CVE-2025-12993

REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2025-67968. Reason: This candidate is a reservation duplicate of CVE-2025-67968. Notes: All CVE users should reference CVE-2025-67968 instead of this candidate. All references and descriptions in this candidate have been removed to prevent...

CVE-2025-8903

REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2026-2052. Reason: This candidate is a reservation duplicate of CVE-2026-2052 Notes: All CVE users should reference CVE-2026-2052 instead of this candidate. All references and descriptions in this candidate have been removed to prevent...

MINI-P3WV-3JW7-MG88

Bulletin has no description...

MINI-H22F-Q78C-FX64

Bulletin has no description...

CGA-25VM-VH6V-C2PF

Bulletin has no description...

ECHO-623F-28B6-AF35

Bulletin has no description...

ECHO-CB76-3C98-DF85

Bulletin has no description...

ECHO-DFCD-C174-2B88

Bulletin has no description...

CVE-2026-43045

A flaw was found in the Linux kernel's mshv module. Incorrect error handling in the mshvregionpin function can lead to memory corruption. This occurs when the pinuserpagesfast operation returns a partial pin count, causing the system to use incompletely pinned memory regions. This issue can also...

ECHO-69D1-3477-1565

Bulletin has no description...

ECHO-F237-5771-3C00

Bulletin has no description...

ECHO-76F1-58CF-3AE1

Bulletin has no description...

CVE-2026-43021

A flaw was found in the Bluetooth hcisync component of the Linux kernel. When the hcicmdsyncqueueonce function fails, the associated destroy callback is not invoked, leading to memory and reference leaks. This continuous leakage of resources could eventually result in a Denial of Service DoS...

WordPress App Builder – Create Native Android & iOS Apps On The Flight plugin <= 5.6.0 - Insecure Direct Object Reference to Authenticated (Subscriber+) Arbitrary User Avatar Modification vulnerability

Insecure Direct Object Reference to Authenticated Subscriber+ Arbitrary User Avatar Modification vulnerability discovered by Ren Voza in WordPress Plugin App Builder versions = 5.6.0...

CVE-2026-43045

In the Linux kernel, the following vulnerability has been resolved: mshv: Fix error handling in mshvregionpin The current error handling has two issues: First, pinuserpagesfast can return a short pin count less than requested but greater than zero when it cannot pin all requested pages. This is...

CVE-2026-31701

In the Linux kernel, the following vulnerability has been resolved: ALSA: caiaq: take a reference on the USB device in createcard The caiaq driver stores a pointer to the parent USB device in cdev-chip.dev but never takes a reference on it. The card's privatefree callback, sndusbcaiaqcardfree, ca...

CVE-2026-43045

In the Linux kernel, the following vulnerability has been resolved: mshv: Fix error handling in mshvregionpin The current error handling has two issues: First, pinuserpagesfast can return a short pin count less than requested but greater than zero when it cannot pin all requested pages. This is...

CVE-2026-43045

CVE-2026-43045 concerns the Linux kernel mshv module, where the vulnerability stems from incorrect error handling in mshv_region_pin. The issue allows memory corruption due to pin_user_pages_fast() sometimes returning a short pin count (less than requested but &gt;0) and being treated as success,...

EUVD-2026-26644

In the Linux kernel, the following vulnerability has been resolved: mshv: Fix error handling in mshvregionpin The current error handling has two issues: First, pinuserpagesfast can return a short pin count less than requested but greater than zero when it cannot pin all requested pages. This is...

CVE-2026-31769

In the Linux kernel, the following vulnerability has been resolved: gpib: fix use-after-free in IO ioctl handlers The IBRD, IBWRT, IBCMD, and IBWAIT ioctl handlers use a gpibdescriptor pointer after board-biggpibmutex has been released. A concurrent IBCLOSEDEV ioctl can free the descriptor via...