CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

486 matches found

EUVD-2026-33434

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.26.0, FreeRDP's RDPEAR NDR parser accepts one non-null NDR pointer ref-id for multiple logical pointer fields without tracking the pointed object's expected NDR type or ownership. When the same ref-id is reused across two...

7.5CVSS5.8AI score0.00046EPSS

Exploits1References1

ATTACKERKB•added 6 days ago•6 views

CVE-2026-44422

7.5CVSS5.8AI score0.00046EPSS

Exploits1References2Affected Software1

CVE•added 6 days ago•12 views

CVE-2026-44422

CVE-2026-44422 affects FreeRDP prior to 3.26.0. The RDPEAR NDR parser incorrectly reused a non-null NDR pointer ref-id across multiple logical pointer fields, causing the same heap object to be assigned to two outputs. The destructor then frees both pointers, enabling a heap use-after-free / doub...

8.8CVSS5.8AI score0.00046EPSS

Exploits1References1Affected Software1

Cvelist•added 6 days ago•26 views

CVE-2026-44422 FreeRDP RDPEAR NDR ref-id aliasing causes client-side UAF/double-free and type confusion

7.5CVSS0.00046EPSS

Exploits1References1

Tenable Nessus•added 6 days ago•6 views

Linux Distros Unpatched Vulnerability : CVE-2026-45880

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: PCI/P2PDMA: Release per-CPU pgmap ref when vminsertpage fails When vminsertpage fails in...

5.7AI score0.00024EPSS

Exploits0References2

OSV•added 2026/05/28 10:16 a.m.•3 views

UBUNTU-CVE-2026-46223

In the Linux kernel, the following vulnerability has been resolved: cgroup: Defer css percpuref kill on rmdir until cgroup is depopulated A chain of commits going back to v7.0 reworked rmdir to satisfy the controller invariant that a subsystem's -cssoffline must not run while tasks are still doin...

5.7AI score0.00024EPSS

Exploits0References5

SUSE CVE•added 2026/05/28 3:55 a.m.•5 views

SUSE CVE-2026-45974

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix invalid leaf access in btrfsquotaenable if ref key not found If btrfssearchslotforread returns 1, it means we did not find any key greater than or equals to the key we asked for, meaning we have reached the end of the...

5.8AI score0.00032EPSS

Exploits0References3

NVD•added 2026/05/27 7:16 p.m.•5 views

CVE-2026-8716

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 12.7 before 18.10.7, 18.11 before 18.11.4, and 19.0 before 19.0.1 that under certain conditions could have allowed an authenticated user to access CI data from a different ref type than intended...

4.3CVSS0.00027EPSS

Exploits0References2

OSV•added 2026/05/27 7:16 p.m.•2 views

UBUNTU-CVE-2026-8716

4.3CVSS5.8AI score0.00027EPSS

Exploits0References4

CVE•added 2026/05/27 5:54 p.m.•65 views

CVE-2026-8716

CVE-2026-8716 affects GitLab CE/EE with versions 12.7–before 18.10.7, 18.11–before 18.11.4, and 19.0–before 19.0.1. An authenticated user could have accessed CI data from a different ref type than intended under certain conditions. The issue has been remediated via patch releases: GitLab 18.10.7,...

4.3CVSS5.8AI score0.00027EPSS

Exploits0References2Affected Software1

ATTACKERKB•added 2026/05/27 5:54 p.m.•4 views

CVE-2026-8716

4.3CVSS5.8AI score0.00027EPSS

Exploits0References3Affected Software1

EUVD•added 2026/05/27 3:33 p.m.•4 views

EUVD-2026-32346

In the Linux kernel, the following vulnerability has been resolved: PCI/P2PDMA: Release per-CPU pgmap ref when vminsertpage fails When vminsertpage fails in p2pmemallocmmap, p2pmemallocmmap doesn't invoke percpurefput to free the per-CPU ref of pgmap acquired after genpoolallocowner, and...

5.8AI score0.00024EPSS

Exploits0References6

NVD•added 2026/05/27 2:17 p.m.•3 views

CVE-2026-45974

0.00032EPSS

Exploits0References8

NVD•added 2026/05/27 2:17 p.m.•6 views

CVE-2026-45955

In the Linux kernel, the following vulnerability has been resolved: md/md-llbitmap: fix percpuref not resurrected on suspend timeout When llbitmapsuspendtimeout times out waiting for percpuref to become zero, it returns -ETIMEDOUT without resurrecting the percpuref. The caller mdllbitmapdaemonfn...

0.00022EPSS

Exploits0References3

OSV•added 2026/05/27 2:17 p.m.•2 views

UBUNTU-CVE-2026-45955

5.7AI score0.00022EPSS

Exploits0References3

OSV•added 2026/05/27 2:17 p.m.•1 views

UBUNTU-CVE-2026-46099

In the Linux kernel, the following vulnerability has been resolved: net: ipv6: fix NOREF dst use in seg6 and rpl lwtunnels seg6inputcore and rplinput call ip6routeinput which sets a NOREF dst on the skb, then pass it to dstcachesetip6 invoking dsthold unconditionally. On PREEMPTRT, ksoftirqd is...

8.1CVSS5.7AI score0.00072EPSS

Exploits0References3

Cvelist•added 2026/05/27 12:18 p.m.•28 views

CVE-2026-45974 btrfs: fix invalid leaf access in btrfs_quota_enable() if ref key not found

0.00032EPSS

Exploits0References8

CVE•added 2026/05/27 12:18 p.m.•11 views

CVE-2026-45974

CVE-2026-45974 affects the Linux kernel’s Btrfs quota code. The issue is an invalid leaf access in btrfs_quota_enable() when a ref key is not found. If btrfs_search_slot_for_read() returns 1, it indicates no key >= the requested key, i.e., end of the tree, making the path invalid. The correcte...

5.8AI score0.00032EPSS

Exploits0References8