CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

AstraLinux•added 5 days ago•4 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: pfifotailenqueue: Drop a new packet when sch-limit == 0. Expected behavior: If the scheduler’s limit is reached, pfifotailenqueue will drop a packet from the scheduler’s queue and decrease the scheduler’s qlen by one. Then,...

7.8CVSS6.2AI score0.0025EPSS

AstraLinux•added 5 days ago•4 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: bpf: Fixed out-of-bounds access in cgroup local storage Lonial reported that an out-of-bounds access in cgroup local storage can occur through tail calls. This occurs when two programs each utilize a cgroup local storage with a...

7.1CVSS6.8AI score0.00146EPSS

RedHat Linux•added 2026/06/17 6:53 a.m.•4 views

kernel: mm/page_alloc: clear page->private in free_pages_prepare()

A flaw was found in the Linux kernel's memory management subsystem. When pages are freed, the page-private field is not properly cleared. If these pages are later reallocated as high-order pages and split, the tail pages can retain stale page-private values. This can lead to a use-after-free...

7.8CVSS5.4AI score0.0013EPSS

SUSE CVE•added 2026/06/09 2:21 a.m.•10 views

SUSE CVE-2026-46274

In the Linux kernel, the following vulnerability has been resolved: io-wq: check that the predecessor is hashed in iowqremovepending iowqremovepending needs to fix up wq-hashtail if the cancelled work was the tail of its hash bucket. When doing this, it checks whether the preceding entry in...

7CVSS5.4AI score0.00138EPSS

NVD•added 2026/06/08 4:16 p.m.•8 views

CVE-2026-46274

7.8CVSS0.00138EPSS

Cvelist•added 2026/06/08 2:30 p.m.•39 views

CVE-2026-46274 io-wq: check that the predecessor is hashed in io_wq_remove_pending()

7.8CVSS0.00138EPSS

CVE•added 2026/06/08 2:30 p.m.•29 views

CVE-2026-46274

CVE-2026-46274 (Linux kernel, io_wq) has concrete details: a bug in io_wq_remove_pending() allowed a non-hashed predecessor to be treated as hashed, causing a stale pointer in wq->hash_tail[] to persist and be dereferenced by future hashed bucket-0 enqueues. The root cause is that io_get_work_...

7.8CVSS5.4AI score0.00138EPSS

Tenable Nessus•added 2026/06/08 12:0 a.m.•9 views

Linux Distros Unpatched Vulnerability : CVE-2026-46274

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - io-wq: check that the predecessor is hashed in iowqremovepending iowqremovepending needs to fix up wq-hashtail if the cancelled work was the tail of its hash...

7.8CVSS5.9AI score0.00138EPSS

Positive Technologies•added 2026/06/08 12:0 a.m.•8 views

PT-2026-47326

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 7.0.12-1.1 Description A flaw exists in the io wq remove pending function where it fails to verify if a predecessor entry is hashed when updating the wq-hash tail array. When a hashed bucket-0 work item is...

9.8CVSS5.2AI score0.00457EPSS

Exploits1References65

Cvelist•added 2026/05/29 4:10 p.m.•32 views

CVE-2026-45633 Dokploy: Command Injection in /docker-container-logs Endpoint

Dokploy is a free, self-hostable Platform as a Service PaaS. In 0.26.6 and earlier, Dokploy contains a command injection vulnerability in the /docker-container-logs WebSocket endpoint. The tail and since parameters are not validated and are directly concatenated into shell commands, allowing...

9.9CVSS0.00922EPSS

Exploits0References1

ATTACKERKB•added 2026/05/29 4:10 p.m.•7 views

CVE-2026-45633

9.9CVSS6.1AI score0.00922EPSS

Exploits0References2Affected Software1

SUSE CVE•added 2026/05/28 3:54 a.m.•9 views

SUSE CVE-2026-46033

In the Linux kernel, the following vulnerability has been resolved: crypto: authencesn - reject short ahash digests during instance creation authencesn requires either a zero authsize or an authsize of at least 4 bytes because the ESN encrypt/decrypt paths always move 4 bytes of high-order sequen...

5.5CVSS5.8AI score0.00126EPSS

RedHat Linux•added 2026/05/28 2:21 a.m.•13 views

kernel: mm/page_alloc: clear page->private in free_pages_prepare()

7.8CVSS5.8AI score0.0013EPSS

NVD•added 2026/05/27 2:17 p.m.•9 views

CVE-2026-46033

7.1CVSS0.00126EPSS

Exploits0References8

OSV•added 2026/05/27 2:17 p.m.•4 views

UBUNTU-CVE-2026-46033

7.1CVSS5.7AI score0.00126EPSS

ATTACKERKB•added 2026/05/27 12:56 p.m.•6 views

CVE-2026-46033

5.7AI score0.00126EPSS

Exploits0References9Affected Software1

OSV•added 2026/05/26 7:45 p.m.•9 views

JLSEC-2026-559

In Lua 5.4.3, an erroneous finalizer called during a tail call leads to a heap-based buffer over-read...

7.5CVSS7.2AI score0.01418EPSS

Exploits1References6

Positive Technologies•added 2026/05/26 12:0 a.m.•8 views

PT-2026-47117

In Lua 5.4.3, an erroneous finalizer called during a tail call leads to a heap-based buffer over-read...

5.7AI score

Exploits0References4

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: bpf: Fix tailcallreachable rejection for interpreter when jit failed During testing of f263a81451c1 “bpf: Track subprog poke descriptors correctly and fix use-after-free” under various failure conditions, for example, when...

5.5CVSS5.9AI score0.00226EPSS