CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 18 hours ago•4 views

CVE-2026-52983

A flaw was found in the Linux kernel's airoha network driver. This vulnerability stems from an inconsistent accounting of inflight packets in the transmit TX path, leading to a Byte Queue Limit BQL imbalance. This issue could potentially result in network performance degradation or a denial of...

5.8AI score0.00173EPSS

RedhatCVE•added yesterday•5 views

CVE-2026-52984

A flaw was found in the Linux kernel's networking scheduler netem. The queue limit check in the netemenqueue function does not properly account for reordered packets, allowing the total queue occupancy to exceed its configured limit. This oversight can lead to a Denial of Service DoS condition,...

5.5CVSS5.8AI score0.00184EPSS

RedhatCVE•added yesterday•5 views

CVE-2026-52976

A flaw was found in the Linux kernel. Specifically, within the drm/xe graphics driver, two error handling issues in the xeexecqueuecreateioctl function could lead to memory corruption. This could result in a dangling pointer or a use-after-free vulnerability. A local attacker could potentially...

7CVSS5.8AI score0.00175EPSS

EUVD•added yesterday•4 views

EUVD-2026-39337

In the Linux kernel, the following vulnerability has been resolved: vsock/virtio: fix potential unbounded skb queue virtiotransportincrxpkt checks vvs-rxbytes + len vvs-bufalloc. virtiotransportrecvenqueue skips coalescing for packets with VIRTIOVSOCKSEQEOM. If fed with packets with len == 0 and...

5.7AI score0.00168EPSS

Exploits0References5

CVE-2026-53272

The CVE-2026-53272 entry concerns the EROFS filesystem in the Linux kernel. A use-after-free was fixed in sbi->sync_decompress: z_erofs_endio() queues z_erofs_decompressqueue_work(), then, after folios unlock, the unmount path can proceed and erofs_sb_free may kfree(sbi) before sbi->sync_de...

5.7AI score0.00164EPSS

CVE-2026-53260

In the Linux kernel, the following vulnerability has been resolved: tcp: Add preemptdisable,enablenested in reqskqueuehashreq. syzbot reported a weird reqsk-rskrefcnt underflow in inetcskreqskqueuedrop. The captured reqskput in inetcskreqskqueuedrop is called only when it successfully removes req...

5.6AI score0.00154EPSS

EUVD•added yesterday•4 views

EUVD-2026-39211

5.7AI score0.00154EPSS

Exploits0References2

CVE•added yesterday•4 views

CVE-2026-53260

The CVE-2026-53260 issue affects the Linux kernel TCP request-sk queue handling (inet_connection_sock.c). The root cause was a potential refcount underflow in reqsk_queue_hash_req due to a race where a preemption could occur between mod_timer() and refcount_set(), followed by a timer-triggered cl...

5.7AI score0.00154EPSS

Exploits0References2

EUVD-2026-39193

In the Linux kernel, the following vulnerability has been resolved: ALSA: PCM: Fix wait queue list corruption in sndpcmdrain on linked streams sndpcmdrain uses initwaitqueueentry which does not clear entry.prev/next, and addwaitqueue with a conditional removewaitqueue that is skipped when tocheck...

5.8AI score0.0018EPSS

Exploits0References7

CVE-2026-53242

Summary of CVE-2026-53242 (Linux kernel) : The ALSA PCM code path in snd_pcm_drain() had a wait-queue handling flaw that could corrupt wait queue lists during linked-stream drain operations. Specifically, using init_waitqueue_entry without clearing prev/next, coupled with conditional add_wait_que...

5.8AI score0.0018EPSS

Exploits0References7

CVE-2026-53242

5.7AI score0.0018EPSS

CVE-2026-53223

CVE-2026-53223 (Linux kernel) resolves an issue in the net layer where skb_is_err_queue() treated PACKET_OUTGOING as the sole marker for error-queue skbs. This misclassification does not hold for AF_PACKET sockets, where outgoing taps can also be delivered to packet sockets with skb->pkt_type ...

5.8AI score0.00184EPSS

Exploits0References8

CVE-2026-53223

In the Linux kernel, the following vulnerability has been resolved: net: guard timestamp cmsgs to real error queue skbs skbiserrqueue treats PACKETOUTGOING as the sole marker for an skb from skerrorqueue. That assumption is not true for AFPACKET sockets: outgoing packet taps are also delivered to...

5.7AI score0.00184EPSS

EUVD-2026-39314

5.8AI score0.00184EPSS

Exploits0References8

CVE-2026-53201

CVE-2026-53201 in the Linux kernel was resolved by reverting a performance optimization that skipped suspend scheduling in LR/preempt-fence VM mode. The idle-skip optimization could bypass the GuC suspend, preventing the context switch that flushes TLB entries for invalidated userptr VMAs, potent...

5.7AI score0.00172EPSS

Exploits0References2

CVE-2026-53201

In the Linux kernel, the following vulnerability has been resolved: Revert "drm/xe: Skip exec queue schedule toggle if queue is idle during suspend" This reverts commit 8533051ce92015e9cc6f75e0d52119b9d91610b6. The idle-skip optimization bypasses GuC suspend, so the GPU may not perform the contex...

5.6AI score0.00172EPSS

CVE•added yesterday•7 views

CVE-2026-53191

The CVE affects the Linux kernel io_uring net path in bundle recv retries. The bug arises when merging cflags during io_recv_finish(): IORING_CQE_F_BUF_MORE was not included in CQE_F_MASK, so the buf-more flag could be dropped or mis-carryed across iterations, causing userspace to advance the rin...

6AI score0.00175EPSS

EUVD-2026-39282

In the Linux kernel, the following vulnerability has been resolved: iouring/net: inherit IORINGCQEFBUFMORE across bundle recv retries When a bundle recv retries inside iorecvfinish, the merge logic OR the saved cflags from the previous iteration with the cflags returned by the new iteration: cfla...

6AI score0.00175EPSS