Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

81888 matches found

Debian CVE
Debian CVEadded 2026/05/06 11:28 a.m.6 views

CVE-2026-43213

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: pci: validate sequence number of TX release report Hardware rarely reports abnormal sequence number in TX release report, which will access out-of-bounds of wdring-pages array, causing NULL pointer dereference. BUG:...

7.5CVSS5.7AI score0.00022EPSS
Exploits0
Cvelist
Cvelistadded 2026/05/06 11:28 a.m.27 views

CVE-2026-43213 wifi: rtw89: pci: validate sequence number of TX release report

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: pci: validate sequence number of TX release report Hardware rarely reports abnormal sequence number in TX release report, which will access out-of-bounds of wdring-pages array, causing NULL pointer dereference. BUG:...

7.5CVSS0.00022EPSS
Exploits0References3
Cvelist
Cvelistadded 2026/05/06 11:27 a.m.26 views

CVE-2026-43176 wifi: rtw89: pci: validate release report content before using for RTL8922DE

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: pci: validate release report content before using for RTL8922DE The commit 957eda596c76 "wifi: rtw89: pci: validate sequence number of TX release report" does validation on existing chips, which somehow a release...

8.8CVSS0.00028EPSS
Exploits0References3
Debian CVE
Debian CVEadded 2026/05/06 11:27 a.m.2 views

CVE-2026-43176

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: pci: validate release report content before using for RTL8922DE The commit 957eda596c76 "wifi: rtw89: pci: validate sequence number of TX release report" does validation on existing chips, which somehow a release...

8.8CVSS5.7AI score0.00028EPSS
Exploits0
CVE
CVEadded 2026/05/06 11:27 a.m.4 views

CVE-2026-43176

The CVE-2026-43176 entry refers to a vulnerability in the Linux kernel’s rtw89 WiFi driver (PCI path) affecting RTL8922DE where release report content was not properly validated. This could cause a crash (DoS) when handling a malformed TX release report. The root cause is insufficient validation ...

8.8CVSS5.8AI score0.00028EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/05/06 11:27 a.m.6 views

CVE-2026-43176

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: pci: validate release report content before using for RTL8922DE The commit 957eda596c76 "wifi: rtw89: pci: validate sequence number of TX release report" does validation on existing chips, which somehow a release...

5.8AI score0.00028EPSS
Exploits0References4Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/05/06 11:27 a.m.6 views

CVE-2026-43140

In the Linux kernel, the following vulnerability has been resolved: HID: magicmouse: Do not crash on missing msc-input Fake USB devices can send their own report descriptors for which the inputmapping hook does not get called. In this case, msc-input stays NULL, leading to a crash at a later time...

5.7AI score0.00015EPSS
Exploits0References9Affected Software1
Debian CVE
Debian CVEadded 2026/05/06 11:27 a.m.2 views

CVE-2026-43136

In the Linux kernel, the following vulnerability has been resolved: HID: logitech-hidpp: Check maxfield in hidppgetreportlength Do not crash when a report has no fields. Fake USB gadgets can send their own HID report descriptors and can define report structures without valid fields. This can be...

5.5CVSS5.7AI score0.00015EPSS
Exploits0
ATTACKERKB
ATTACKERKBadded 2026/05/06 11:27 a.m.6 views

CVE-2026-43136

In the Linux kernel, the following vulnerability has been resolved: HID: logitech-hidpp: Check maxfield in hidppgetreportlength Do not crash when a report has no fields. Fake USB gadgets can send their own HID report descriptors and can define report structures without valid fields. This can be...

5.7AI score0.00015EPSS
Exploits0References9Affected Software1
Cvelist
Cvelistadded 2026/05/06 11:27 a.m.23 views

CVE-2026-43136 HID: logitech-hidpp: Check maxfield in hidpp_get_report_length()

In the Linux kernel, the following vulnerability has been resolved: HID: logitech-hidpp: Check maxfield in hidppgetreportlength Do not crash when a report has no fields. Fake USB gadgets can send their own HID report descriptors and can define report structures without valid fields. This can be...

0.00015EPSS
Exploits0References8
CVE
CVEadded 2026/05/06 11:27 a.m.4 views

CVE-2026-43136

The CVE-2026-43136 issue affects the Linux kernel HID subsystem (logitech-hidpp) where fake USB devices could craft HID report descriptors without valid fields, potentially crashing the kernel over USB. The root cause is a missing validation in hidpp_get_report_length() that allowed reports with ...

5.5CVSS5.7AI score0.00015EPSS
Exploits0References8Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/05/06 7:40 a.m.3 views

CVE-2026-43111

In the Linux kernel, the following vulnerability has been resolved: HID: roccat: fix use-after-free in roccatreportevent roccatreportevent iterates over the device-readers list without holding the readerslock. This allows a concurrent roccatrelease to remove and free a reader while it's still bei...

5.7AI score0.00015EPSS
Exploits0References6Affected Software1
Cvelist
Cvelistadded 2026/05/06 7:40 a.m.24 views

CVE-2026-43111 HID: roccat: fix use-after-free in roccat_report_event

In the Linux kernel, the following vulnerability has been resolved: HID: roccat: fix use-after-free in roccatreportevent roccatreportevent iterates over the device-readers list without holding the readerslock. This allows a concurrent roccatrelease to remove and free a reader while it's still bei...

7.8CVSS0.00015EPSS
Exploits0References8
CVE
CVEadded 2026/05/06 7:40 a.m.6 views

CVE-2026-43111

CVE-2026-43111 describes a use-after-free in the Linux kernel HID roccat driver. The function roccat_report_event() traverses the device->readers list without holding the readers_lock mutex, allowing a concurrent roccat_release() to remove and free a reader still in use. The consequence is a u...

7.8CVSS5.8AI score0.00015EPSS
Exploits0References8Affected Software1
Debian CVE
Debian CVEadded 2026/05/06 7:40 a.m.2 views

CVE-2026-43111

In the Linux kernel, the following vulnerability has been resolved: HID: roccat: fix use-after-free in roccatreportevent roccatreportevent iterates over the device-readers list without holding the readerslock. This allows a concurrent roccatrelease to remove and free a reader while it's still bei...

7.8CVSS5.7AI score0.00015EPSS
Exploits0
GithubExploit
GithubExploitadded 2026/05/06 6:12 a.m.57 views

Exploit for Time-of-check Time-of-use (TOCTOU) Race Condition in Packagekit_Project Packagekit

CVE-2026-41651 — Pack2TheRoot Analysis PackageKit Local P...

8.8CVSS5.8AI score0.00153EPSS
Exploits10
Positive Technologies
Positive Technologiesadded 2026/05/06 12:0 a.m.4 views

PT-2026-37476

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the hidpp get report length function within the logitech-hidpp module. The system fails to properly check the maxfield variable when a report contains no fields. This...

5.5CVSS5.4AI score0.00015EPSS
Exploits0References18
Positive Technologies
Positive Technologiesadded 2026/05/06 12:0 a.m.7 views

PT-2026-37516

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the rtw89 Wi-Fi driver for the RTL8922DE chip. The system fails to properly validate the content of the TX release report, which can lead to a kernel crash if a malforme...

8.8CVSS5.8AI score0.00028EPSS
Exploits0References13
Positive Technologies
Positive Technologiesadded 2026/05/06 12:0 a.m.4 views

PT-2026-37984

A memory corruption vulnerability was addressed with improved locking. This issue is fixed in iOS 17.1.2 and iPadOS 17.1.2, macOS Sonoma 14.1.2, Safari 17.1.2. Processing web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been exploited against...

8.8CVSS7.6AI score0.00089EPSS
Exploits0References22
Positive Technologies
Positive Technologiesadded 2026/05/06 12:0 a.m.6 views

PT-2026-37553

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the rtw89 PCI Wi-Fi driver where the kernel fails to validate the sequence number of the TX release report. If the hardware reports an abnormal sequence number, it lea...

7.5CVSS5.8AI score0.00022EPSS
Exploits0References15
Rows per page
Query Builder