CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

44 matches found

AstraLinux•added 2026/06/19 11:10 a.m.•2 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: net/sched: schqfq: Fixed a null dereference in aggdequeue. To prevent a potential crash in aggdequeue when cl-qdisc-ops-peekcl-qdisc returns NULL, we check the returned value before using it, similar to the existing approach in...

5.8AI score0.00188EPSS

Exploits0References1

Tenable Nessus•added 2026/04/17 12:0 a.m.•7 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007585)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007585 advisory. In the Linux kernel, the following vulnerability has been resolved: net/sched: schqfq: Fix null-deref in aggdequeue To prevent a potential crash in aggdequeue...

5.9AI score0.00188EPSS

Exploits0References4

Tenable Nessus•added 2026/04/08 12:0 a.m.•2 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006745)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006745 advisory. In the Linux kernel, the following vulnerability has been resolved: net/sched: schqfq: Fix NULL deref when deactivating inactive aggregate in qfqreset...

5.5CVSS5.8AI score0.00118EPSS

Exploits0References4

Tenable Nessus•added 2026/03/23 12:0 a.m.•3 views

Siemens SIMATIC S7-1500 Sensitive Cookie Without 'HttpOnly' Flag (CVE-2025-38477)

In the Linux kernel, the following vulnerability has been resolved: net/sched: schqfq: Fix race condition on qfqaggregate A race condition can occur when 'agg' is modified in qfqchangeagg called during qfqenqueue while other threads access it concurrently. For example, qfqdumpclass may trigger a...

4.7CVSS6.1AI score0.00111EPSS

Exploits0References2

SUSE Linux•added 2026/02/12 11:25 a.m.•4 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP6 kernel was updated to fix various security issues The following security issues were fixed: CVE-2025-40257: mptcp: fix a race in mptcppmdeladdtimer bsc1254842. CVE-2025-40259: scsi: sg: Do not sleep in atomic context bsc1254845. CVE-2025-68284: libceph: prevent...

8.7CVSS7.7AI score0.00299EPSS

Exploits2References206

Tenable Nessus•added 2026/02/03 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2026-22976

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net/sched: schqfq: Fix NULL deref when deactivating inactive aggregate in qfqreset qfqclass-leafqdisc-q.qlen 0 does not imply that the class itself is active. T...

5.5CVSS5.7AI score0.00118EPSS

Exploits0References3

Redos•added 2026/02/03 12:0 a.m.•5 views

ROS-20260203-73-0012

A vulnerability in the net/sched/schqfq.c component of the Linux operating system kernel is related to insufficient state checking of a shared resource. Exploitation of the vulnerability could allow an attacker to affect data integrity...

7.8CVSS5.5AI score0.00176EPSS

Exploits0

SUSE CVE•added 2026/01/26 12:24 a.m.•5 views

SUSE CVE-2026-22999

In the Linux kernel, the following vulnerability has been resolved: net/sched: schqfq: do not free existing class in qfqchangeclass Fixes qfqchangeclass error case. cl-qdisc and cl should only be freed if a new class and qdisc were allocated, or we risk various UAF...

7CVSS5.2AI score0.00204EPSS

Exploits0References125

OSV•added 2026/01/25 3:15 p.m.•7 views

AZL-78485 CVE-2026-22999 affecting package kernel for versions less than 5.15.200.1-1

7.8CVSS5.8AI score0.00204EPSS

Exploits0References1

Cvelist•added 2026/01/25 2:36 p.m.•27 views

CVE-2026-22999 net/sched: sch_qfq: do not free existing class in qfq_change_class()

7.8CVSS0.00204EPSS

Exploits0References7

EUVD•added 2026/01/25 2:36 p.m.•1 views

EUVD-2026-4624

5.2AI score0.00204EPSS

Exploits0References4

OSV•added 2026/01/25 2:36 p.m.•5 views

CVE-2026-22999 net/sched: sch_qfq: do not free existing class in qfq_change_class()

7.8CVSS5.2AI score0.00204EPSS

Exploits0References10

OSV•added 2026/01/21 7:16 a.m.•7 views

AZL-78446 CVE-2026-22976 affecting package kernel for versions less than 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: net/sched: schqfq: Fix NULL deref when deactivating inactive aggregate in qfqreset qfqclass-leafqdisc-q.qlen 0 does not imply that the class itself is active. Two qfqclass objects may point to the same leafqdisc. This happens whe...

5.5CVSS5.8AI score0.00118EPSS

Exploits0References1

OSV•added 2026/01/21 7:16 a.m.•4 views

UBUNTU-CVE-2026-22976

5.5CVSS5.7AI score0.00118EPSS

Exploits0References28

Amazon•added 2026/01/05 12:0 a.m.•9 views

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: reject duplicate device on updates CVE-2025-38678 In the Linux kernel, the following vulnerability has been resolved: mm/ksm: fix flag-dropping behavior in ksmmadvise CVE-2025-40040 In the Lin...

5.5CVSS6.5AI score0.00544EPSS

Exploits3

SUSE CVE•added 2025/10/30 12:24 a.m.•2 views

SUSE CVE-2025-40083

In the Linux kernel, the following vulnerability has been resolved: net/sched: schqfq: Fix null-deref in aggdequeue To prevent a potential crash in aggdequeue net/sched/schqfq.c when cl-qdisc-ops-peekcl-qdisc returns NULL, we check the return value before using it, similar to the existing approac...

5.5CVSS6.7AI score0.00188EPSS

Exploits0References21

EUVD•added 2025/10/29 3:31 p.m.•5 views

EUVD-2025-36665

6.2AI score0.00188EPSS

Exploits0References2

OSV•added 2025/10/29 2:15 p.m.•6 views

AZL-69027 CVE-2025-40083 affecting package kernel for versions less than 6.6.117.1-1

5.7AI score0.00188EPSS

Exploits0References1

OSV•added 2025/10/29 2:15 p.m.•3 views

UBUNTU-CVE-2025-40083