Lucene search
K

21925 matches found

Cvelist
Cvelist
added 2026/04/22 1:53 p.m.28 views

CVE-2026-31469 virtio_net: Fix UAF on dst_ops when IFF_XMIT_DST_RELEASE is cleared and napi_tx is false

In the Linux kernel, the following vulnerability has been resolved: virtionet: Fix UAF on dstops when IFFXMITDSTRELEASE is cleared and napitx is false A UAF issue occurs when the virtionet driver is configured with napitx=N and the device's IFFXMITDSTRELEASE flag is cleared e.g., during the...

7.8CVSS0.00129EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2026/04/22 1:25 p.m.4 views

CVE-2026-5750

An insecure direct object reference IDOR vulnerability in the Fullstep V5 registration process allows authenticated users to access data belonging to other registered users through various vulnerable authenticated resources in the application. The vulnerable endpoints result from:...

7.6CVSS5.8AI score0.00207EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/04/22 1:25 p.m.27 views

CVE-2026-5750 Insecure direct object reference (IDOR) vulnerability in Fullstep

An insecure direct object reference IDOR vulnerability in the Fullstep V5 registration process allows authenticated users to access data belonging to other registered users through various vulnerable authenticated resources in the application. The vulnerable endpoints result from:...

7.6CVSS0.00207EPSS
Exploits0References1
CVE
CVE
added 2026/04/22 1:25 p.m.12 views

CVE-2026-5750

CVE-2026-5750 describes an IDOR vulnerability in the Fullstep V5 registration flow. Authenticated users can access data belonging to other registered users via vulnerable endpoints, notably “/api/suppliers/v1/suppliers//false” (listing user information) and “/#/supplier-registration/supplier-regi...

7.6CVSS5.8AI score0.00207EPSS
Exploits0References1
Circl
Circl
added 2026/04/22 12:50 p.m.4 views

CVE-2025-6016

creationtimestamp| type| source ---|---|--- 2026-04-22 12:50:07+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mk3jwdl7pl2u 2026-04-24 07:57:51+00:00| seen| https://ccb.belgium.be/advisories/warning-11-new-vulnerabilities-gitlab-ce-and-ee-editions-patch-immediately...

6.5CVSS4.8AI score0.00402EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/04/22 8:19 a.m.7 views

kernel: Linux kernel: Denial of Service via unsafe requeue in rxrpc_recvmsg

A flaw was found in the Linux kernel. A local unprivileged process can exploit an unsafe requeue path in the rxrpcrecvmsg function by using AFRXRPC sockets with MSGDONTWAIT and MSGPEEK flags. This improper handling of the receive message queue can lead to memory corruption, such as Use-After-Free...

7.8CVSS5.7AI score0.00129EPSS
Exploits0References5
OSV
OSV
added 2026/04/22 3:1 a.m.5 views

MINI-FXVM-H6RF-J2H6

Bulletin has no description...

9CVSS5.6AI score0.00658EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2026/04/22 12:32 a.m.9 views

kernel: smc: Fix use-after-free in __pnet_find_base_ndev()

In the Linux kernel, the following vulnerability has been resolved: smc: Fix use-after-free in pnetfindbasendev. syzbot reported use-after-free of netdevice in pnetfindbasendev, which was called during connect. 0 smcpnetfindismresource fetches skdstgetsk-dev and passes down to pnetfindbasendev,...

5.6AI score0.0017EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/04/22 12:0 a.m.5 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013567)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013567 advisory. In the Linux kernel, the following vulnerability has been resolved: nfc: Fix potential resource leaks nfcgetdevice take reference for the device, add missing...

5.6AI score0.00216EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/04/22 12:0 a.m.10 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from improper handling of error paths. This vulnerability may lead to an imbalance in reference counts...

7.8CVSS5.8AI score0.0012EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/04/22 12:0 a.m.7 views

AlmaLinux 9 : kernel (ALSA-2026:8921)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:8921 advisory. kernel: net/sched: Make cakeenqueue return NETXMITCN when past bufferlimit CVE-2025-39766 kernel: scsi: qla2xxx: Fix improper freeing of purex item...

7.8CVSS6.5AI score0.00171EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/22 12:0 a.m.4 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013657)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013657 advisory. In the Linux kernel, the following vulnerability has been resolved: perf/x86/intel/uncore: Fix reference count leak in snruncoremmiomap pcigetdevice will increase th...

5.5AI score0.00168EPSS
Exploits0References4
OSV
OSV
added 2026/04/22 12:0 a.m.5 views

UBUNTU-CVE-2026-40250

OpenEXR provides the specification and reference implementation of the...

8.4CVSS5.3AI score0.0045EPSS
Exploits0References2
OSV
OSV
added 2026/04/22 12:0 a.m.3 views

UBUNTU-CVE-2026-39886

OpenEXR provides the specification and reference implementation of the...

5.3CVSS5.2AI score0.00302EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.7 views

PT-2026-34607

Name of the Vulnerable Software and Affected Versions OpenMcdf affected versions not specified Description OpenMcdf fails to detect cycles in the directory entry red-black tree of a Compound File Binary CFB document. A crafted CFB file containing a cycle in the LeftSiblingID or RightSiblingID cha...

6.2CVSS5.9AI score0.00187EPSS
Exploits1References13
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.8 views

PT-2026-34333

An insecure direct object reference IDOR vulnerability in the Fullstep V5 registration process allows authenticated users to access data belonging to other registered users through various vulnerable authenticated resources in the application. The vulnerable endpoints result from:...

7.6CVSS5.8AI score0.00207EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/04/22 12:0 a.m.4 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013795)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013795 advisory. In the Linux kernel, the following vulnerability has been resolved: hwrng: geode - Fix PCI device refcount leak foreachpcidev is implemented by pcigetdevice. The...

5.6AI score0.00233EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/22 12:0 a.m.1 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013500)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013500 advisory. In the Linux kernel, the following vulnerability has been resolved: btrfs: always report error in runonedelayedref Currently we have a btrfsdebug for runonedelayedre...

7.8CVSS5.9AI score0.00182EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/22 12:0 a.m.3 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013549)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013549 advisory. In the Linux kernel, the following vulnerability has been resolved: hwrng: amd - Fix PCI device refcount leak foreachpcidev is implemented by pcigetdevice. The comme...

5.9AI score0.00204EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/22 12:0 a.m.4 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013825)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013825 advisory. In the Linux kernel, the following vulnerability has been resolved: clk: ti: dra7-atl: Fix reference leak in ofdra7atlclkprobe pmruntimegetsync will increment pm usa...

5.5AI score0.00199EPSS
Exploits0References4
Rows per page
Query Builder