Lucene search
+L
RedhatcveRecent

206739 matches found

redhatcve
redhatcve
•added 2026/05/28 12:59 p.m.•12 views

CVE-2026-46234

A flaw was found in the Linux kernel's vsock component. This vulnerability stems from an incorrect order in which buffer sizes are validated, allowing a local user to set a minimum buffer size larger than the maximum. This can cause the socket's memory to exceed its defined boundaries, potentiall...

7.8CVSS5.9AI score0.00129EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 12:35 p.m.•17 views

CVE-2026-46227

A flaw was found in the Linux kernel's Stream Control Transmission Protocol SCTP implementation. A race condition exists in the SCTPSENDALL path where a cached list entry is not properly revalidated after the socket lock is temporarily released. This allows a local attacker or a remote attacker v...

7.8CVSS6.1AI score0.00104EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 12:26 p.m.•12 views

CVE-2026-42578

A flaw was found in Netty. The HttpProxyHandler component, which handles HTTP CONNECT requests, does not properly validate user-provided outbound headers. This allows an attacker to inject arbitrary HTTP headers into the CONNECT request sent to the proxy server. This could lead to unexpected...

7.5CVSS7AI score0.00952EPSS
Exploits1References4
redhatcve
redhatcve
•added 2026/05/28 12:21 p.m.•15 views

CVE-2026-46238

A flaw was found in the batman-adv module of the Linux kernel. The BAT IV protocol was caching unowned originator pointers, which could become invalid after purge handling. This could lead to the use of stale data, potentially causing unexpected system behavior or information corruption within th...

8.8CVSS5.8AI score0.00262EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 11:15 a.m.•13 views

CVE-2026-29004

A flaw was found in BusyBox. A heap buffer overflow vulnerability exists in the Dynamic Host Configuration Protocol version 6 DHCPv6 client, specifically within the optiontoenv function. Network-adjacent attackers can exploit this by sending a crafted DHCPv6 response containing a malformed...

8.8CVSS6.4AI score0.00375EPSS
Exploits0References7
redhatcve
redhatcve
•added 2026/05/28 11:12 a.m.•13 views

CVE-2026-44576

A flaw was found in Next.js, a React framework for building web applications. This vulnerability, related to cache poisoning, affects applications utilizing React Server Components RSC when shared caches fail to properly partition response variants. A remote attacker can exploit this by causing a...

5.4CVSS5.8AI score0.0025EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 11:5 a.m.•11 views

CVE-2026-6478

A flaw was found in PostgreSQL. This vulnerability, a covert timing channel, exists in the comparison of MD5-hashed passwords during authentication. A remote attacker could exploit this to recover user credentials, gaining unauthorized access to the database. This issue specifically impacts...

8.2CVSS5.7AI score0.00558EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 10:21 a.m.•19 views

CVE-2026-42584

A flaw was found in Netty, an asynchronous, event-driven network application framework. A remote attacker could exploit this vulnerability by sending a specific sequence of HTTP responses 103, followed by a 200 with a GET body, then another 200 for a HEAD request when the client pipelines GET the...

9.1CVSS6.9AI score0.0075EPSS
Exploits1References4
redhatcve
redhatcve
•added 2026/05/28 10:21 a.m.•21 views

CVE-2026-42581

A flaw was found in Netty's HttpObjectDecoder. A remote attacker can exploit this by sending a specially crafted HTTP/1.0 request that includes both Transfer-Encoding: chunked and Content-Length headers. While Netty correctly strips the conflicting Content-Length header for HTTP/1.1 messages, thi...

9.8CVSS6.9AI score0.00607EPSS
Exploits1References4
redhatcve
redhatcve
•added 2026/05/28 10:21 a.m.•16 views

CVE-2026-42579

A flaw was found in Netty. Netty's DNS Domain Name System codec does not properly enforce domain name constraints as defined in RFC 1035 during both encoding and decoding processes. This vulnerability allows a remote attacker to exploit the decoder using malicious DNS responses or exploit the...

9.1CVSS6.9AI score0.00969EPSS
Exploits1References4
redhatcve
redhatcve
•added 2026/05/28 10:5 a.m.•22 views

CVE-2026-45104

A flaw was found in MapServer. A remote attacker can exploit this vulnerability by sending a specially crafted Styled Layer Descriptor SLD via the Web Map Service WMS SLDBODY parameter. This can lead to a NULL pointer dereference, causing a Denial of Service DoS condition...

7.5CVSS5.8AI score0.0032EPSS
Exploits1References2
redhatcve
redhatcve
•added 2026/05/28 8:15 a.m.•14 views

CVE-2026-9804

A flaw was found in KubeVirt's virt-exportserver component. An attacker with specific namespace-level access can exploit a path traversal vulnerability in the VMExport directory endpoint. By placing a symbolic link symlink within an exported filesystem Persistent Volume Claim PVC that points...

7.7CVSS5.8AI score0.00516EPSS
Exploits0References3
redhatcve
redhatcve
•added 2026/05/28 8:13 a.m.•13 views

CVE-2026-49001

Cross-site request forgery CSRF vulnerabilities allow attackers to exploit a user's authenticated session to forge cross-site requests, inducing the execution of unintended operations such as tampering with configuration data...

5.3CVSS5.8AI score0.00109EPSS
Exploits0References1
redhatcve
redhatcve
•added 2026/05/28 8:12 a.m.•16 views

CVE-2026-9312

A server-side request forgery SSRF vulnerability was identified in GitHub Enterprise Server that allowed an unauthenticated attacker to send crafted requests to internal services by exploiting insufficient input validation in an upload endpoint. By injecting path traversal content into request...

9.2CVSS5.8AI score0.06552EPSS
Exploits0References1
redhatcve
redhatcve
•added 2026/05/28 8:12 a.m.•13 views

CVE-2026-8834

IBM HTTP Server 8.5, and 9.0 contains a buffer overflow vulnerability. A privileged user, authenticated to the Administration Server, could exploit this vulnerability to execute remote code or cause a denial of service...

8CVSS6.4AI score0.0026EPSS
Exploits0References1
redhatcve
redhatcve
•added 2026/05/28 8:12 a.m.•14 views

CVE-2026-4051

IBM Engineering Lifecycle Management 7.0.3, 7.1.0, and 7.2.0 could allow an attacker with administrative privileges to execute remote code due to exposed method that is not properly restricted...

7.2CVSS6.2AI score0.00369EPSS
Exploits0References1
redhatcve
redhatcve
•added 2026/05/28 8:12 a.m.•15 views

CVE-2026-49000

An insecure password scheme refers to vulnerabilities arising from improper selection of encryption algorithms, inadequate key management, or flawed code implementation, which may lead to data leakage or tampering, such as hard-coded keys or the use of weak encryption algorithms...

7CVSS5.9AI score0.00121EPSS
Exploits0References1
redhatcve
redhatcve
•added 2026/05/28 8:12 a.m.•14 views

CVE-2025-46284

A race condition was addressed with additional validation. This issue is fixed in macOS Sequoia 15.7, macOS Tahoe 26. An app may be able to gain root privileges...

7CVSS5.8AI score0.00103EPSS
Exploits0References1
redhatcve
redhatcve
•added 2026/05/28 8:12 a.m.•15 views

CVE-2026-3660

IBM Engineering Lifecycle Management 7.0.3, 7.1.0, and 7.2.0 could allow an unauthenticated remote attacker to update server property files that would allow them to gain unauthorized access to the application...

9.8CVSS5.8AI score0.0058EPSS
Exploits0References1
redhatcve
redhatcve
•added 2026/05/28 8:12 a.m.•13 views

CVE-2026-48999

Attackers carefully craft malicious scripts, such as JavaScript, and inject them into target systems; when other users access pages containing such malicious content, the scripts are automatically loaded and executed in the victim's browser.Attackers can thereby steal user cookies, hijack session...

5.7CVSS5.9AI score0.00169EPSS
Exploits0References1
redhatcve
redhatcve
•added 2026/05/28 8:12 a.m.•16 views

CVE-2026-44410

This vulnerability stems from a business logic flaw.Attackers can exploit legitimate application functions in unintended and abnormal ways, deviating from the designer's expectations, to carry out malicious attacks...

3.8CVSS5.8AI score0.00131EPSS
Exploits0References1
redhatcve
redhatcve
•added 2026/05/28 8:12 a.m.•19 views

CVE-2025-43306

A logic issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.7, macOS Sonoma 14.8, macOS Tahoe 26. A malicious app may be able to gain root privileges...

7.8CVSS5.8AI score0.00135EPSS
Exploits0References1
redhatcve
redhatcve
•added 2026/05/28 8:12 a.m.•14 views

CVE-2026-44728

Babel is a compiler for writing next generation JavaScript. From 7.12.0 to before 7.29.4 and 8.0.0-alpha.13, using Babel to compile code that was specifically crafted by an attacker can cause Babel to generate output code that executes arbitrary code. This vulnerability is fixed in 7.29.4 and...

8.2CVSS6AI score0.00125EPSS
Exploits0References1
redhatcve
redhatcve
•added 2026/05/28 7:54 a.m.•15 views

CVE-2026-43869

A flaw was found in Apache Thrift. This vulnerability involves improper validation of a certificate with a host mismatch, which could allow a remote attacker to bypass security checks. By presenting a specially crafted certificate, an attacker may impersonate a legitimate server or client. This...

7.3CVSS5.7AI score0.00632EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 7:18 a.m.•17 views

CVE-2026-4408

A flaw was found in Samba. A remote attacker can exploit a misconfiguration in Samba file servers and classic domain controllers that use the "check password script" feature. If this script is configured with the %u substitution character, the client-controlled username is passed without proper...

9.8CVSS5.8AI score0.02501EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 5:59 a.m.•12 views

CVE-2026-44604

A command injection vulnerability was discovered in the rpmuncompress utility of RPM. When extracting certain archive formats ZIP, 7z, GEM to a specified destination directory, the tool inserts the archive's top-level folder name into a shell command without properly sanitizing it. A specially...

7CVSS6AI score0.00547EPSS
Exploits0References3
redhatcve
redhatcve
•added 2026/05/28 5:9 a.m.•14 views

CVE-2026-45847

A flaw was found in the Linux kernel's network component, specifically related to handling Internet Protocol over Internet Protocol IPIP tunnels. A local user could potentially craft a network configuration with a very long forward path, which could lead to an unexpected condition within the...

5.5CVSS5.8AI score0.00156EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 5:3 a.m.•11 views

CVE-2026-45849

A flaw was found in the Linux kernel's network component, specifically within the mscc: ocelot driver. The system failed to properly secure access to shared resources during network packet injection, leading to a missing lock protection vulnerability. This oversight could allow a local attacker t...

5.5CVSS5.8AI score0.00136EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 5:3 a.m.•13 views

CVE-2026-45850

A flaw was found in the Linux kernel's IP Virtual Server IPVS component. A remote attacker could send specially crafted IPv6 packets with extension headers, causing the system to fail protocol checksum validation. This could lead to incorrect packet processing or a denial of service DoS, impactin...

5.5CVSS5.8AI score0.0016EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 5:3 a.m.•14 views

CVE-2026-45848

A flaw was found in the Linux kernel's AppArmor security module. This vulnerability allows a local attacker to trigger a NULL pointer dereference during socket setup or teardown operations. This can lead to a kernel 'oops', resulting in a system crash and a Denial of Service DoS...

5.5CVSS5.8AI score0.0016EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 4:57 a.m.•13 views

CVE-2026-45851

A flaw was found in the Linux kernel's Extensible Firmware Interface EFI subsystem. An error in memory reservation for the unaccepted memory table can occur if its starting address is not page-aligned. This vulnerability could lead to the memory table being overwritten or inaccessible, resulting ...

7.1CVSS5.8AI score0.00159EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 4:47 a.m.•14 views

CVE-2026-45854

A flaw was found in the Linux kernel's EIP93 cryptographic accelerator driver. This vulnerability occurs because the driver attempts to unregister all cryptographic algorithms, even those not supported by the hardware. This incorrect handling can lead to a system panic, effectively causing a Deni...

5.5CVSS5.8AI score0.00153EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 4:47 a.m.•14 views

CVE-2026-9802

A flaw was found in Keycloak. When revokeRefreshToken=true is enabled and persistent session storage is in use, a server restart can reset internal timing mechanisms. This allows a remote attacker, who has previously captured a user's refresh token, to replay that token even after it has been...

6.8CVSS5.6AI score0.00305EPSS
Exploits0References3
redhatcve
redhatcve
•added 2026/05/28 4:47 a.m.•18 views

CVE-2026-9803

A flaw was found in Keycloak's ClientRegistrationAuth component. A remote unauthenticated attacker can exploit this vulnerability by sending a specially crafted POST request with a malformed 'Authorization: Bearer' header to any client registration endpoint. This can lead to an...

5.3CVSS5.7AI score0.00417EPSS
Exploits0References3
redhatcve
redhatcve
•added 2026/05/28 4:47 a.m.•14 views

CVE-2026-45852

A flaw was found in the Linux kernel's Remote Direct Memory Access RDMA subsystem, specifically within the rxe driver. An error in the rxesrqfrominit function's memory management can lead to a double free vulnerability. This occurs when an attempt to copy data to user space fails, causing the sam...

7.8CVSS5.8AI score0.00175EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 4:47 a.m.•14 views

CVE-2026-45853

A flaw was found in the Linux kernel's drm/amdgpu component. The amdgpudiscoverygetnpsinfo function incorrectly deallocates memory by using kfree instead of kvfree, even when memory was allocated with kvcalloc which may use vmalloc. This improper memory handling can lead to memory corruption. Suc...

7.8CVSS5.8AI score0.00163EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 4:42 a.m.•12 views

CVE-2026-9801

A flaw was found in Keycloak. A remote attacker with high privileges, such as a realm administrator configuring a malicious Lightweight Directory Access Protocol LDAP server or an attacker compromising an upstream LDAP server, could exploit this vulnerability. By sending a malformed LDAP password...

4.9CVSS5.8AI score0.00476EPSS
Exploits0References3
redhatcve
redhatcve
•added 2026/05/28 4:42 a.m.•13 views

CVE-2026-45855

A flaw was found in the Linux kernel's libata-scsi component. This vulnerability allows for a denial of service DoS where non-Native Command Queuing NCQ commands can experience significant delays or complete starvation. This occurs when non-NCQ commands are issued while NCQ commands are actively...

5.5CVSS5.8AI score0.00164EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 4:37 a.m.•16 views

CVE-2026-45856

A flaw was found in the Linux kernel's Remote Direct Memory Access RDMA subsystem, specifically within the ibuverbspostsend function. A local user can exploit this vulnerability by providing an invalid work queue element size wqesize from userspace without proper validation. This can lead to an...

7.1CVSS5.8AI score0.00164EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 4:37 a.m.•12 views

CVE-2026-45857

A flaw was found in the Linux kernel's scsi: csiostor module. This null pointer dereference vulnerability occurs in an error handling path. A local attacker could exploit this to cause a system crash, leading to a Denial of Service DoS. Mitigation To prevent exploitation, the csiostor kernel modu...

5.5CVSS5.8AI score0.00156EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 4:37 a.m.•13 views

CVE-2026-9798

A flaw was found in Keycloak, an open-source identity and access management solution. When a user account is temporarily locked due to repeated failed login attempts, an attacker with valid client credentials can exploit the Client-Initiated Backchannel Authentication CIBA flow to bypass this...

4.3CVSS5.7AI score0.00206EPSS
Exploits0References3
redhatcve
redhatcve
•added 2026/05/28 4:32 a.m.•11 views

CVE-2026-45858

A flaw was found in the Linux kernel's ext4 filesystem. This vulnerability occurs during the splitting of unwritten data blocks, where a portion of the data may be incorrectly marked as written while still containing stale, uninitialized information. A local attacker could potentially exploit thi...

7CVSS5.8AI score0.00155EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 4:27 a.m.•11 views

CVE-2026-9796

A flaw was found in Keycloak. An authenticated administrator with the manage-clients role can exploit a Time-of-check to time-of-use TOCTOU vulnerability in the name-based admin role checks. This allows the attacker to escalate their privileges to realm-admin for all users within the realm,...

6.5CVSS5.7AI score0.00186EPSS
Exploits0References3
redhatcve
redhatcve
•added 2026/05/28 4:27 a.m.•13 views

CVE-2026-45859

A flaw was found in the Linux kernel's netfilter nfnetlinkqueue component. This vulnerability occurs when an application does not set the FGSO capability flag and a Generic Segmentation Offload GSO packet with an unconfirmed netfilter connection nfconn entry is received. Due to an incorrect order...

7.5CVSS5.8AI score0.00595EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 4:22 a.m.•11 views

CVE-2026-45860

A flaw was found in the Linux kernel's netfilter connection counting nfconncount feature. This vulnerability occurs when the system tracks more than eight new connections per jiffy, causing the connection list to not be cleaned up efficiently. A remote attacker could exploit this by rapidly...

7.5CVSS5.8AI score0.00686EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 4:12 a.m.•19 views

CVE-2026-45862

A flaw was found in the Linux kernel's IOMMU Input/Output Memory Management Unit virtualized directed I/O VT-d component. When a freshly allocated PASID Process Address Space ID table is written to a directory entry, the CPU cache flush for this table occurs too late. This creates a time window...

7.8CVSS5.8AI score0.00149EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 4:12 a.m.•17 views

CVE-2026-45861

A flaw was found in the Linux kernel's GFS2 file system. During filesystem shutdown, quota data objects were freed without being properly removed from the Least Recently Used LRU list. This oversight could lead to a use-after-free vulnerability, where the system attempts to access memory that has...

7.8CVSS6AI score0.00159EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 4:7 a.m.•21 views

CVE-2026-45864

A flaw was found in the Linux kernel's NTFS3 file system driver. This vulnerability allows a local attacker to trigger an infinite loop when the system attempts to process specific file system data. Successful exploitation can lead to a system hang, resulting in a Denial of Service DoS...

5.5CVSS5.8AI score0.00156EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 4:7 a.m.•16 views

CVE-2026-45863

A flaw was found in the Linux kernel's i3c dw driver. The dwi3cmasteri2cxfers function allocates memory for a transfer structure. However, if a runtime power management operation fails, the allocated memory is not properly released. This oversight leads to a memory leak, which can degrade system...

5.5CVSS5.8AI score0.00155EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 4:2 a.m.•15 views

CVE-2026-45865

A flaw was found in the Linux kernel's Message Control Transport Protocol MCTP over I2C Inter-Integrated Circuit implementation. A local attacker could exploit this vulnerability by performing I2C reads on an MCTP-I2C device. This could lead to the disclosure of uninitialized stack memory,...

5.5CVSS5.8AI score0.00156EPSS
Exploits0References4
Total number of security vulnerabilities206739