Lucene search
+L
RedhatcveRecent

206786 matches found

RedhatCVE
RedhatCVE
•added 2026/05/27 4:45 p.m.•14 views

CVE-2026-46102

A flaw was found in the Linux kernel's network stream parser. This vulnerability occurs when the stream parser is unexpectedly stopped, such as during a message assembly timeout. A partially processed network message is not properly released from memory, leading to a memory leak. An attacker coul...

7.5CVSS5.8AI score0.00501EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/05/27 2:12 p.m.•12 views

CVE-2026-3345

IBM Langflow Desktop =1.8.4 Langflow could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences /../ to view arbitrary files on the system...

6.5CVSS6AI score0.00374EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/05/27 2:12 p.m.•11 views

CVE-2026-9295

A security flaw has been discovered in Edimax BR-6428NS 1.10. This affects the function formWirelessTbl of the file /goform/formWirelessTbl of the component POST Request Handler. Performing a manipulation of the argument vapurl results in buffer overflow. The attack can be initiated remotely. The...

9CVSS7.8AI score0.00542EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/05/27 2:12 p.m.•15 views

CVE-2026-9299

A flaw has been found in omec-project amf up to 2.1.1. Affected by this issue is the function PDUSessionResourceModifyIndication of the file /go/src/amf/ngap/handler.go. This manipulation causes memory corruption. Remote exploitation of the attack is possible. The exploit has been published and m...

6.5CVSS6.2AI score0.00228EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/05/27 1:9 p.m.•12 views

CVE-2026-2651

A flaw was found in MLflow when the --serve-artifacts mode is enabled. A remote attacker can exploit this vulnerability due to insufficient resource-level permission checks for multipart upload MPU endpoints. This allows the attacker to overwrite artifacts belonging to other users, which can lead...

9CVSS7.7AI score0.00345EPSS
Exploits1References5
RedhatCVE
RedhatCVE
•added 2026/05/27 12:59 p.m.•15 views

CVE-2026-2611

A flaw was found in MLflow. Improper origin validation in the MLflow Assistant's /ajax-api endpoints allows a remote attacker to exploit cross-origin requests from a malicious webpage. This enables interaction with the MLflow Assistant running on a victim's local machine, bypassing loopback-only...

9.6CVSS7.5AI score0.00371EPSS
Exploits1References5
RedhatCVE
RedhatCVE
•added 2026/05/27 12:50 p.m.•13 views

CVE-2026-9704

A flaw was found in Keycloak. An authenticated user with low privileges can exploit this vulnerability by sending an oversized subjecttoken JSON Web Token JWT to the TokenEndpoint. When the token exceeds a 4000-character limit, it is silently dropped, causing the system to fall back to client...

8.8CVSS5.7AI score0.0032EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2026/05/27 12:45 p.m.•15 views

CVE-2026-45834

A flaw was found in the Linux kernel's Bluetooth L2CAP Logical Link Control and Adaptation Protocol implementation. A missing null pointer guard in the l2capsockstatechangecb function can lead to a null pointer dereference. This vulnerability could allow an attacker to cause a system crash,...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/05/27 12:45 p.m.•12 views

CVE-2026-45835

A flaw was found in the Linux kernel's Bluetooth L2CAP Logical Link Control and Adaptation Protocol component. A missing null pointer check in the l2capsocknewconnectioncb function could allow a remote attacker to trigger a null-pointer dereference. This vulnerability can lead to a system crash,...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/05/27 12:45 p.m.•18 views

CVE-2026-45836

A flaw was found in the Linux kernel's Bluetooth L2CAP subsystem. This vulnerability, a null-pointer dereference, occurs due to a missing NULL guard in the l2capsockgetsndtimeocb function. A local attacker could exploit this flaw to trigger a system crash, leading to a Denial of Service DoS...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/05/27 12:40 p.m.•18 views

CVE-2026-45839

A flaw was found in the Linux kernel's BPF Berkeley Packet Filter CO-RE Compile Once - Run Everywhere accessor parsing. A local attacker with CAPBPF capabilities could craft a malicious BPF program that uses negative CO-RE accessor indices. This input validation vulnerability allows for an...

7.8CVSS5.8AI score0.0012EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/05/27 12:39 p.m.•16 views

CVE-2026-45838

A flaw was found in the Linux kernel. Specifically, within the Berkeley Packet Filter BPF component, an error in the cgroupstoragegetnextkey function's end-of-list detection mechanism can cause the system to read from an invalid memory location. This incorrect handling may lead to internal map...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/05/27 12:39 p.m.•16 views

CVE-2026-45837

A flaw was found in the Linux kernel. A use-after-free vulnerability exists in the arenavmclose function during a fork operation. This occurs because the child's Virtual Memory Area VMA is not correctly registered, leading to a dangling pointer. If a child process attempts to access this stale...

7.8CVSS5.8AI score0.00116EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/05/27 12:34 p.m.•16 views

CVE-2026-45841

A flaw was found in the Linux kernel's netfilter component. A local attacker with CAPNETADMIN capabilities, which grants certain network administration privileges, could trigger a divide-by-zero error by adding a specially crafted fingerprint via nfnetlink. This vulnerability could lead to a kern...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/05/27 12:34 p.m.•15 views

CVE-2026-45840

A flaw was found in the Linux kernel's Open vSwitch component. A local attacker, with administrative network capabilities, could exploit this by providing an overly large Process ID PID array. This action triggers a buffer overflow within the network link netlink reply mechanism, leading to a...

7CVSS6AI score0.00117EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/05/27 12:34 p.m.•15 views

CVE-2026-45842

A flaw was found in the Linux kernel's SLIP Serial Line Internet Protocol and PPP Point-to-Point Protocol components. An unprivileged local user can exploit this vulnerability by manipulating the PPPIOCSMAXCID ioctl to configure the SLIP Compressed Header SLHC state incorrectly. This...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/05/27 12:28 p.m.•14 views

CVE-2026-45843

A flaw was found in the Linux kernel's Serial Line Internet Protocol SLIP implementation. The slhcuncompress function, which handles VJ-compressed TCP headers, fails to perform proper bounds checks during packet processing. A remote attacker could exploit this by sending a specially crafted...

8.2CVSS5.8AI score0.00278EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/05/27 12:28 p.m.•12 views

CVE-2026-45844

A flaw was found in the Linux kernel's netfilter ARP Address Resolution Protocol tables. When processing IPv4-over-IEEE1394 ARP packets on IEEE1394 interfaces, the kernel incorrectly parses the ARP payload. This can lead to incorrect filtering decisions by arptables, where packets that should be...

5.5CVSS5.8AI score0.00117EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/05/27 12:23 p.m.•13 views

CVE-2026-45846

A flaw was found in the bareudp driver of the Linux kernel. This vulnerability allows a local attacker to trigger a NULL pointer dereference in the bareudpfillmetadatadst function. This occurs because the function attempts to access a NULL socket when the bareudp device is down, leading to a syst...

5.5CVSS5.8AI score0.00115EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/05/27 12:23 p.m.•11 views

CVE-2026-45845

A flaw was found in the Linux kernel's TAPRIO Traffic Policing and Rate Limiting I/O qdisc. An unprivileged local user, with namespace-scoped CAPNETADMIN capabilities, can trigger a kernel null pointer dereference. This occurs by creating a TAPRIO qdisc in a new network namespace, grafting and th...

5.5CVSS5.8AI score0.00108EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/05/27 12:14 p.m.•14 views

CVE-2026-1933

A flaw was found in Samba’s handling of NTFS-style reparse points on shares configured with read only = yes. Due to missing SMB-layer access checks, authenticated users with underlying filesystem write permissions may create or delete reparse point metadata through SMB operations even on read-onl...

7.1CVSS5.8AI score0.00862EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/05/27 10:44 a.m.•13 views

CVE-2026-2340

A flaw was found in Samba’s vfsworm module. The module is intended to provide write-once, read-many WORM protections by preventing modification of files after a configurable grace period. Due to insufficient validation during rename operations, an authenticated user with write access to a share...

6.5CVSS5.7AI score0.00939EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/05/27 10:33 a.m.•10 views

CVE-2026-9689

A flaw was found in Keycloak, an open-source identity and access management solution. When a client application is configured to accept broad redirect Uniform Resource Identifiers URIs, a remote attacker can manipulate the authentication process by crafting a special web address. If a user clicks...

4.2CVSS5.8AI score0.00213EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2026/05/27 9:40 a.m.•15 views

CVE-2025-51427

A flaw was found in ModelScope. This vulnerability allows a remote attacker to execute arbitrary code by providing a specially crafted module within the configuration file deymini.yaml under the 'nnet.module' key. Successful exploitation could lead to complete system compromise...

8.1CVSS6.1AI score0.00529EPSS
Exploits0References6
RedhatCVE
RedhatCVE
•added 2026/05/27 9:26 a.m.•14 views

CVE-2026-3012

A flaw was found in Samba’s certificate auto-enrollment Group Policy handling. When certificate auto-enrollment is enabled, Samba may retrieve a CA certificate over an unencrypted HTTP connection and install it into the local trust store without proper verification. An attacker with the ability t...

8CVSS5.8AI score0.00261EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/05/27 9:26 a.m.•18 views

CVE-2026-47783

A flaw was found in memcached. A remote attacker can exploit a timing side channel during Simple Authentication and Security Layer SASL password database authentication. This vulnerability allows an attacker to observe subtle timing differences, which could be used to enumerate valid usernames...

8.1CVSS5.8AI score0.01312EPSS
Exploits0References6
RedhatCVE
RedhatCVE
•added 2026/05/27 9:3 a.m.•15 views

CVE-2026-33380

A flaw was found in Grafana. An authenticated attacker can exploit a vulnerability in SQL Expressions to read arbitrary files from the Grafana server's filesystem. This information disclosure is possible only when the sqlExpressions feature toggle is enabled...

6.5CVSS5.9AI score0.00262EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/05/27 8:52 a.m.•11 views

CVE-2026-28374

A flaw was found in Grafana. An authenticated editor user could exploit this vulnerability to delete any annotation, even those for which they lack read permissions. This unauthorized action compromises the integrity of data by allowing deletion of information beyond their intended access scope...

4.3CVSS5.7AI score0.00198EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/05/27 8:52 a.m.•10 views

CVE-2026-28383

A flaw was found in Grafana. An authenticated user can exploit a vulnerability in the plugin resources endpoint by sending a request that causes unbounded memory allocation. This occurs when the system attempts to read the entire request body into memory. Successful exploitation can lead to an...

6.5CVSS5.8AI score0.00328EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/05/27 8:49 a.m.•15 views

CVE-2026-28376

A flaw was found in Grafana Live. An authenticated user with access to the Grafana Live API can exploit the push endpoint by sending a large or streaming request body. This can lead to unbounded memory allocation, potentially causing out-of-memory conditions and resulting in a Denial of Service D...

6.5CVSS5.7AI score0.00328EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/05/27 8:45 a.m.•12 views

CVE-2026-28379

A flaw was found in Grafana Live, where a race condition allows authenticated users with a Viewer role to trigger a server crash. By sending concurrent requests, these users can cause a fatal map access error, leading to complete service unavailability Denial of Service. This requires a restart o...

6.5CVSS5.7AI score0.00262EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/05/27 8:12 a.m.•13 views

CVE-2026-27768

SQL Injection affecting the Access Manager role...

6.6CVSS5.9AI score0.0034EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/05/27 2:12 a.m.•20 views

CVE-2026-7790

A flaw was found in ninenines cowlib, specifically within the cowhttpte module's chunked transfer-encoding parser. An unauthenticated remote attacker can exploit this by sending an HTTP/1.1 request containing a Transfer-Encoding: chunked header with an excessively long hexadecimal string in the...

8.7CVSS5.7AI score0.00431EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2026/05/27 2:12 a.m.•14 views

CVE-2026-9078

Firefox for iOS displayed specially crafted right-to-left RTL and internationalized domain names IDNs incorrectly in link preview UI surfaces. A crafted RTL hostname could visually reorder portions of the displayed domain, causing attacker-controlled sites to appear as trusted origins. This...

5.4CVSS5.8AI score0.00199EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/05/27 2:12 a.m.•17 views

CVE-2026-42797

Exposure of Sensitive Information Through Data Queries vulnerability in Apache Syncope. An administrator with adequate entitlements for Derived Schemas can create a malicious JEXL expression which allows any administrator with sufficient entitlements for User read to access User-related...

4.9CVSS5.8AI score0.00436EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/05/27 2:12 a.m.•21 views

CVE-2026-46745

Apache Airflow FAB Auth Manager contains an LDAP filter injection vulnerability CWE-90 that allows unauthenticated attackers to exfiltrate directory data or bypass authentication. Upgrade to apache-airflow-providers-fab 3.6.4 or later. If immediate upgrade is not possible, disable LDAP...

5.3CVSS5.8AI score0.00574EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/05/27 2:12 a.m.•17 views

CVE-2026-46720

Net::Statsd::Tiny versions before 0.3.8 for Perl allowed metric injections. The metric names and set values were not checked for newlines, colons or pipes. Metrics generated from untrusted sources could inject additional statsd metrics...

8.2CVSS5.8AI score0.00344EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/05/27 2:12 a.m.•27 views

CVE-2026-36239

PbootCMS v.3.2.11 contains a code injection vulnerability in its site configuration functionality...

4.3CVSS5.8AI score0.00247EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2026/05/27 2:12 a.m.•16 views

CVE-2026-38587

An Insecure Direct Object Reference IDOR vulnerability was discovered in ONLYOFFICE DocSpace before 3.2.1. The flaw exists in multiple REST API endpoints. This allows authenticated users with low-level permissions User or Guest to retrieve sensitive information, such as the Owner's unique...

4.3CVSS5.8AI score0.00221EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/05/27 2:12 a.m.•15 views

CVE-2025-68711

AppLockZ App Lock and Fingerprint Lock applock.passwordfingerprint.applockz 4.2.11 for Android allows a local attacker with physical access to bypass the PIN lock. The lock is implemented as an overlay rather than by using Android's secure authentication APIs. By navigating cascading interface...

2.4CVSS5.8AI score0.00186EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/05/27 2:12 a.m.•12 views

CVE-2026-5718

The Drag and Drop Multiple File Upload for Contact Form 7 plugin for WordPress is vulnerable to arbitrary file upload in versions up to, and including, 1.3.9.7. This is due to insufficient file type validation that occurs when custom blacklist types are configured, which replaces the default...

8.1CVSS6.2AI score0.04175EPSS
Exploits3References1
RedhatCVE
RedhatCVE
•added 2026/05/27 2:12 a.m.•18 views

CVE-2026-32687

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in elixir-ecto postgrex 'Elixir.Postgrex.Notifications' module allows SQL Injection. The channel argument passed to 'Elixir.Postgrex.Notifications':listen/3 and...

7.8CVSS6AI score0.00198EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/05/27 2:12 a.m.•16 views

CVE-2026-32686

Uncontrolled Resource Consumption vulnerability in ericmj decimal allows unauthenticated remote Denial of Service. The decimal library does not bound the exponent on parsed input. Storing a decimal with a very large exponent e.g. Decimal.new"1e1000000000" is accepted without error. Subsequent cal...

6.9CVSS5.8AI score0.00321EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/05/27 2:12 a.m.•16 views

CVE-2025-68708

SailingLab AppLock aka com.alpha.applock 4.3.8 for Android allows a local attacker with physical access to bypass the PIN lock. The lock is implemented as an overlay rather than by using Android's secure authentication APIs. By navigating cascading interface flows - insecure navigation through...

2.4CVSS5.8AI score0.0019EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/05/26 9:29 p.m.•20 views

CVE-2026-42013

A flaw was found in gnutls. When validating certificates, an oversized Subject Alternative Name SAN could cause the validation process to incorrectly fall back to checking the Common Name CN field. This could allow a remote attacker to bypass proper certificate validation, potentially leading to...

8.2CVSS5.8AI score0.00423EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2026/05/26 9:29 p.m.•16 views

CVE-2026-5260

A flaw was found in libgnutls. A remote attacker, by sending an extremely short premaster secret during an RSA key exchange to a server using an RSA key backed by a PKCS11 token, could trigger a short heap overread. This memory corruption vulnerability could lead to information disclosure...

8.2CVSS5.8AI score0.00727EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2026/05/26 9:29 p.m.•19 views

CVE-2026-42015

A flaw was found in gnutls. An off-by-one error exists in the PKCS12 bag element bounds check. This vulnerability allows an remote attacker to write past the internal array of a PKCS12 bag when appending to a bag that already contains 32 elements. This memory corruption could lead to a denial of...

5.3CVSS5.8AI score0.00727EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2026/05/26 9:29 p.m.•15 views

CVE-2026-42014

No description is available for this CVE...

5.8AI score0.0015EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2026/05/26 9:29 p.m.•15 views

CVE-2026-42012

A flaw was found in gnutls. A remote attacker could exploit this vulnerability by presenting a specially crafted certificate that contains Uniform Resource Identifier URI or Service SRV Subject Alternative Names SANs. This could cause the certificate validation process to incorrectly fall back to...

7.1CVSS5.8AI score0.00354EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2026/05/26 8:22 p.m.•12 views

CVE-2026-48852

PuTTY 0.71 before 0.84 has an assertion failure in ECDSA signature verification...

3.7CVSS5.4AI score0.00274EPSS
Exploits0References2
Total number of security vulnerabilities206786