CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

21460 matches found

ATTACKERKB•added 2026/05/08 2:22 p.m.•5 views

CVE-2026-43464

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: RX, Fix XDP multi-buf frag counting for legacy RQ XDP multi-buf programs can modify the layout of the XDP buffer when the program calls bpfxdppulldata or bpfxdpadjusttail. The referenced commit in the fixes tag correct...

7.5CVSS5.9AI score0.00082EPSS

Exploits0References4Affected Software1

Cvelist•added 2026/05/08 2:22 p.m.•30 views

CVE-2026-43458 serial: caif: hold tty->link reference in ldisc_open and ser_release

In the Linux kernel, the following vulnerability has been resolved: serial: caif: hold tty-link reference in ldiscopen and serrelease A reproducer triggers a KASAN slab-use-after-free in ptywriteroom when caifserial's TX path calls ttywriteroom. The faulting access is on tty-link-port. Hold an...

0.00015EPSS

Exploits0References8

Debian CVE•added 2026/05/08 2:22 p.m.•5 views

CVE-2026-43458

7.8CVSS5.7AI score0.00015EPSS

Exploits0

ATTACKERKB•added 2026/05/08 2:22 p.m.•4 views

CVE-2026-43458

5.7AI score0.00015EPSS

Exploits0References9Affected Software1

Cvelist•added 2026/05/08 2:21 p.m.•27 views

CVE-2026-43414 scsi: qla2xxx: Completely fix fcport double free

In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Completely fix fcport double free In qla24xxelsdcmdiocb sp-free is set to qla2x00elsdcmdspfree. When an error happens, this function is called by qla2x00sprelease, when krefput releases the first and the last...

9.8CVSS0.00061EPSS

Exploits0References2

CVE•added 2026/05/08 2:21 p.m.•8 views

CVE-2026-43399

CVE-2026-43399 affects the Linux kernel amdgpu driver: a reference leak in amdgpu_userq_wait_ioctl occurs when an ioctl is aborted because the output array is too small. The fix drops references to syncobj and timeline fence during abort, and is cherry-picked from commit 68951e9c3e6bb22396bc42ef2...

5.5CVSS5.8AI score0.00015EPSS

Exploits0References3Affected Software1

Debian CVE•added 2026/05/08 2:21 p.m.•7 views

CVE-2026-43399

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/userq: Fix reference leak in amdgpuuserqwaitioctl Drop reference to syncobj and timeline fence when aborting the ioctl due output array being too small. cherry picked from commit 68951e9c3e6bb22396bc42ef2359751c8315dd2...

5.5CVSS5.7AI score0.00015EPSS

Exploits0

Cvelist•added 2026/05/08 2:21 p.m.•28 views

CVE-2026-43399 drm/amdgpu/userq: Fix reference leak in amdgpu_userq_wait_ioctl

0.00015EPSS

Exploits0References3

CVE•added 2026/05/08 2:21 p.m.•11 views

CVE-2026-43396

In the Linux kernel, the vulnerability CVE-2026-43396 is in the drm/xe/sync path. When dma_fence_chain_alloc() fails, the user fence reference is not released, causing a memory leak. Documented across multiple sources (Red Hat, SUSE, Ubuntu, Debian OSV entries, and NVD), the issue is fixed by the...

5.5CVSS5.8AI score0.00015EPSS

Exploits0References3Affected Software1

Cvelist•added 2026/05/08 2:21 p.m.•30 views

CVE-2026-43395 drm/xe/sync: Cleanup partially initialized sync on parse failure

In the Linux kernel, the following vulnerability has been resolved: drm/xe/sync: Cleanup partially initialized sync on parse failure xesyncentryparse can allocate references syncobj, fence, chain fence, or user fence before hitting a later failure path. Several of those paths returned directly,...

0.00015EPSS

Exploits0References4

CVE•added 2026/05/08 2:21 p.m.•9 views

CVE-2026-43394

CVE-2026-43394 (Linux kernel) : A local credential reference leak in nfsd_nl_listener_set_doit() occurs because get_current_cred() is used without a corresponding put_cred(). The function runs in process context during sendmsg(), and current->cred remains valid, so the extra refcount is unnece...

5.5CVSS5.8AI score0.00015EPSS

Exploits0References4Affected Software1

CVE•added 2026/05/08 2:21 p.m.•8 views

CVE-2026-43375

CVE-2026-43375 concerns the Linux kernel in the MCTP path. A leak occurs during probe failures because the driver saves a reference to the USB device but fails to release it on error paths. The fix drops the redundant device reference to prevent memory leaks when the probe fails, simplifying driv...

5.5CVSS5.8AI score0.00015EPSS

Exploits0References3Affected Software1

CVE•added 2026/05/08 2:21 p.m.•10 views

CVE-2026-43355

CVE-2026-43355 affects the Linux kernel bh1780 light sensor driver (iio: light). The root cause is a PM runtime reference-count leak: pm_runtime_put_autosuspend() was not guaranteed to run after pm_runtime_get_sync() if the read operation failed. The fixed response moves the autosuspend call befo...

5.5CVSS5.8AI score0.00015EPSS

Exploits0References6Affected Software1

NVD•added 2026/05/08 2:16 p.m.•4 views

CVE-2026-43343

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fsubset: Fix unbalanced refcnt in gethfree gethalloc increments the reference count, but gethfree fails to decrement it. This prevents the configuration of attributes via configfs after unlinking the function...

5.5CVSS0.00015EPSS

Exploits0References8

UbuntuCve•added 2026/05/08 2:16 p.m.•5 views

CVE-2026-43301

In the Linux kernel, the following vulnerability has been resolved: media: chips-media: wave5: Fix PM runtime usage count underflow Replace pmruntimeputsync with pmruntimedontuseautosuspend in the remove path to properly pair with pmruntimeuseautosuspend from probe. This allows pmruntimedisable t...

5.5CVSS5.7AI score0.00015EPSS

Exploits0References5

UbuntuCve•added 2026/05/08 2:16 p.m.•5 views

CVE-2026-43308

In the Linux kernel, the following vulnerability has been resolved: btrfs: don't BUG on unexpected delayed ref type in runonedelayedref There is no need to BUG, we can just return an error and log an error message...

5.5CVSS5.8AI score0.00017EPSS

Exploits0References4