CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

SUSE CVE•added 2026/06/09 2:20 a.m.•7 views

SUSE CVE-2026-46305

In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: osdep: avoid NULL pointer dereference in rtwcbufalloc The return value of kzallocflex is used without ensuring that the allocation succeeded, and the pointer is dereferenced unconditionally. Guard the access t...

5.5CVSS5.4AI score0.00145EPSS

RedhatCVE•added 2026/06/08 6:47 p.m.•10 views

CVE-2026-46305

A flaw was found in the Linux kernel, specifically within the rtl8723bs staging driver's osdep module. The rtwcbufalloc function does not properly validate the return value of a memory allocation, leading to an unconditional dereference of a potentially NULL pointer. This vulnerability could allo...

NVD•added 2026/06/08 5:16 p.m.•17 views

CVE-2026-46305

0.00145EPSS

OSV•added 2026/06/08 5:16 p.m.•5 views

UBUNTU-CVE-2026-46305

5.3AI score0.00145EPSS

Exploits0References5

ATTACKERKB•added 2026/06/08 3:46 p.m.•5 views

CVE-2026-46305

Exploits0References3Affected Software1

Cvelist•added 2026/06/08 3:46 p.m.•48 views

CVE-2026-46305 staging: rtl8723bs: os_dep: avoid NULL pointer dereference in rtw_cbuf_alloc

0.00145EPSS

CVE•added 2026/06/08 3:46 p.m.•18 views

CVE-2026-46305

The CVE relates to the Linux kernel staging area, specifically rtl8723bs os_dep code in rtw_cbuf_alloc. The bug occurs when kzalloc_flex() allocation fails and the code dereferences the resulting pointer unconditionally, leading to a NULL pointer dereference. The patch adds a guard to the allocat...

EUVD•added 2026/06/08 3:46 p.m.•7 views

EUVD-2026-35170

CNNVD•added 2026/06/08 12:0 a.m.•5 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from a null pointer dereferencing in the rtwcbufalloc function within the staging rtl8723bs driver. Th...

5.3AI score0.00145EPSS

Positive Technologies•added 2026/06/08 12:0 a.m.•9 views

PT-2026-47376

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A NULL pointer dereference exists in the rtw cbuf alloc function within the rtl8723bs staging driver. The issue occurs because the return value of kzalloc flex is used without verifying ...

9.1CVSS5.3AI score0.00457EPSS

Exploits1References61

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: drivers: staging: rtl8723bs: Fixed locking issues in rtwjointimeouthandler. The commit number 041879b12ddb states: “drivers: staging: rtl8192bs: Fixed deadlock in rtwjoinbsseventprehandle. In addition, rtwjointimeouthandler wa...

5.5CVSS5.8AI score0.0011EPSS

Tenable Nessus•added 2026/05/20 12:0 a.m.•3 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-021560)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-021560 advisory. In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: fix a potential memory leak in rtwinitcmdpriv In rtwinitcmdpriv, if...

5.5CVSS6AI score0.00143EPSS

SUSE CVE•added 2026/05/13 3:34 a.m.•7 views

SUSE CVE-2026-43387

In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: properly validate the data in rtwgetieex Just like in commit 154828bf9559 "staging: rtl8723bs: fix out-of-bounds read in rtwgetie parser", we don't trust the data in the frame so we should check the length...

5.8AI score0.00123EPSS

SUSE CVE•added 2026/05/11 2:13 p.m.•5 views

SUSE CVE-2026-43386

In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: fix potential out-of-bounds read in rtwrestructwmmie The current code checks 'i + 5 inlen' at the end of the if statement. However, it accesses 'iniei + 5' before that check, which can lead to an out-of-bounds...

5.8AI score0.00126EPSS

SUSE CVE•added 2026/05/09 2:41 a.m.•5 views

SUSE CVE-2026-43159

In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: fix null dereference in findnetwork The variable pwlan has the possibility of being NULL when passed into rtwfreenetworknolock which would later dereference the variable...

5.5CVSS5.7AI score0.00128EPSS

RedhatCVE•added 2026/05/08 9:37 p.m.•9 views

CVE-2026-43387

A flaw was found in the Linux kernel's rtl8723bs Wi-Fi driver. This memory corruption vulnerability, specifically an out-of-bounds read, occurs because the driver does not properly validate the length of data in received network frames within the rtwgetieex function. A remote attacker could explo...

5.5CVSS5.8AI score0.00123EPSS

RedhatCVE•added 2026/05/08 9:37 p.m.•10 views

CVE-2026-43386

A flaw was found in the Linux kernel's rtl8723bs component. An incorrect length check within the rtwrestructwmmie function can lead to an out-of-bounds read. This vulnerability occurs because the code attempts to access memory beyond the allocated buffer before verifying the index is within bound...

7.1CVSS5.9AI score0.00126EPSS