CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

SUSE CVE•added 2026/05/12 3:31 a.m.•4 views

SUSE CVE-2026-43215

In the Linux kernel, the following vulnerability has been resolved: cifs: Fix locking usage for tcon fields We used to use the cifstcpseslock to protect a lot of objects that are not just the server, ses or tcon lists. We later introduced srvlock, seslock and tclock to protect fields within the...

RedhatCVE•added 2026/05/06 9:57 p.m.•10 views

CVE-2026-43215

A flaw was found in the Linux kernel's Common Internet File System CIFS implementation. Incorrect locking mechanisms were used for tcon fields, where the cifstcpseslock was applied too broadly instead of more granular locks. This improper locking could lead to concurrency issues within the kernel...

EUVD•added 2026/05/06 12:30 p.m.•7 views

EUVD-2026-27777

5.8AI score0.00298EPSS

Exploits0References6

NVD•added 2026/05/06 12:16 p.m.•3 views

CVE-2026-43215

8.8CVSS0.00298EPSS

Exploits0References5

CVE•added 2026/05/06 11:28 a.m.•26 views

CVE-2026-43215

The CVE-2026-43215 issue affects the Linux kernel CIFS implementation: the code used cifs_tcp_ses_lock to guard tcon fields, but this lock protected more than intended. The patch introduces more granular locking (tc_lock) within tcon-related structures (in addition to srv_lock and ses_lock) to re...

Exploits0References5Affected Software1

Cvelist•added 2026/05/06 11:28 a.m.•26 views

CVE-2026-43215 cifs: Fix locking usage for tcon fields

8.8CVSS0.00298EPSS

Exploits0References5

ATTACKERKB•added 2026/05/06 11:28 a.m.•3 views

CVE-2026-43215

5.8AI score0.00298EPSS

Exploits0References6Affected Software1

Debian CVE•added 2026/05/06 11:28 a.m.•7 views

CVE-2026-43215

8.8CVSS5.7AI score0.00298EPSS

Exploits0

CNNVD•added 2026/05/06 12:0 a.m.•6 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from improper use of the tcon field in the cifs driver’s locking mechanism. This vulnerability may lead to...

Positive Technologies•added 2026/05/06 12:0 a.m.•6 views

PT-2026-37555

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the CIFS component where cifs tcp ses lock was used to protect various objects, including tcon fields, instead of using more granular locks. This caused unnecessary...

8.8CVSS7.6AI score0.00298EPSS

Exploits0References15

Tenable Nessus•added 2026/05/06 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2026-43215

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - cifs: Fix locking usage for tcon fields We used to use the cifstcpseslock to protect a lot of objects that are not just the server, ses or tcon lists. We later...

AstraLinux•added 2026/05/03 11:59 p.m.•3 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: smb: client: fixed a memory leak in cifsconstructtcon When using a multiuser mount with domain= specified and cifscreds, cifssetcifscreds will set @ctx-domainname, so it needs to be freed before leaving cifsconstructtcon. This...

5.4AI score0.00173EPSS

AstraLinux•added 2026/05/03 11:59 p.m.•3 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: PSR-SU should also be disabled for Parade 08-01 TCON. Stuart Hayhurst has found that both during bootup and when the fullscreen VA-API video mode is used, black screens occur for about 1 second, and a kernel...

5.5CVSS5.7AI score0.00233EPSS

Exploits0References2

AstraLinux•added 2026/05/03 11:59 p.m.•5 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: smb: Initialize cfid-tcon before performing network operations. Avoid leaking a reference to tcon when a lease-break operation occurs while opening the cached directory. Processing this operation might result in a failure to...

4.7CVSS5.6AI score0.00195EPSS

Exploits0References2

AstraLinux•added 2026/05/03 11:59 p.m.•5 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: ksmbd: Fixed an issue where shareconf was freed after use, in compound requests. smb2getksmbdtcon reuses work-tcon in compound requests without validating tcon-tstate. ksmbdtreeconnlookup checks that tstate is equal to...

9.8CVSS5.5AI score0.00331EPSS

Tenable Nessus•added 2026/04/21 12:0 a.m.•3 views

Unity Linux 20.1050e / 20.1070e Security Update: kernel (UTSA-2026-011405)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011405 advisory. In the Linux kernel, the following vulnerability has been resolved: smb: client: fix memory leak in cifsconstructtcon When having a multiuser mount with domain=...

5.8AI score0.00173EPSS