CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

745 matches found

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: Firmware: qcom: scm: smc: Handle missing SCM devices The commit ca61d6836e6f “firmware: qcom: scm: fix a NULL-pointer dereference” makes it explicit that qcomscmgettzmempool may return NULL. Therefore, its users should handle thi...

5.5CVSS6.1AI score0.00176EPSS

Exploits0References1

OSV•added 2026/06/12 3:16 p.m.•3 views

UBUNTU-CVE-2026-45536

Netty is a network application framework for development of protocol servers and clients. Prior to versions 4.1.135.Final and 4.2.15.Final, nettyunixsocketrecvFd sets msgcontrol to char controlCMSGSPACEsizeofint line 940 — 24 bytes on 64-bit Linux. A peer-sent SCMRIGHTS cmsg carrying two ints has...

4CVSS5.3AI score0.00136EPSS

Exploits0References5

CVE•added 2026/06/12 2:12 p.m.•30 views

CVE-2026-45536

CVE-2026-45536 affects Netty, specifically Unix-domain socket fd reception in netty_unix_socket_recvFd. Prior to versions 4.1.135.Final and 4.2.15.Final, a peer-sent SCM_RIGHTS message containing two fds can cause both descriptors to leak due to a mismatch between cmsg_len checks and the actual f...

4CVSS5.2AI score0.00136EPSS

Exploits0References3Affected Software1

Positive Technologies•added 2026/06/08 12:0 a.m.•10 views

PT-2026-47581

netty unix socket recvFd sets msg control to char controlCMSG SPACEsizeofint line 940 — 24 bytes on 64-bit Linux. A peer-sent SCM RIGHTS cmsg carrying two ints has cmsg len = CMSG LEN8 = 24, which fits exactly with no MSG CTRUNC, so the kernel installs both fds in the receiving process. The...

4CVSS5.5AI score

Exploits0References5

Positive Technologies•added 2026/06/08 12:0 a.m.•13 views

PT-2026-47608

Name of the Vulnerable Software and Affected Versions Netty affected versions not specified Description A file descriptor leak occurs in the netty unix socket recvFd function when a peer sends two file descriptors simultaneously via an SCM RIGHTS control message. The system allocates a control...

4CVSS5.7AI score0.00136EPSS

Exploits0References27

RedhatCVE•added 2026/06/05 7:38 p.m.•6 views

CVE-2026-34295

Vulnerability in the PeopleSoft Enterprise SCM Purchasing product of Oracle PeopleSoft component: Purchasing. The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise SCM...

6.5CVSS7.3AI score0.00261EPSS

Exploits0References1

RedhatCVE•added 2026/06/05 7:28 p.m.•6 views

CVE-2026-4871

The Sports Club Management plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'before' and 'after' attributes of the scmmemberdata shortcode in all versions up to, and including, 1.12.9 due to insufficient input sanitization and output escaping. This makes it possible for...

6.4CVSS5.7AI score0.00181EPSS

Exploits0References1

Tenable Nessus•added 2026/06/03 12:0 a.m.•10 views

Linux Distros Unpatched Vulnerability : CVE-2026-45966

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: apparmor: fix NULL pointer dereference in unixneedsrevalidation When receiving file...

5.5CVSS5.4AI score0.00121EPSS

Exploits0References2

SUSE CVE•added 2026/05/28 3:55 a.m.•9 views

SUSE CVE-2026-45966

In the Linux kernel, the following vulnerability has been resolved: apparmor: fix NULL pointer dereference in unixneedsrevalidation When receiving file descriptors via SCMRIGHTS, both the socket pointer and the socket's sk pointer can be NULL during socket setup or teardown, causing NULL pointer...

5.7AI score0.00121EPSS

Exploits0References3

RedhatCVE•added 2026/05/27 11:7 p.m.•8 views

CVE-2026-45966

A flaw was found in the AppArmor security module within the Linux kernel. This vulnerability occurs when the system processes file descriptors, which are references to open files or other I/O resources, using a specific inter-process communication mechanism called SCMRIGHTS. A missing check for...

5.5CVSS5.8AI score0.00121EPSS

Exploits0References4

EUVD•added 2026/05/27 3:33 p.m.•11 views

EUVD-2026-32250

5.7AI score0.00121EPSS

Exploits0References4

NVD•added 2026/05/27 2:17 p.m.•8 views

CVE-2026-45966

5.5CVSS0.00121EPSS

Exploits0References3

Cvelist•added 2026/05/27 12:18 p.m.•36 views

CVE-2026-45966 apparmor: fix NULL pointer dereference in __unix_needs_revalidation

0.00121EPSS

Exploits0References3

CVE•added 2026/05/27 12:18 p.m.•19 views

CVE-2026-45966

CVE-2026-45966 concerns a Linux kernel/AppArmor regression. When receiving file descriptors via SCM_RIGHTS, both sock and sock->sk can be NULL, leading to NULL pointer dereferences in __unix_needs_revalidation() and a crash. The issue stems from added NULL checks in a new function without ensu...

5.5CVSS5.7AI score0.00121EPSS

Exploits0References3Affected Software1

OSV•added 2026/05/27 12:0 a.m.•4 views

UBUNTU-CVE-2026-45966

5.5CVSS5.7AI score0.00121EPSS

Exploits0References4

Positive Technologies•added 2026/05/27 12:0 a.m.•10 views

PT-2026-43833

Name of the Vulnerable Software and Affected Versions Linux kernel versions 6.17 through 6.17 Description A NULL pointer dereference occurs in the unix needs revalidation function when receiving file descriptors via SCM RIGHTS. During socket setup or teardown, both the socket pointer and the...

9.8CVSS6AI score0.96775EPSS

Exploits257References52

NVD•added 2026/05/13 9:16 p.m.•7 views

CVE-2026-21821

The HCL BigFix SCM Reporting site contains an outdated and unsupported version of the jQuery 1.x library. Since jQuery 1.x has reached end-of-life and no longer receives security updates, it may expose the application to publicly known security weaknesses and increase the risk of client-side...

8.3CVSS0.00212EPSS

Exploits0References1