempts to access a deallocated gadget pointer, leading to a kernel panic. This vulnerability can be...

RedhatCVE•added 2026/05/01 8:33 p.m.•3 views

CVE-2026-31715

A flaw was found in the Linux kernel's Flash-Friendly File System f2fs. A use-after-free vulnerability exists due to incorrect handling of page counts during concurrent write operations and unmounting. This can lead to a NULL pointer dereference, causing the system to panic and resulting in a...

7.8CVSS5.8AI score0.00018EPSS