Lucene search
+L
RedhatcveRecent

206713 matches found

redhatcve
redhatcve
•added 2026/05/28 8:12 p.m.•19 views

CVE-2026-46425

Budibase is an open-source low-code platform. Prior to 3.38.2, packages/worker/src/api/routes/global/scim.ts attaches only two middlewares to the SCIM router: requireSCIM checks the Enterprise feature flag and SCIM config and doInScimContext sets the SCIM request context. There is no role check...

9.9CVSS5.8AI score0.00286EPSS
Exploits0References1
redhatcve
redhatcve
•added 2026/05/28 8:12 p.m.•12 views

CVE-2026-46366

phpMyFAQ before 4.1.2 contains an information disclosure vulnerability in the getIdFromSolutionId method that lacks permission filtering, allowing unauthenticated attackers to enumerate restricted FAQ entries and read their titles via the /solutionidid.html endpoint. Attackers can sequentially...

8.7CVSS5.8AI score0.00259EPSS
Exploits0References1
redhatcve
redhatcve
•added 2026/05/28 8:12 p.m.•14 views

CVE-2026-46361

phpMyFAQ before 4.1.2 contains a stored cross-site scripting vulnerability in search.twig where result.question and result.answerPreview are rendered with the raw filter, disabling autoescape protection. Attackers with FAQ editor privileges can inject HTML-entity-encoded payloads that bypass...

8.2CVSS5.8AI score0.00249EPSS
Exploits0References1
redhatcve
redhatcve
•added 2026/05/28 8:12 p.m.•15 views

CVE-2026-46359

phpMyFAQ before 4.1.2 contains a sql injection vulnerability in CurrentUser::setTokenData that allows authenticated attackers to execute arbitrary SQL by injecting malicious OAuth token claims. Attackers with Azure AD accounts containing SQL metacharacters in display names or JWT claims can break...

7.7CVSS6.1AI score0.00212EPSS
Exploits0References1
redhatcve
redhatcve
•added 2026/05/28 8:12 p.m.•12 views

CVE-2026-45010

phpMyFAQ before 4.1.2 contains an improper restriction of excessive authentication attempts vulnerability in the /admin/check endpoint, which accepts arbitrary user-id parameters without session binding or rate limiting. Unauthenticated attackers can brute-force any user's six-digit TOTP code by...

9.3CVSS6AI score0.00339EPSS
Exploits0References1
redhatcve
redhatcve
•added 2026/05/28 8:12 p.m.•16 views

CVE-2026-44900

epa4all-client is the Java Client for epa4all / ePA 3.0 in the Telematik Infrastruktur. Prior to 1.2.1, in SignedPublicKeysTrustValidatorImpl.isTrusted, the ECDSA signature verification at line 45 discards the boolean return value of Signature.verify. The method performs certificate chain...

8.1CVSS5.8AI score0.00121EPSS
Exploits0References1
redhatcve
redhatcve
•added 2026/05/28 8:12 p.m.•14 views

CVE-2026-44346

BentoML is a Python library for building online serving systems optimized for AI apps and model inference. Prior to 1.4.39, a malicious bentofile.yaml containing a newline-injected value in envs.name produces unquoted RUN directives in the BentoML-generated Dockerfile. When the victim runs bentom...

8.8CVSS5.9AI score0.00321EPSS
Exploits1References1
redhatcve
redhatcve
•added 2026/05/28 8:12 p.m.•12 views

CVE-2026-40034

gix-submodule before 0.29.0 gitoxide before 0.5.21, gix before 0.84.0 incorrectly validates the update field in .gitmodules, allowing attackers to bypass the CommandForbiddenInModulesConfiguration guard when a submodule has been initialized with only partial configuration in .git/config. An...

8.5CVSS6.2AI score0.00351EPSS
Exploits0References1
redhatcve
redhatcve
•added 2026/05/28 8:12 p.m.•15 views

CVE-2025-69600

Command injection in Raynet rvia RayVentory Scan Engine 12.6 Update 8 and previous versions allows adversaries to execute commands via getconfig, upload, inventory, and oracle options...

7.8CVSS5.9AI score0.00826EPSS
Exploits2References1
redhatcve
redhatcve
•added 2026/05/28 8:12 p.m.•11 views

CVE-2025-68712

SpSoft AppLock com.sp.protector.free 7.9.40 for Android allows a local attacker with physical access to bypass fingerprint or PIN authentication. Although the app integrates Android's biometric mechanisms, the lock is implemented with a custom overlay that fails to consistently enforce...

5.5CVSS5.8AI score0.00136EPSS
Exploits0References1
redhatcve
redhatcve
•added 2026/05/28 8:12 p.m.•10 views

CVE-2026-44319

free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, free5GC's NEF terminates the entire process when a stored PFD-subscription notifyUri cannot be reached. In PfdChangeNotifier.FlushNotifications, the notifier calls NnefPFDmanagementNotify... and on any delivery error...

7.5CVSS5.8AI score0.00404EPSS
Exploits1References1
redhatcve
redhatcve
•added 2026/05/28 8:12 p.m.•17 views

CVE-2026-44322

free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, free5GC's NEF PATCH /3gpp-pfd-management/v1/afId/transactions/transId/applications/appId handler panics with a nil-pointer dereference when the upstream UDR call fails AND the consumer wrapper returns err != nil...

7.5CVSS5.8AI score0.0039EPSS
Exploits1References1
redhatcve
redhatcve
•added 2026/05/28 8:12 p.m.•10 views

CVE-2024-28765

IBM SDI 7.2.0.0 through 7.2.0.14 and IBM Security Directory Integrator 10.0.0.0 through 10.0.0.2 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system...

5.3CVSS5.8AI score0.00385EPSS
Exploits0References1
redhatcve
redhatcve
•added 2026/05/28 8:5 p.m.•14 views

CVE-2026-46123

A flaw was found in the Linux kernel's virtio Bluetooth virtiobt driver. A malicious or faulty virtualized Bluetooth device could send a specially crafted message with an incorrect length. This could lead to the kernel reading uninitialized memory, potentially exposing sensitive information from...

7.7CVSS5.8AI score0.00142EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 8:1 p.m.•10 views

CVE-2026-46127

A flaw was found in the Linux kernel, specifically within the RDMA Remote Direct Memory Access ocrdma driver. This vulnerability arises from an uninitialized pointer in the ocrdmacopypduresp function's error handling, which can lead to a NULL dereference. An attacker could exploit this to cause a...

5.5CVSS5.8AI score0.00128EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 8:1 p.m.•14 views

CVE-2026-46126

A flaw was found in the Linux kernel's RDMA/mana component. This issue occurs during the error unwind flow in the manaibcreateqprss function, specifically related to the Work Queue WQ table cleanup. Incorrect handling of the cleanup process, including a double decrement and an undone operation,...

5.5CVSS5.8AI score0.00127EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 7:50 p.m.•14 views

CVE-2026-46132

A flaw was found in the Linux kernel's rtnetlink component. The rtnlfillvfinfo function declares a structure on the stack without full initialization. When processing RTMGETLINK requests with a specific attribute, an unprivileged local process can exploit this to read up to 26 bytes of...

7CVSS5.8AI score0.00128EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 7:50 p.m.•12 views

CVE-2026-46130

A flaw was found in the Linux kernel's device-mapper verity forward error correction dm-verity-fec component. This vulnerability occurs because a function responsible for decoding parity data makes an incorrect assumption about how these data blocks are read. Under specific, non-default...

7.1CVSS5.8AI score0.00117EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 7:44 p.m.•12 views

CVE-2026-46133

A flaw was found in the Linux kernel's Soft RoCE RDMA/rxe driver. An unauthenticated remote attacker can send a specially crafted UDP packet with an unknown opcode to trigger an out-of-bounds read. This vulnerability can lead to a kernel panic, effectively causing a Denial of Service DoS on the...

7.5CVSS5.8AI score0.00574EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 7:44 p.m.•14 views

CVE-2026-43512

A flaw was found in Apache Tomcat. When DIGEST authentication was configured, any user not known to the configured Realm would be authenticated if they presented the password "null". This allows a remote attacker to bypass security controls. Mitigation To mitigate this issue, disable DIGEST...

9.8CVSS5.7AI score0.01233EPSS
Exploits1References4
redhatcve
redhatcve
•added 2026/05/28 7:42 p.m.•15 views

CVE-2026-46139

A flaw was found in the Linux kernel's Server Message Block SMB client. When building an Access Control List ACL descriptor, a buffer was not properly zero-initialized, leaving a reserved field with uninitialized heap data. This can lead to Samba rejecting the security descriptor, causing chmod...

7CVSS6AI score0.00122EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 7:42 p.m.•12 views

CVE-2026-46138

A flaw was found in the Linux kernel's Bluetooth subsystem, specifically within the hcilecreatebigcompleteevt function. A remote attacker, by sending a specially crafted LECreateBIGComplete event from a malicious Bluetooth controller, could trigger an out-of-bounds read and an infinite loop. This...

8.1CVSS5.8AI score0.00277EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 7:42 p.m.•18 views

CVE-2026-46137

A flaw was found in the Linux kernel, specifically within the Multipath TCP MPTCP implementation. The mptcppmaddtimer helper, which is executed as a timer callback, does not properly hold the socket lock when operating in a softirq context. This oversight can lead to a potential data race, which...

9.8CVSS5.8AI score0.00426EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 7:42 p.m.•13 views

CVE-2026-46136

A flaw was found in the Linux kernel's wifi: mt76: mt7921 component. A buffer length underflow in the CLC Country Logic Control mechanism can occur due to changes in the power table. This issue may lead to an almost infinite loop or an invalid power setting, resulting in a Denial of Service DoS b...

7.8CVSS5.9AI score0.00129EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 6:39 p.m.•13 views

CVE-2026-46146

A flaw was found in the Linux kernel's ALSA Advanced Linux Sound Architecture usb-audio subsystem. This vulnerability exists in the convertchmapv3 function, where the csdesc-wLength value is not properly validated. A malicious actor could provide a specially crafted, malformed USB audio descripto...

5.5CVSS5.8AI score0.00128EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 6:39 p.m.•15 views

CVE-2026-46145

A flaw was found in the Linux kernel's RDMA/mana component. A local user could exploit this vulnerability by providing an invalid rxhashkeylen value through a user-space API uAPI structure. This invalid value is then used in a memcpy operation without proper bounds checking, allowing the user to...

7.8CVSS5.8AI score0.00142EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 6:39 p.m.•15 views

CVE-2026-46149

A flaw was found in the Linux kernel's SCSI target subsystem. This vulnerability, a buffer overflow, occurs in the tgptgpmembersshow function when processing long iSCSI IQN names. An attacker could potentially exploit this by providing a specially crafted input, leading to the disclosure of...

7.1CVSS6AI score0.00139EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 6:37 p.m.•16 views

CVE-2026-46151

A flaw was found in the Linux kernel's USB printer usblp driver. A malicious USB printer can exploit a heap leak vulnerability by sending a truncated device ID response. This can lead to the disclosure of up to 1021 bytes of uninitialized kernel memory, potentially exposing sensitive information ...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 6:37 p.m.•13 views

CVE-2026-46150

A flaw was found in the Linux kernel's fanotify subsystem. This vulnerability allows for a bypass of permission checks because the fsnotifygetmarksafe function may incorrectly return false for marks on unrelated groups. This could enable an attacker to perform unauthorized actions by circumventin...

7.1CVSS5.8AI score0.00142EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 6:36 p.m.•17 views

CVE-2026-46116

A flaw was found in the Linux kernel's xfrm IPSec framework subsystem. This vulnerability, a use-after-free, occurs when the system incorrectly manages memory related to security policies, specifically during the deletion of xfrmstate lists. An attacker with local access could exploit this flaw b...

7.8CVSS5.8AI score0.0013EPSS
Exploits1References4
redhatcve
redhatcve
•added 2026/05/28 6:27 p.m.•15 views

CVE-2026-46117

A flaw was found in the Linux kernel's RDMA/mana component. A local user could trigger a kernel corruption by providing specific configurations through the user Application Programming Interface uAPI that cause an internal error. This issue arises when Work Queues WQs are specified to share the...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 6:18 p.m.•17 views

CVE-2026-46120

A flaw was found in the Linux kernel's ip6gre module. An unprivileged user could exploit this vulnerability by migrating a network device, causing the ip6erspanchangelink function to incorrectly handle network namespace references. This error leads to a use-after-free condition when the original...

7.8CVSS5.8AI score0.00126EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 6:16 p.m.•13 views

CVE-2026-9120

An use after free flaw was found in the WebRTC component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=504620824...

9.6CVSS5.7AI score0.00501EPSS
Exploits0References5
redhatcve
redhatcve
•added 2026/05/28 6:16 p.m.•25 views

CVE-2026-9119

A heap buffer overflow flaw was found in the WebRTC component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=502661101...

9.6CVSS5.9AI score0.00538EPSS
Exploits0References5
redhatcve
redhatcve
•added 2026/05/28 6:16 p.m.•12 views

CVE-2026-9118

An use after free flaw was found in the XR component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=498702233...

9.6CVSS5.7AI score0.00396EPSS
Exploits0References5
redhatcve
redhatcve
•added 2026/05/28 6:16 p.m.•16 views

CVE-2026-9117

A type confusion flaw was found in the GFX component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=497542537...

8.2CVSS5.7AI score0.00265EPSS
Exploits0References5
redhatcve
redhatcve
•added 2026/05/28 6:16 p.m.•15 views

CVE-2026-9116

An insufficient policy enforcement flaw was found in the ServiceWorker component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=497436273...

7.4CVSS5.7AI score0.00218EPSS
Exploits0References5
redhatcve
redhatcve
•added 2026/05/28 6:16 p.m.•23 views

CVE-2026-9115

An insufficient policy enforcement flaw was found in the Service Worker component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=495999481...

9.3CVSS5.7AI score0.00224EPSS
Exploits0References5
redhatcve
redhatcve
•added 2026/05/28 6:16 p.m.•17 views

CVE-2026-9114

An use after free flaw was found in the QUIC component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=495798630...

9.8CVSS5.7AI score0.00365EPSS
Exploits0References5
redhatcve
redhatcve
•added 2026/05/28 6:16 p.m.•13 views

CVE-2026-9113

An out of bounds read flaw was found in the GPU component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=489585044...

6.5CVSS5.7AI score0.00218EPSS
Exploits0References5
redhatcve
redhatcve
•added 2026/05/28 6:15 p.m.•15 views

CVE-2026-9112

An use after free flaw was found in the GPU component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=489791425...

8.8CVSS5.7AI score0.00396EPSS
Exploits0References5
redhatcve
redhatcve
•added 2026/05/28 6:15 p.m.•12 views

CVE-2026-9111

An use after free flaw was found in the WebRTC component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=504551032...

8.8CVSS5.7AI score0.00796EPSS
Exploits0References5
redhatcve
redhatcve
•added 2026/05/28 6:11 p.m.•15 views

CVE-2026-46157

A flaw was found in the Linux kernel's Advanced Linux Sound Architecture ALSA Pulse Code Modulation PCM Open Sound System OSS subsystem. A data race vulnerability exists due to concurrent access to the runtime.oss.trigger field without proper protection. This unprotected access can lead to the...

7.8CVSS5.8AI score0.00099EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 6:11 p.m.•14 views

CVE-2026-46155

A flaw was found in the Linux kernel's Server Message Block SMB client. A remote attacker, acting as a malicious SMB server, could send a specially crafted, truncated response with an oversized buffer length. This could lead to an out-of-bounds read in the smb2compoundop function, allowing the...

9.1CVSS5.9AI score0.00478EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 6:11 p.m.•13 views

CVE-2026-46158

A flaw was found in the Linux kernel's Multipath TCP MPTCP implementation. When an ADDADDR message is retransmitted, a socket reference count may not be properly decreased, leading to a potential resource leak. Over time, this resource exhaustion could allow a remote attacker to cause a Denial of...

7CVSS5.8AI score0.00127EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 6:4 p.m.•17 views

CVE-2026-46125

A flaw was found in the Linux kernel's mac80211 Wi-Fi subsystem. When Multi-Link Operation MLO connection preparation fails, the system may not correctly remove the associated station. This can lead to a use-after-free or double-free vulnerability in the debugfs component, potentially causing...

8.8CVSS5.8AI score0.00302EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 5:37 p.m.•20 views

CVE-2026-46135

A flaw was found in the Linux kernel's NVMe over TCP nvmet-tcp implementation. A race condition exists between the handling of an Initialization Connection Request ICReq and the teardown of a queue. A remote attacker, by sending an ICReq and immediately closing the connection, could trigger a...

9.8CVSS5.8AI score0.00353EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 5:34 p.m.•12 views

CVE-2026-46159

A flaw was found in the btrfs filesystem within the Linux kernel. A Time-of-check to time-of-use TOCTOU race condition in the btrfsioctlspaceinfo function allows a local attacker to exploit a timing window. This occurs when the system counts entries for allocation size and then fills a buffer, bu...

5.5CVSS5.8AI score0.00093EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 5:33 p.m.•11 views

CVE-2026-48696

FastNetMon Community Edition through 1.2.9 has a buffer overflow, a different vulnerability than CVE-2026-48686 and CVE-2026-48689...

6.2CVSS5.8AI score0.00124EPSS
Exploits0References2
redhatcve
redhatcve
•added 2026/05/28 5:33 p.m.•11 views

CVE-2026-48693

FastNetMon Community Edition through 1.2.9 is vulnerable to a local symlink attack via predictable file paths in /tmp. The statistics file path defaults to '/tmp/fastnetmon.dat' src/fastnetmon.cpp line 159. The printscreencontentsintofile function src/fastnetmonlogic.cpp line 2186 opens this path...

5.5CVSS5.5AI score0.00127EPSS
Exploits0References2
Total number of security vulnerabilities206713