CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2026/05/06 9:31 p.m.•2 views

GHSA-82RM-QCFX-2V78 Duplicate Advisory: OpenClaw: Delivery queue recovery could lose group tool-policy context for media replay

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-r77c-2cmr-7p47. This link is maintained to preserve external references. Original Description OpenClaw versions 2026.4.10 before 2026.4.14 fail to persist session context during delivery queue recovery for media...

6CVSS5.7AI score0.00031EPSS

EUVD•added 2026/05/06 9:31 p.m.•2 views

EUVD-2026-28178

OpenClaw versions 2026.4.10 before 2026.4.14 fail to persist session context during delivery queue recovery for media replay. Attackers can exploit recovered queued outbound media to bypass group tool policy enforcement and weaken channel media restrictions after service restart or recovery...

6CVSS5.8AI score0.00031EPSS

Github Security Blog•added 2026/05/06 9:31 p.m.•8 views

Duplicate Advisory: OpenClaw: Delivery queue recovery could lose group tool-policy context for media replay

6.5CVSS5.7AI score0.00031EPSS

Exploits0References5Affected Software1

RedhatCVE•added 2026/05/06 8:58 p.m.•4 views

CVE-2026-43195

A flaw was found in the Linux kernel's drm/amdgpu graphics driver. This vulnerability arises from inadequate validation of user-provided queue sizes, which do not meet hardware requirements. An attacker could exploit this by supplying invalid queue size configurations, potentially leading to GPU...

5.5CVSS5.8AI score0.00013EPSS

RedhatCVE•added 2026/05/06 8:37 p.m.•4 views

CVE-2026-43180

A flaw was found in the Linux kernel's kaweth USB network driver. The kawethsetrxmode function incorrectly manipulates the transmit TX queue, allowing it to be re-enabled while a USB Request Block URB is still active. This can result in the same URB being submitted twice, leading to a kernel...

7.8CVSS5.8AI score0.00017EPSS

NVD•added 2026/05/06 8:16 p.m.•2 views

CVE-2026-43583

6.5CVSS0.00031EPSS

Cvelist•added 2026/05/06 7:49 p.m.•21 views

CVE-2026-43583 OpenClaw 2026.4.10 < 2026.4.14 - Loss of Group Tool-Policy Context in Delivery Queue Recovery

6CVSS0.00031EPSS

CVE•added 2026/05/06 7:49 p.m.•8 views

CVE-2026-43583

OpenClaw 2026.4.10 before 2026.4.14 fails to persist session context during delivery queue recovery for media replay. Attackers can exploit recovered queued outbound media to bypass group tool policy enforcement and weaken channel media restrictions after service restart or recovery. Affected ver...

6.5CVSS5.8AI score0.00031EPSS

Exploits0References3Affected Software1

ATTACKERKB•added 2026/05/06 7:49 p.m.•3 views

CVE-2026-43583

6CVSS5.8AI score0.00031EPSS

Exploits0References4Affected Software1

Vulnrichment•added 2026/05/06 7:49 p.m.•6 views

CVE-2026-43583 OpenClaw 2026.4.10 < 2026.4.14 - Loss of Group Tool-Policy Context in Delivery Queue Recovery

6CVSS5.8AI score0.00031EPSS

RedhatCVE•added 2026/05/06 2:43 p.m.•6 views

CVE-2026-43083

A flaw was found in the Linux kernel's ioam6 network module. A remote attacker could potentially trigger an out-of-bounds access in the skbgettxqueue function by sending specially crafted network packets. This occurs when an ingress device has more receive queues than the egress device has transm...

9.1CVSS5.8AI score0.00053EPSS

RedHat Linux•added 2026/05/06 1:41 p.m.•2 views

kernel: scsi: mpi3mr: Synchronous access b/w reset and tm thread for reply queue

In the Linux kernel, the following vulnerability has been resolved: scsi: mpi3mr: Synchronous access b/w reset and tm thread for reply queue When the task management thread processes reply queues while the reset thread resets them, the task management thread accesses an invalid queue ID 0xFFFF, s...

7.8CVSS5.7AI score0.00067EPSS

EUVD•added 2026/05/06 12:30 p.m.•2 views

EUVD-2026-27754

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: validate user queue size constraints Add validation to ensure user queue sizes meet hardware requirements: - Size must be a power of two for efficient ring buffer wrapping - Size must be at least AMDGPUGPUPAGESIZE to...

5.8AI score0.00013EPSS

EUVD•added 2026/05/06 12:30 p.m.•2 views

EUVD-2026-27733

In the Linux kernel, the following vulnerability has been resolved: iouring/zcrx: fix post open error handling Closing a queue doesn't guarantee that all associated page pools are terminated right away, let the refcounting do the work instead of releasing the zcrx ctx directly...

5.8AI score0.00014EPSS

EUVD•added 2026/05/06 12:30 p.m.•1 views

EUVD-2026-27740

In the Linux kernel, the following vulnerability has been resolved: net: usb: kaweth: remove TX queue manipulation in kawethsetrxmode kawethsetrxmode, the ndosetrxmode callback, calls netifstopqueue and netifwakequeue. These are TX queue flow control functions unrelated to RX multicast...

5.7AI score0.00017EPSS

Exploits0References9

EUVD•added 2026/05/06 12:30 p.m.•3 views

EUVD-2025-209675

In the Linux kernel, the following vulnerability has been resolved: net: qrtr: Drop the MHI autoqueue feature for IPCR DL channels MHI stack offers the 'autoqueue' feature, which allows the MHI stack to auto queue the buffers for the RX path DL channel. Though this feature simplifies the client...

5.8AI score0.00013EPSS

EUVD•added 2026/05/06 12:30 p.m.•1 views

EUVD-2026-27578

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlinkqueue: make hash table per queue Sharing a global hash table among all queues is tempting, but it can cause crash: BUG: KASAN: slab-use-after-free in nfqnlrecvverdict+0x11ac/0x15e0 nfnetlinkqueue...

5.8AI score0.00013EPSS

EUVD•added 2026/05/06 12:30 p.m.•3 views

EUVD-2026-27576

In the Linux kernel, the following vulnerability has been resolved: net: ioam6: fix OOB and missing lock When trace-type.bit6 is set: if trace-type.bit6 ... queue = skbgettxqueuedev, skb; qdisc = rcudereferencequeue-qdisc; This code can lead to an out-of-bounds access of the dev-tx array when...

5.8AI score0.00053EPSS