Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

4536 matches found

CVE
CVEadded 2026/03/25 10:27 a.m.10 views

CVE-2026-23348

Summary of a Linux kernel CVE (CVE-2026-23348) : The issue is a race condition in the CXL/NVDIMM subsystem where NVDIMM objects reprobe after cxl_acpi removal can occur with the nvdimm_bus object missing, leading to a NULL pointer dereference and potential system crash (DoS). Affected area center...

4.7CVSS5.7AI score0.00014EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/03/25 10:27 a.m.2 views

CVE-2026-23348

In the Linux kernel, the following vulnerability has been resolved: cxl: Fix race of nvdimmbus object when creating nvdimm objects Found issue during running of cxl-translate.sh unit test. Adding a 3s sleep right before the test seems to make the issue reproduce fairly consistently. The...

5.6AI score0.00014EPSS
Exploits0References4Affected Software1
Cvelist
Cvelistadded 2026/03/25 10:27 a.m.23 views

CVE-2026-23348 cxl: Fix race of nvdimm_bus object when creating nvdimm objects

In the Linux kernel, the following vulnerability has been resolved: cxl: Fix race of nvdimmbus object when creating nvdimm objects Found issue during running of cxl-translate.sh unit test. Adding a 3s sleep right before the test seems to make the issue reproduce fairly consistently. The...

0.00014EPSS
Exploits0References3
Debian CVE
Debian CVEadded 2026/03/25 10:27 a.m.2 views

CVE-2026-23305

In the Linux kernel, the following vulnerability has been resolved: accel/rocket: fix unwinding in error path in rocketprobe When rocketcoreinit fails as could be the case with EPROBEDEFER, we need to properly unwind by decrementing the counter we just incremented and if this is the first core we...

7.1CVSS5.2AI score0.00017EPSS
Exploits0
ATTACKERKB
ATTACKERKBadded 2026/03/25 10:27 a.m.0 views

CVE-2026-23305

In the Linux kernel, the following vulnerability has been resolved: accel/rocket: fix unwinding in error path in rocketprobe When rocketcoreinit fails as could be the case with EPROBEDEFER, we need to properly unwind by decrementing the counter we just incremented and if this is the first core we...

5.6AI score0.00017EPSS
Exploits0References4Affected Software1
Cvelist
Cvelistadded 2026/03/25 10:27 a.m.18 views

CVE-2026-23305 accel/rocket: fix unwinding in error path in rocket_probe

In the Linux kernel, the following vulnerability has been resolved: accel/rocket: fix unwinding in error path in rocketprobe When rocketcoreinit fails as could be the case with EPROBEDEFER, we need to properly unwind by decrementing the counter we just incremented and if this is the first core we...

0.00017EPSS
Exploits0References3
OSV
OSVadded 2026/03/25 10:27 a.m.2 views

CVE-2026-23305 accel/rocket: fix unwinding in error path in rocket_probe

In the Linux kernel, the following vulnerability has been resolved: accel/rocket: fix unwinding in error path in rocketprobe When rocketcoreinit fails as could be the case with EPROBEDEFER, we need to properly unwind by decrementing the counter we just incremented and if this is the first core we...

7.1CVSS5.7AI score0.00017EPSS
Exploits0References6
CVE
CVEadded 2026/03/25 10:27 a.m.7 views

CVE-2026-23305

The CVE-2026-23305 entry concerns a Linux kernel issue in accel/rocket where unwinding in rocket_probe’s error path was incorrect. If rocket_core_init() fails (e.g., due to EPROBE_DEFER), the kernel must unwind by decrementing the incremented counter and, if it’s the first core failed to probe, c...

7.1CVSS5.6AI score0.00017EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/03/25 10:26 a.m.0 views

CVE-2026-23291

In the Linux kernel, the following vulnerability has been resolved: nfc: pn533: properly drop the usb interface reference on disconnect When the device is disconnected from the driver, there is a "dangling" reference count on the usb interface that was grabbed in the probe callback. Fix this up b...

5.6AI score0.00031EPSS
Exploits0References9Affected Software1
Vulnrichment
Vulnrichmentadded 2026/03/25 2:15 a.m.3 views

CVE-2026-2072 Cross-Site Scripting vulnerability in Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center Analyzer

Cross-Site Scripting vulnerability in Hitachi Infrastructure Analytics Advisor Analytics probe component, Hitachi Ops Center Analyzer.This issue affects Hitachi Infrastructure Analytics Advisor:; Hitachi Ops Center Analyzer: from 10.0.0-00 before 11.0.5-00...

8.2CVSS5.8AI score0.00054EPSS
Exploits0References1
CVE
CVEadded 2026/03/25 2:15 a.m.8 views

CVE-2026-2072

CVE-2026-2072 is a Cross-Site Scripting vulnerability affecting Hitachi Infrastructure Analytics Advisor (Analytics probe component) and Hitachi Ops Center Analyzer. Affected versions are 10.0.0-00 ≤ before 11.0.5-00. The CVSSv3.1 vector is CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:L/A:L with base s...

8.2CVSS5.8AI score0.00054EPSS
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2026/03/25 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2026-23366

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/client: Do not destroy NULL modes 'modes' in drmclientmodesetprobe may fail to kcalloc. If this occurs, we jump to 'out', calling modesdestroy on it, which...

5.5CVSS6.1AI score0.00017EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2026/03/25 12:0 a.m.1 views

PT-2026-27752

In the Linux kernel, the following vulnerability has been resolved: pinctrl: cirrus: cs42l43: Fix double-put in cs42l43 pin probe devm add action or reset already invokes the action on failure, so the explicit put causes a double-put...

5.7AI score0.00018EPSS
Exploits0References6
Cvelist
Cvelistadded 2026/03/24 7:14 p.m.15 views

CVE-2026-33329 FileRise: Path Traversal in `resumableIdentifier` Leading to Arbitrary File Write, Recursive Directory Deletion, and Limited Existence Oracle

FileRise is a self-hosted web file manager / WebDAV server. From version 1.0.1 to before version 3.10.0, the resumableIdentifier parameter in the Resumable.js chunked upload handler UploadModel::handleUpload is concatenated directly into filesystem paths without any sanitization. An authenticated...

8.1CVSS0.001EPSS
Exploits1References3
CVE
CVEadded 2026/03/24 7:14 p.m.4 views

CVE-2026-33329

FileRise is affected by a path traversal in the resumableIdentifier used by the UploadModel::handleUpload() function. From version 1.0.1 up to but excluding 3.10.0, unsanitized paths allow an authenticated user with upload permission to write files to arbitrary directories, perform post-assembly ...

8.1CVSS5.9AI score0.001EPSS
Exploits1References3Affected Software1
OSV
OSVadded 2026/03/24 7:14 p.m.3 views

CVE-2026-33329 FileRise: Path Traversal in `resumableIdentifier` Leading to Arbitrary File Write, Recursive Directory Deletion, and Limited Existence Oracle

FileRise is a self-hosted web file manager / WebDAV server. From version 1.0.1 to before version 3.10.0, the resumableIdentifier parameter in the Resumable.js chunked upload handler UploadModel::handleUpload is concatenated directly into filesystem paths without any sanitization. An authenticated...

8.1CVSS5.9AI score0.001EPSS
Exploits1References5
Positive Technologies
Positive Technologiesadded 2026/03/23 12:0 a.m.4 views

PT-2026-27190

Name of the Vulnerable Software and Affected Versions AVideo versions up to and including 26.0 Description AVideo is an open source video platform. The standalone live stream control endpoint at plugin/Live/standAloneFiles/control.json.php accepts a user-supplied streamerURL parameter that allows...

9.4CVSS5.7AI score0.00106EPSS
Exploits1References10
EUVD
EUVDadded 2026/03/20 6:31 p.m.2 views

EUVD-2025-208907

This vulnerability in AX53 v1 results from insufficient input sanitization in the device’s probe handling logic, where unvalidated parameters can trigger a stack-based buffer overflow that causes the affected service to crash and, under specific conditions, may enable remote code execution throug...

7.7CVSS6.9AI score0.00267EPSS
Exploits0References3
NVD
NVDadded 2026/03/20 5:16 p.m.2 views

CVE-2025-15608

This vulnerability in AX53 v1 results from insufficient input sanitization in the device’s probe handling logic, where unvalidated parameters can trigger a stack-based buffer overflow that causes the affected service to crash and, under specific conditions, may enable remote code execution throug...

9.8CVSS0.00267EPSS
Exploits0References2
Cvelist
Cvelistadded 2026/03/20 4:31 p.m.17 views

CVE-2025-15608 Buffer Overflow in Network Probe Handling Function of TP-Link Archer AX53

This vulnerability in AX53 v1 results from insufficient input sanitization in the device’s probe handling logic, where unvalidated parameters can trigger a stack-based buffer overflow that causes the affected service to crash and, under specific conditions, may enable remote code execution throug...

7.7CVSS0.00267EPSS
Exploits0References2
Rows per page
Query Builder