Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

85 matches found

RedhatCVE
RedhatCVEadded 2026/06/01 1:29 p.m.12 views

CVE-2026-23557

A flaw was found in xenstored, a component of Xen. Any guest operating system can cause xenstored to crash by issuing an XSRESETWATCHES command within a transaction, leading to a denial of service DoS. This occurs due to an assertion assert triggering, which can halt the xenstored process...

6.5CVSS5.7AI score0.00158EPSS
Exploits0References2
EUVD
EUVDadded 2026/05/30 12:13 p.m.15 views

EUVD-2026-33459

In the Linux kernel, the following vulnerability has been resolved: eventpoll: fix epremove struct eventpoll / struct file UAF epremove via epremovefile cleared file-fep under file-flock but then kept using @file inside the critical section isfileepoll, hlistdelrcu through the head, spinunlock. A...

5.8AI score0.00123EPSS
Exploits0References3
SUSE CVE
SUSE CVEadded 2026/05/28 3:53 a.m.8 views

SUSE CVE-2026-46040

In the Linux kernel, the following vulnerability has been resolved: inotify: fix watch count leak when fsnotifyaddinodemarklocked fails When fsnotifyaddinodemarklocked fails in inotifynewwatch, the error path calls inotifyremovefromidr but does not call decinotifywatches to undo the preceding...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References3
NVD
NVDadded 2026/05/27 2:17 p.m.8 views

CVE-2026-46040

In the Linux kernel, the following vulnerability has been resolved: inotify: fix watch count leak when fsnotifyaddinodemarklocked fails When fsnotifyaddinodemarklocked fails in inotifynewwatch, the error path calls inotifyremovefromidr but does not call decinotifywatches to undo the preceding...

5.5CVSS0.00123EPSS
Exploits0References8
ATTACKERKB
ATTACKERKBadded 2026/05/27 12:56 p.m.6 views

CVE-2026-46040

In the Linux kernel, the following vulnerability has been resolved: inotify: fix watch count leak when fsnotifyaddinodemarklocked fails When fsnotifyaddinodemarklocked fails in inotifynewwatch, the error path calls inotifyremovefromidr but does not call decinotifywatches to undo the preceding...

5.7AI score0.00123EPSS
Exploits0References9Affected Software1
CVE
CVEadded 2026/05/27 12:56 p.m.23 views

CVE-2026-46040

CVE-2026-46040: In the Linux kernel inotify path, when fsnotify_add_inode_mark_locked() fails during inotify_new_watch(), the error path did not call dec_inotify_watches(), leaking a watch count and potentially exhausting max_user_watches (-ENOSPC) even with no active watches. The fix introduces ...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References8Affected Software1
Tenable Nessus
Tenable Nessusadded 2026/05/27 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2026-46040

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - inotify: fix watch count leak when fsnotifyaddinodemarklocked fails When fsnotifyaddinodemarklocked fails in inotifynewwatch, the error path calls...

5.5CVSS5.9AI score0.00123EPSS
Exploits0References4
NVD
NVDadded 2026/05/19 2:16 p.m.12 views

CVE-2026-23557

Any guest can cause xenstored to crash by issuing a XSRESETWATCHES command within a transaction due to an assert triggering. In case xenstored was built with NDEBUG defined nothing bad will happen, as assert is doing nothing in this case. Note that the default is not to define NDEBUG for xenstore...

6.5CVSS0.00158EPSS
Exploits0References3
OSV
OSVadded 2026/05/19 2:16 p.m.2 views

ALPINE-CVE-2026-23557

Any guest can cause xenstored to crash by issuing a XSRESETWATCHES command within a transaction due to an assert triggering. In case xenstored was built with NDEBUG defined nothing bad will happen, as assert is doing nothing in this case. Note that the default is not to define NDEBUG for xenstore...

6.5CVSS5.8AI score0.00158EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/05/19 12:49 p.m.39 views

CVE-2026-23557 Xenstored DoS via XS_RESET_WATCHES command

Any guest can cause xenstored to crash by issuing a XSRESETWATCHES command within a transaction due to an assert triggering. In case xenstored was built with NDEBUG defined nothing bad will happen, as assert is doing nothing in this case. Note that the default is not to define NDEBUG for xenstore...

0.00158EPSS
Exploits0References1
CVE
CVEadded 2026/05/19 12:49 p.m.25 views

CVE-2026-23557

CVE-2026-23557 affects xenstored. Any guest can crash xenstored by issuing XS_RESET_WATCHES within a transaction due to an assert(); behavior depends on NDEBUG (assert() disabled when NDEBUG is defined). Local attack vector with low privileges and no user interaction, resulting in a high availabi...

6.5CVSS5.8AI score0.00158EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVEadded 2026/05/19 12:49 p.m.6 views

CVE-2026-23557

Any guest can cause xenstored to crash by issuing a XSRESETWATCHES command within a transaction due to an assert triggering. In case xenstored was built with NDEBUG defined nothing bad will happen, as assert is doing nothing in this case. Note that the default is not to define NDEBUG for xenstore...

6.5CVSS5.8AI score0.00158EPSS
Exploits0
ATTACKERKB
ATTACKERKBadded 2026/05/19 12:49 p.m.7 views

CVE-2026-23557

Any guest can cause xenstored to crash by issuing a XSRESETWATCHES command within a transaction due to an assert triggering. In case xenstored was built with NDEBUG defined nothing bad will happen, as assert is doing nothing in this case. Note that the default is not to define NDEBUG for xenstore...

6.5CVSS5.8AI score0.00158EPSS
Exploits0References2
EUVD
EUVDadded 2026/05/19 12:49 p.m.9 views

EUVD-2026-30925

Any guest can cause xenstored to crash by issuing a XSRESETWATCHES command within a transaction due to an assert triggering. In case xenstored was built with NDEBUG defined nothing bad will happen, as assert is doing nothing in this case. Note that the default is not to define NDEBUG for xenstore...

6.5CVSS5.8AI score0.00158EPSS
Exploits0References1
SUSE Linux
SUSE Linuxadded 2026/05/07 7:15 a.m.4 views

Security update for xen

This update for xen fixes the following issues: Update to Xen 4.20.3 bug fix release bsc1027519 jscPED-8907. CVE-2025-54505: Floating Point Divider State Sampling on AMD CPUs AMD-SN-7053 bsc1262428. CVE-2026-23557: Xenstored DoS via XSRESETWATCHES command bsc1262178. CVE-2026-23558: grant table v...

7.8CVSS5.8AI score0.00191EPSS
Exploits0References16
SUSE Linux
SUSE Linuxadded 2026/05/05 8:3 a.m.5 views

Security update for xen

This update for xen fixes the following issues: CVE-2025-54505: Floating Point Divider State Sampling on AMD CPUs AMD-SN-7053 bsc1262428. CVE-2026-23557: Xenstored DoS via XSRESETWATCHES command bsc1262178. CVE-2026-23558: grant table v2 race in status page mapping bsc1262180. Special Instruction...

7.8CVSS5.8AI score0.00191EPSS
Exploits0References12
Oracle linux
Oracle linuxadded 2026/05/05 12:0 a.m.10 views

systemd security update

252-55.0.3.el97.9 - serialize: don't allocate 1M on the stack just like that LINUX-16166 - Route logs from container mapped uids to the system journal Orabug: 38135007 - Drop delay when nspawn fails to reset loginuid Orabug: 37793135 - Improve logging for api bus connection and subscribers Orabug...

5.5CVSS5.8AI score0.00641EPSS
Exploits1
Tenable Nessus
Tenable Nessusadded 2026/05/01 12:0 a.m.4 views

Fedora 43 : xen (2026-78cd69d9ae)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-78cd69d9ae advisory. oxenstored keeps quota related use counts across domain destruction XSA-483, CVE-2026-23556 Xenstored DoS via XSRESETWATCHES command XSA-484,...

7.8CVSS5.9AI score0.00191EPSS
Exploits0References5
SUSE Linux
SUSE Linuxadded 2026/04/29 11:6 a.m.3 views

Security update for xen

This update for xen fixes the following issues: CVE-2025-54505: floating point divider state sampling on AMD CPUs AMD-SN-7053 bsc1262428. CVE-2026-23557: Xenstored DoS via XSRESETWATCHES command bsc1262178. CVE-2026-23558: grant table v2 race in status page mapping bsc1262180. Special Instruction...

7.8CVSS5.2AI score0.00191EPSS
Exploits0References12
OSV
OSVadded 2026/04/29 11:6 a.m.1 views

SUSE-SU-2026:1657-1 Security update for xen

This update for xen fixes the following issues: - CVE-2025-54505: floating point divider state sampling on AMD CPUs AMD-SN-7053 bsc1262428. - CVE-2026-23557: Xenstored DoS via XSRESETWATCHES command bsc1262178. - CVE-2026-23558: grant table v2 race in status page mapping bsc1262180...

7.8CVSS5.2AI score0.00191EPSS
Exploits0References7
Rows per page
Query Builder