CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

104 matches found

CVE-2026-46244

A flaw was found in the Linux kernel's netfilter subsystem, specifically within the nftinner module. This vulnerability arises from an incorrect handling of IPv6 inner packet processing, where the transport header offset innerthoff becomes desynchronized from the Layer 4 protocol l4proto. A remot...

7CVSS

Exploits0References4

ATTACKERKB•added 6 hours ago•2 views

CVE-2026-46244

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftinner: Fix IPv6 innerthoff desync In nftinnerparsel2l3, when processing inner IPv6 packets, ipv6findhdr correctly computes the transport header offset traversing all extension headers, but the result is immediately...

5.8AI score

Exploits0References6Affected Software1

CVE•added 6 hours ago•2 views

CVE-2026-46244

The CVE-2026-46244 issue is in Linux kernel netfilter nft_inner: during inner IPv6 processing, ipv6_find_hdr() computes the transport header offset but is overwritten with nhoff + 40 (IPv6 base header only), causing a desync between inner_thoff and l4proto. This enables transport header forgery a...

5.8AI score

Exploits0References5

EUVD•added 6 hours ago•2 views

EUVD-2026-34106

5.8AI score

Exploits0References5

Cvelist•added 6 hours ago•3 views

CVE-2026-46244 netfilter: nft_inner: Fix IPv6 inner_thoff desync

Exploits0References5

Positive Technologies•added 22 hours ago•2 views

PT-2026-46007

In the Linux kernel, the following vulnerability has been resolved: netfilter: nft inner: Fix IPv6 inner thoff desync In nft inner parse l2l3, when processing inner IPv6 packets, ipv6 find hdr correctly computes the transport header offset traversing all extension headers, but the result is...

5.8AI score

Exploits0References6

AstraLinux•added 2026/05/20 5:53 a.m.•5 views

Astra Linux - уязвимость в linux-5.10, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: bpf: Check skb-transportheader is set in bpfskbcheckmtu. The bpfskbcheckmtu helper needs to use skb-transportheader when the BPFMTUCHKSEGS flag is used: bpfskbcheckmtuskb, ifindex, &mtulen, 0, BPFMTUCHKSEGS. The transportheader i...

5.8AI score0.00049EPSS

Exploits0References1

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerabilities have been resolved: ipv6: Rejected malicious packets in ipv6gsoSegment. syzbot was able to create a packet with very long IPv6 extension headers, leading to an overflow of the skb-transportheader field. This 16-bit field has a limited range. Add...

7.8CVSS5.9AI score0.00024EPSS

Exploits0References2

AstraLinux•added 2026/05/03 11:59 p.m.•5 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: idpf: fixed checksums set in idpfrxrsc idpfrxrsc uses skbtransportoffsetskb when the transport header is not yet set. This triggers the following warning in builds with CONFIGDEBUGNET=y:...

5.5CVSS6.5AI score0.00014EPSS

Exploits0References2

AstraLinux•added 2026/05/03 11:59 p.m.•2 views

Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: ipv4, ipv6: Fix handling of transhdrlen in ip,6appenddata Including the transhdrlen in length is a problem when the packet is partially filled e.g. something like sendMSGMORE happened previously when appending to an IPv4 or IPv6...

5.5CVSS6.4AI score0.00007EPSS

Exploits0References2

AstraLinux•added 2026/05/03 11:59 p.m.•1 views

Astra Linux - уязвимость в linux-5.10, linux-5.15, linux

In the Linux kernel, the following vulnerabilities have been resolved: erspan: Do not assume that the transport header is always set. Rewrite the tests for ip6erspantunnelxmit and erspanfbxmit to not assume that the transport header is set. syzbot reported: WARNING: CPU: 0 PID: 1350 at...

5.5CVSS6.3AI score0.00052EPSS

Exploits0References2

AstraLinux•added 2026/05/03 11:59 p.m.•3 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: net: skbpartialcsumset fix against transport header magic values The skb-transportheader uses the special value 0xFFFF to indicate whether the transport header was set or not. We must prevent callers from accidentally setting...

5.5CVSS5.8AI score0.00013EPSS

Exploits0References2

RedhatCVE•added 2026/04/28 6:35 p.m.•2 views

CVE-2026-31256

A null pointer dereference vulnerability exists in the RTSP service of the MERCURY MIPC252W 1.0.5 Build 230306 Rel.79931n. During the processing of a SETUP request for the path rtsp://:554/stream1/track2, the device fails to properly validate the Transport header field. When this header is...

7.5CVSS5.3AI score0.00026EPSS

Exploits1References1

NVD•added 2026/04/27 7:16 p.m.•1 views

CVE-2026-31256

7.5CVSS0.00026EPSS

Exploits1References1

Positive Technologies•added 2026/04/27 12:0 a.m.•3 views

PT-2026-35507

5.3AI score0.00026EPSS

Exploits1References4

ATTACKERKB•added 2026/04/27 12:0 a.m.•1 views

CVE-2026-31256

5.3AI score0.00026EPSS

Exploits1References2

Cvelist•added 2026/04/27 12:0 a.m.•24 views

CVE-2026-31256

0.00026EPSS

Exploits1References1

CNNVD•added 2026/04/27 12:0 a.m.•3 views

Mercury MIPC252W 安全漏洞

The Mercury MIPC252W is a high-definition network monitoring camera from the China Mercury company, capable of wireless connectivity. The version MERCURY MIPC252W 1.0.5 Build 230306 Rel.79931n contains a security vulnerability. This vulnerability arises from the RTSP service improperly verifying...

7.5CVSS5.8AI score0.00026EPSS

Exploits1References1