Lucene search
+L
RedhatcveRecent

206739 matches found

redhatcve
redhatcve
•added 2026/05/28 6:39 p.m.•13 views

CVE-2026-46146

A flaw was found in the Linux kernel's ALSA Advanced Linux Sound Architecture usb-audio subsystem. This vulnerability exists in the convertchmapv3 function, where the csdesc-wLength value is not properly validated. A malicious actor could provide a specially crafted, malformed USB audio descripto...

5.5CVSS5.8AI score0.00128EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 6:39 p.m.•15 views

CVE-2026-46145

A flaw was found in the Linux kernel's RDMA/mana component. A local user could exploit this vulnerability by providing an invalid rxhashkeylen value through a user-space API uAPI structure. This invalid value is then used in a memcpy operation without proper bounds checking, allowing the user to...

7.8CVSS5.8AI score0.00142EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 6:39 p.m.•15 views

CVE-2026-46149

A flaw was found in the Linux kernel's SCSI target subsystem. This vulnerability, a buffer overflow, occurs in the tgptgpmembersshow function when processing long iSCSI IQN names. An attacker could potentially exploit this by providing a specially crafted input, leading to the disclosure of...

7.1CVSS6AI score0.00139EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 6:37 p.m.•16 views

CVE-2026-46151

A flaw was found in the Linux kernel's USB printer usblp driver. A malicious USB printer can exploit a heap leak vulnerability by sending a truncated device ID response. This can lead to the disclosure of up to 1021 bytes of uninitialized kernel memory, potentially exposing sensitive information ...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 6:37 p.m.•13 views

CVE-2026-46150

A flaw was found in the Linux kernel's fanotify subsystem. This vulnerability allows for a bypass of permission checks because the fsnotifygetmarksafe function may incorrectly return false for marks on unrelated groups. This could enable an attacker to perform unauthorized actions by circumventin...

7.1CVSS5.8AI score0.00142EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 6:36 p.m.•17 views

CVE-2026-46116

A flaw was found in the Linux kernel's xfrm IPSec framework subsystem. This vulnerability, a use-after-free, occurs when the system incorrectly manages memory related to security policies, specifically during the deletion of xfrmstate lists. An attacker with local access could exploit this flaw b...

7.8CVSS5.8AI score0.0013EPSS
Exploits1References4
redhatcve
redhatcve
•added 2026/05/28 6:27 p.m.•15 views

CVE-2026-46117

A flaw was found in the Linux kernel's RDMA/mana component. A local user could trigger a kernel corruption by providing specific configurations through the user Application Programming Interface uAPI that cause an internal error. This issue arises when Work Queues WQs are specified to share the...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 6:18 p.m.•17 views

CVE-2026-46120

A flaw was found in the Linux kernel's ip6gre module. An unprivileged user could exploit this vulnerability by migrating a network device, causing the ip6erspanchangelink function to incorrectly handle network namespace references. This error leads to a use-after-free condition when the original...

7.8CVSS5.8AI score0.00126EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 6:16 p.m.•13 views

CVE-2026-9120

An use after free flaw was found in the WebRTC component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=504620824...

9.6CVSS5.7AI score0.00501EPSS
Exploits0References5
redhatcve
redhatcve
•added 2026/05/28 6:16 p.m.•25 views

CVE-2026-9119

A heap buffer overflow flaw was found in the WebRTC component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=502661101...

9.6CVSS5.9AI score0.00538EPSS
Exploits0References5
redhatcve
redhatcve
•added 2026/05/28 6:16 p.m.•12 views

CVE-2026-9118

An use after free flaw was found in the XR component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=498702233...

9.6CVSS5.7AI score0.00396EPSS
Exploits0References5
redhatcve
redhatcve
•added 2026/05/28 6:16 p.m.•16 views

CVE-2026-9117

A type confusion flaw was found in the GFX component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=497542537...

8.2CVSS5.7AI score0.00265EPSS
Exploits0References5
redhatcve
redhatcve
•added 2026/05/28 6:16 p.m.•15 views

CVE-2026-9116

An insufficient policy enforcement flaw was found in the ServiceWorker component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=497436273...

7.4CVSS5.7AI score0.00218EPSS
Exploits0References5
redhatcve
redhatcve
•added 2026/05/28 6:16 p.m.•23 views

CVE-2026-9115

An insufficient policy enforcement flaw was found in the Service Worker component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=495999481...

9.3CVSS5.7AI score0.00224EPSS
Exploits0References5
redhatcve
redhatcve
•added 2026/05/28 6:16 p.m.•17 views

CVE-2026-9114

An use after free flaw was found in the QUIC component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=495798630...

9.8CVSS5.7AI score0.00365EPSS
Exploits0References5
redhatcve
redhatcve
•added 2026/05/28 6:16 p.m.•13 views

CVE-2026-9113

An out of bounds read flaw was found in the GPU component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=489585044...

6.5CVSS5.7AI score0.00218EPSS
Exploits0References5
redhatcve
redhatcve
•added 2026/05/28 6:15 p.m.•15 views

CVE-2026-9112

An use after free flaw was found in the GPU component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=489791425...

8.8CVSS5.7AI score0.00396EPSS
Exploits0References5
redhatcve
redhatcve
•added 2026/05/28 6:15 p.m.•12 views

CVE-2026-9111

An use after free flaw was found in the WebRTC component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=504551032...

8.8CVSS5.7AI score0.00796EPSS
Exploits0References5
redhatcve
redhatcve
•added 2026/05/28 6:11 p.m.•15 views

CVE-2026-46157

A flaw was found in the Linux kernel's Advanced Linux Sound Architecture ALSA Pulse Code Modulation PCM Open Sound System OSS subsystem. A data race vulnerability exists due to concurrent access to the runtime.oss.trigger field without proper protection. This unprotected access can lead to the...

7.8CVSS5.8AI score0.00099EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 6:11 p.m.•14 views

CVE-2026-46155

A flaw was found in the Linux kernel's Server Message Block SMB client. A remote attacker, acting as a malicious SMB server, could send a specially crafted, truncated response with an oversized buffer length. This could lead to an out-of-bounds read in the smb2compoundop function, allowing the...

9.1CVSS5.9AI score0.00478EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 6:11 p.m.•13 views

CVE-2026-46158

A flaw was found in the Linux kernel's Multipath TCP MPTCP implementation. When an ADDADDR message is retransmitted, a socket reference count may not be properly decreased, leading to a potential resource leak. Over time, this resource exhaustion could allow a remote attacker to cause a Denial of...

7CVSS5.8AI score0.00127EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 6:4 p.m.•17 views

CVE-2026-46125

A flaw was found in the Linux kernel's mac80211 Wi-Fi subsystem. When Multi-Link Operation MLO connection preparation fails, the system may not correctly remove the associated station. This can lead to a use-after-free or double-free vulnerability in the debugfs component, potentially causing...

8.8CVSS5.8AI score0.00302EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 5:37 p.m.•20 views

CVE-2026-46135

A flaw was found in the Linux kernel's NVMe over TCP nvmet-tcp implementation. A race condition exists between the handling of an Initialization Connection Request ICReq and the teardown of a queue. A remote attacker, by sending an ICReq and immediately closing the connection, could trigger a...

9.8CVSS5.8AI score0.00353EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 5:34 p.m.•12 views

CVE-2026-46159

A flaw was found in the btrfs filesystem within the Linux kernel. A Time-of-check to time-of-use TOCTOU race condition in the btrfsioctlspaceinfo function allows a local attacker to exploit a timing window. This occurs when the system counts entries for allocation size and then fills a buffer, bu...

5.5CVSS5.8AI score0.00093EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 5:33 p.m.•11 views

CVE-2026-48696

FastNetMon Community Edition through 1.2.9 has a buffer overflow, a different vulnerability than CVE-2026-48686 and CVE-2026-48689...

6.2CVSS5.8AI score0.00124EPSS
Exploits0References2
redhatcve
redhatcve
•added 2026/05/28 5:33 p.m.•11 views

CVE-2026-48693

FastNetMon Community Edition through 1.2.9 is vulnerable to a local symlink attack via predictable file paths in /tmp. The statistics file path defaults to '/tmp/fastnetmon.dat' src/fastnetmon.cpp line 159. The printscreencontentsintofile function src/fastnetmonlogic.cpp line 2186 opens this path...

5.5CVSS5.5AI score0.00127EPSS
Exploits0References2
redhatcve
redhatcve
•added 2026/05/28 5:33 p.m.•13 views

CVE-2026-48690

FastNetMon Community Edition through 1.2.9 contains an integer overflow vulnerability in the packet capture buffer allocation. In src/packetstorage.hpp, the allocatebuffer function computes memorysizeinbytes as 'buffersizeinpackets maxcapturedpacketsize + sizeoffastnetmonpcappkthdrt +...

7.1CVSS5.7AI score0.00116EPSS
Exploits0References2
redhatcve
redhatcve
•added 2026/05/28 5:33 p.m.•17 views

CVE-2026-46162

A flaw was found in the Linux kernel's ice driver. An error in the icesfethactivate function's error handling path can lead to a double free of memory. This occurs when auxiliarydeviceadd fails, causing kfreesfdev to be called twice. This vulnerability could lead to memory corruption or a denial ...

7.8CVSS5.8AI score0.00138EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 5:32 p.m.•9 views

CVE-2026-46160

A flaw was found in the Linux kernel's Btrfs filesystem. This vulnerability occurs when the lastunlinktrans field is not properly updated during directory removal. If a user maintains an open file descriptor to a removed directory and subsequently performs a filesystem synchronization fsync...

7CVSS5.8AI score0.00128EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 5:29 p.m.•12 views

CVE-2026-46168

A flaw was found in the Linux kernel's Multipath TCP MPTCP implementation. This vulnerability stems from an unsafe operation where locksockfast, intended for atomic contexts, is used with functions like socksettimestamp and socksettimestamping that can cause the system to sleep. Such an operation...

5.5CVSS5.8AI score0.00128EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 5:29 p.m.•10 views

CVE-2026-46170

A flaw was found in the Linux kernel's Multipath TCP MPTCP implementation. When an ADDADDR message is retransmitted, an issue in socket sk reference counting can prevent the socket from being properly freed. This improper resource management may lead to a Denial of Service DoS condition, where th...

7CVSS5.8AI score0.00127EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 5:29 p.m.•11 views

CVE-2026-46169

A flaw was found in the Linux kernel's HFS Plus HFS+ filesystem. A local attacker can exploit this vulnerability by mounting a specially crafted, corrupted HFS+ filesystem. The hfsbrecread function fails to validate the size of catalog records, which can lead to the use of uninitialized data. Thi...

5.5CVSS5.8AI score0.0013EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 5:20 p.m.•16 views

CVE-2026-41565

A flaw was found in perl-CryptX. A stack buffer overflow vulnerability exists in the AEAD Authenticated Encryption with Associated Data decryptverify helper routines. An attacker who can control the length of the authentication tag provided to these routines can cause a buffer overflow, potential...

9.8CVSS6.5AI score0.00469EPSS
Exploits0References6
redhatcve
redhatcve
•added 2026/05/28 5:19 p.m.•16 views

CVE-2026-46172

A flaw was found in the Linux kernel's IPv6 Internet Protocol version 6 xfrm6 component. When processing encapsulated IPv6 packets, the xfrm6rcvencap function fails to release a destination dst entry reference if an IPv6 route lookup results in an error. A remote attacker could exploit this by...

7CVSS5.8AI score0.00128EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 5:15 p.m.•16 views

CVE-2026-46185

A flaw was found in the Linux kernel's Server Message Block SMB client. This vulnerability arises from insufficient length validation in the smb2checkmessage function when processing symlink error responses. A remote attacker could exploit this by sending a specially crafted symlink error respons...

9.1CVSS5.8AI score0.00513EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 5:15 p.m.•12 views

CVE-2026-46182

A flaw was found in the Linux kernel, specifically within the pseries/papr-hvpipe module. This vulnerability could allow a local user to gain access to uninitialized kernel stack memory. The issue arises because certain padding bytes in a data structure are not cleared before being sent to...

5.5CVSS5.8AI score0.00126EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 5:14 p.m.•13 views

CVE-2026-46180

A flaw was found in the Linux kernel. A use-after-free vulnerability exists in the brcmfmac Wi-Fi driver when stopping the watchdog task. This issue occurs because the watchdog task might terminate prematurely, leading to a use-after-free condition. This could allow a local attacker to cause a...

7.8CVSS6AI score0.00135EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 5:14 p.m.•9 views

CVE-2026-46174

A flaw was found in the Linux kernel, specifically within the x86/CPU/AMD Zen2's op cache. This vulnerability arises from improper isolation of shared resources, which can lead to instruction corruption. The consequence of this flaw is that it may cause unexpected behavior or instability within t...

8.8CVSS5.8AI score0.00135EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 5:14 p.m.•9 views

CVE-2026-46173

A flaw was found in the Linux kernel. During the exit process of a task that has encountered an error, the system can incorrectly allow the task to be interrupted. This can lead to improper management of the task's memory, potentially causing memory corruption. Such an issue could allow a local...

7.8CVSS5.8AI score0.00126EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 5:9 p.m.•12 views

CVE-2026-46188

A flaw was found in the Linux kernel. Specifically, within the octeonepvf driver, the octepvfoqprocessrx function fails to check for a NULL return value from napibuildskb during memory allocation. This oversight can lead to a NULL pointer dereference, allowing a local attacker to potentially caus...

5.5CVSS5.8AI score0.00127EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 5:9 p.m.•16 views

CVE-2026-46186

A flaw was found in the Linux kernel's virtiobt Bluetooth virtual device driver. An untrusted backend can exploit this vulnerability by sending malformed Bluetooth packets with an insufficient header length. This can cause the system to read uninitialized kernel memory, potentially leading to...

7CVSS5.8AI score0.00123EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 5:9 p.m.•24 views

CVE-2026-42585

A flaw was found in Netty. This vulnerability allows a remote attacker to perform request smuggling attacks due to incorrect parsing of malformed Transfer-Encoding headers. By exploiting this flaw, an attacker can bypass security controls and potentially access sensitive information or manipulate...

7.5CVSS5.8AI score0.00248EPSS
Exploits1References4
redhatcve
redhatcve
•added 2026/05/28 4:15 p.m.•18 views

CVE-2026-46152

A flaw was found in the Linux kernel's Wi-Fi mac80211 subsystem. The ieee80211invokefastrx function uses a static variable for rxresult, which is shared across concurrent calls. This can lead to incorrect processing of Wi-Fi packets, where a packet might be mishandled or its status incorrectly...

8.8CVSS5.8AI score0.00167EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 3:47 p.m.•14 views

CVE-2026-48691

FastNetMon Community Edition through 1.2.9 contains an integer overflow in the BGP ASPATH attribute encoder. In src/bgpprotocol.hpp, the IPv4UnicastAnnounce::getattributes function computes attributelength as 'sizeofbgpaspathsegmentelementt + this-aspathasns.size sizeofuint32t' and stores it in a...

9.8CVSS5.9AI score0.00308EPSS
Exploits0References2
redhatcve
redhatcve
•added 2026/05/28 3:47 p.m.•18 views

CVE-2026-48697

FastNetMon Community Edition through 1.2.9 does not verify TLS certificates on outbound HTTPS connections. The executewebrequestsecure function in src/fastlibrary.cpp creates a boost::asio::ssl::context with tlsclient mode and calls setdefaultverifypaths to load CA certificates, but never calls...

7.4CVSS5.5AI score0.00164EPSS
Exploits0References2
redhatcve
redhatcve
•added 2026/05/28 3:47 p.m.•13 views

CVE-2026-48694

FastNetMon Community Edition through 1.2.9 contains a configuration injection vulnerability in the Juniper router integration plugin. In src/juniperplugin/fastnetmonjuniper.php, the $IPATTACK variable received from argv1 is directly interpolated into Juniper NETCONF set-configuration commands at...

8.1CVSS5.7AI score0.00234EPSS
Exploits0References2
redhatcve
redhatcve
•added 2026/05/28 3:47 p.m.•33 views

CVE-2026-48687

FastNetMon Community Edition through 1.2.9 contains an OS command injection vulnerability in the Juniper router integration plugin. The log function in src/juniperplugin/fastnetmonjuniper.php lines 117-118 constructs shell commands by concatenating the $msg parameter directly into exec calls:...

9.8CVSS5.8AI score0.01645EPSS
Exploits1References2
redhatcve
redhatcve
•added 2026/05/28 3:47 p.m.•15 views

CVE-2026-48695

FastNetMon Community Edition through 1.2.9 contains an OS command injection vulnerability in the MikroTik router integration plugin. The log function in src/mikrotikplugin/fastnetmonmikrotik.php lines 107-108 constructs shell commands by concatenating the $msg parameter directly into exec calls:...

8.1CVSS5.7AI score0.0107EPSS
Exploits0References2
redhatcve
redhatcve
•added 2026/05/28 3:47 p.m.•16 views

CVE-2026-48689

FastNetMon Community Edition through 1.2.9 contains an off-by-one heap-based buffer overflow in the dynamicbinarybuffert class src/dynamicbinarybuffer.hpp. Five methods appenddynamicbuffer, appenddataaspointer, appenddataasobjectptr, memcpyfromptr, memcpyfromobjectptr use an incorrect bounds chec...

9.8CVSS6.4AI score0.00677EPSS
Exploits1References2
redhatcve
redhatcve
•added 2026/05/28 3:47 p.m.•14 views

CVE-2026-48685

FastNetMon Community Edition through 1.2.9 has out-of-bounds memory access because it incorrectly parses BGP path attributes with the extended length flag set. In src/bgpprotocol.hpp, the parserawbgpattribute function correctly identifies when extendedlengthbit is set and sets lengthoflengthfield...

6.5CVSS5.4AI score0.00295EPSS
Exploits0References2
Total number of security vulnerabilities206739