CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2958 matches found

EUVD-2026-39599

A flaw was found in KubeVirt's downward metrics virtio-serial server. The server reads guest requests using textproto.Reader.ReadLine, which buffers input indefinitely until a newline character is received, with no length limit or read deadline. A user with access to a VM guest that has the...

3.8CVSS5.8AI score

Exploits0References2

CVE•added 4 hours ago•6 views

CVE-2026-13322

CVE-2026-13322 affects KubeVirt, specifically the virt-handler on RHEL9, where the downward metrics virtio-serial server uses textproto.Reader.ReadLine() to read guest requests. The read is unbounded: there is no maximum length or read deadline, so a user with access to a VM guest can send an ong...

3.8CVSS5.8AI score

Exploits0References2

RedhatCVE•added yesterday•4 views

CVE-2026-52994

A flaw was found in the Linux kernel's vsock/virtio component. This vulnerability involves an accounting error in the MSGZEROCOPY pinned-pages mechanism, where the system's resource limit for locked memory RLIMITMEMLOCK may not be properly enforced. This could allow a local attacker or a maliciou...

5.5CVSS5.8AI score0.00173EPSS

Exploits0References4

EUVD•added yesterday•4 views

EUVD-2026-39337

In the Linux kernel, the following vulnerability has been resolved: vsock/virtio: fix potential unbounded skb queue virtiotransportincrxpkt checks vvs-rxbytes + len vvs-bufalloc. virtiotransportrecvenqueue skips coalescing for packets with VIRTIOVSOCKSEQEOM. If fed with packets with len == 0 and...

5.7AI score0.00168EPSS

Exploits0References5

EUVD•added yesterday•3 views

EUVD-2026-39281

In the Linux kernel, the following vulnerability has been resolved: drm/virtio: fix dmafence refcount leak on error in virtiogpudmafencewait dmafenceunwrapforeach internally calls dmafenceunwrapfirst which does cursor-chain = dmafencegethead, taking an extra reference. On normal loop completion,...

5.7AI score0.00175EPSS

Exploits0References5

CVE•added yesterday•4 views

CVE-2026-53190

CVE-2026-53190 (in the Linux kernel, drm/virtio) fixes a refcount leak in virtio_gpu_dma_fence_wait. The bug occurred when virtio_gpu_do_fence_wait() returned early inside dma_fence_unwrap_for_each(), leaving cursor->chain unreleased. The fix adds a dma_fence_put(itr.chain) before the early re...

5.7AI score0.00175EPSS

Exploits0References5

Debian CVE•added yesterday•4 views

CVE-2026-53190

5.6AI score0.00175EPSS

Exploits0

Debian CVE•added yesterday•4 views

CVE-2026-53132

5.6AI score0.00168EPSS

Exploits0

CVE•added yesterday•7 views

CVE-2026-53132

CVE-2026-53132 concerns the Linux kernel via vsock/virtio, addressing an unbounded skb queue in the virtio transport path. The root cause is that virtio_transport_inc_rx_pkt() and virtio_transport_recv_enqueue() can allow a growing queue when fed with packets of length 0 ending with VIRTIO_VSOCK_...

5.7AI score0.00168EPSS

Exploits0References4

EUVD•added 2 days ago•3 views

EUVD-2026-38862

In the Linux kernel, the following vulnerability has been resolved: vsock/virtio: fix MSGZEROCOPY pinned-pages accounting virtiotransportinitzcopyskb uses iter-count as the size argument for msgzerocopyrealloc, which in turn passes it to mmaccountpinnedpages for RLIMITMEMLOCK accounting. However,...

5.7AI score0.00173EPSS

Exploits0References4

NVD•added last week•16 views

CVE-2026-3195

A flaw was found in QEMU. When reading input audio in the virtio-snd device input callback, the virtiosndpcmincb function did not check whether the iov could fit the data buffer, potentially leading to a heap out-of-bounds write. This issue exists due to an incomplete fix for CVE-2024-7730...

7.4CVSS0.00112EPSS

Exploits0References2

NVD•added last week•10 views

CVE-2026-3196

An integer overflow vulnerability was found in the virtio-snd device via PCMINFO requests from the guest. A malicious guest can provide out-of-bounds stream counts, potentially leading to unbounded memory allocation on the host and a denial of service condition...

5.5CVSS0.00102EPSS

Exploits0References2

CVE•added last week•14 views

CVE-2026-3195

CVE-2026-3195 : In QEMU’s virtio-snd, the heap buffer overflow occurs in the input callback (virtio_snd_pcm_in_cb) due to an incomplete bounds/iov check. The Attackerkb entry reiterates that the function does not verify whether the iov can fit the data buffer, enabling a heap out-of-bounds write....

7.4CVSS5.8AI score0.00112EPSS

Exploits0References2

Cvelist•added last week•29 views

CVE-2026-3195 Qemu-kvm: virtio-snd: heap buffer overflow in virtio_snd_pcm_in_cb (incomplete fix for cve-2024-7730)

7.4CVSS0.00112EPSS

Exploits0References2

ATTACKERKB•added last week•6 views

CVE-2026-3195

7.4CVSS5.8AI score0.00112EPSS

Exploits0References3Affected Software6

Debian CVE•added last week•2 views

CVE-2026-3195

7.4CVSS5.8AI score0.00112EPSS

Exploits0

EUVD•added last week•6 views

EUVD-2026-38043

7.8CVSS7AI score0.00273EPSS

Exploits0References2

CVE•added last week•43 views

CVE-2026-3196

CVE-2026-3196 describes an integer overflow in the virtio-snd device triggered by PCM_INFO requests from a guest, causing unbounded host memory allocation and potential denial-of-service. Documented in multiple feeds (CVE listing, AttackersKB, OSV/Nessus advisories) indicates the vulnerability af...

5.5CVSS5.9AI score0.00102EPSS

Exploits0References2

Cvelist•added last week•26 views

CVE-2026-3196 Qemu-kvm: virtio-snd: integer overflow leading to unbounded memory allocation

5.5CVSS0.00102EPSS

Exploits0References2

EUVD•added last week•6 views

EUVD-2026-38042

5.5CVSS5.9AI score0.00102EPSS

Exploits0References2

Rows per page