VIR Vulnerability Intelligence Relay

Search

Found 11,266 results in 2279ms · Match type: Filtered list

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Flags OS Vendor Published Description
CVE-2026-6311 high 8.3 8.3 FIX debian debian google 2mo ago Uninitialized Use in Accessibility in Google Chrome on Windows prior to 147.0.7727.101 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a…
CVE-2026-6310 high 8.3 8.3 FIX debian debian linux-kernelmacos macos google 2mo ago Use after free in Dawn in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Ch…
CVE-2026-6305 high 8.8 8.8 FIX debian debian linux-kernelmacos macos google 2mo ago Heap buffer overflow in PDFium in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. (Chromium security severity: High)
CVE-2026-6303 high 8.8 8.8 FIX debian debian linux-kernelmacos macos google 2mo ago Use after free in Codecs in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
CVE-2026-6358 high 8.8 8.8 FIX debian debian google 2mo ago Use after free in XR in Google Chrome on Android prior to 147.0.7727.101 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: Critic…
CVE-2026-6297 high 8.3 8.3 FIX debian debian linux-kernelmacos macos google 2mo ago Use after free in Proxy in Google Chrome prior to 147.0.7727.101 allowed an attacker in a privileged network position to potentially perform a sandbox escape via a crafted HTML page. (Chromium securi…
CVE-2026-40499 high 7.8 7.8 FIX debian debian radare 2mo ago radare2 prior to version 6.1.4 contains a command injection vulnerability in the PDB parser's print_gvars() function that allows attackers to execute arbitrary commands by embedding a newline byte in…
CVE-2026-33412 high 8.0 FIX rocky rhel sles 2mo ago Important: vim security update
CVE-2026-40491 high 7.8 7.8 FIX debian debian wkentaro 2mo ago gdown is a Google Drive public file/folder downloader. Versions prior to 5.2.2 are vulnerable to a Path Traversal attack within the extractall functionality. When extracting a maliciously crafted ZIP…
CVE-2026-6192 low 3.3 3.3 FIX slesdebian debian 2mo ago A vulnerability was identified in uclouvain openjpeg up to 2.5.4. This impacts the function opj_pi_initialise_encode in the library src/lib/openjp2/pi.c. The manipulation leads to integer overflow. T…
CVE-2026-6231 high 7.5 7.5 FIX debian debian mongodb 2mo ago The bson_validate function may return early on specific inputs and incorrectly report success. This behavior could result in skipping validation for BSON data, allowing malformed or invalid UTF-8 seq…
CVE-2026-31426 high 7.0 7.0 FIX slesdebian debian linux-kernel 2mo ago In the Linux kernel, the following vulnerability has been resolved: ACPI: EC: clean up handlers on probe failure in acpi_ec_setup() When ec_install_handlers() returns -EPROBE_DEFER on reduced-hardw…
CVE-2026-31419 high 7.8 7.8 FIX slesdebian debian linux-kernel google 2mo ago In the Linux kernel, the following vulnerability has been resolved: net: bonding: fix use-after-free in bond_xmit_broadcast() bond_xmit_broadcast() reuses the original skb for the last slave (deter…
CVE-2026-31417 high 7.5 7.5 FIX slesdebian debian linux-kernel 2mo ago In the Linux kernel, the following vulnerability has been resolved: net/x25: Fix overflow when accumulating packets Add a check to ensure that `x25_sock.fraglen` does not overflow. The `fraglen` a…
CVE-2026-5734 high 8.0 FIX rhelalmalinux almalinuxdebian debian 2mo ago Important: thunderbird security update
CVE-2026-5732 high 8.0 FIX rhelalmalinux almalinuxdebian debian 2mo ago Important: thunderbird security update
CVE-2026-5731 high 8.0 FIX rhelalmalinux almalinuxdebian debian 2mo ago Important: thunderbird security update
CVE-2026-1519 high 7.5 7.5 FIX rheldebian debian sles isc 2mo ago Important: bind security update
CVE-2006-10003 high 8.0 FIX sles rheldebian debian 2mo ago RHSA-2026:7681: perl-XML-Parser security update (Important)
CVE-2006-10002 high 8.0 FIX sles rheldebian debian 2mo ago RHSA-2026:7681: perl-XML-Parser security update (Important)
CVE-2026-31413 high 7.8 7.8 FIX slesdebian debian linux-kernel 2mo ago In the Linux kernel, the following vulnerability has been resolved: bpf: Fix unsound scalar forking in maybe_fork_scalars() for BPF_OR maybe_fork_scalars() is called for both BPF_AND and BPF_OR whe…
CVE-2026-40194 low 3.7 3.7 FIX debian debian phpseclib 2mo ago phpseclib has a variable-time HMAC comparison in SSH2::get_binary_packet() using != instead of hash_equals()
CVE-2026-40228 low 3.3 3.3 slesdebian debian systemd_project 2mo ago In systemd 259, systemd-journald can send ANSI escape sequences to the terminals of arbitrary users when a "logger -p emerg" command is executed, if ForwardToWall=yes is set.
CVE-2026-34479 high 7.5 7.5 FIX debian debian sles apache 2mo ago Apache Log4j 1 to Log4j 2 bridge: silent log event loss in Log4j1XmlLayout due to unescaped XML 1.0 forbidden characters
CVE-2026-39304 high 7.5 7.5 debian debian apache 2mo ago Apache ActiveMQ: Denial of Service via Out of Memory vulnerability
CVE-2026-5479 high 8.1 8.1 FIX debian debian wolfssl 2mo ago In wolfSSL's EVP layer, the ChaCha20-Poly1305 AEAD decryption path in wolfSSL_EVP_CipherFinal (and related EVP cipher finalization functions) fails to verify the authentication tag before returning p…
CVE-2026-5466 high 8.1 8.1 FIX debian debian wolfssl 2mo ago wolfSSL's ECCSI signature verifier `wc_VerifyEccsiHash` decodes the `r` and `s` scalars from the signature blob via `mp_read_unsigned_bin` with no check that they lie in `[1, q-1]`. A crafted forged …
CVE-2026-5188 high 8.1 8.1 FIX debian debian wolfssl 2mo ago An integer underflow issue exists in wolfSSL when parsing the Subject Alternative Name (SAN) extension of X.509 certificates. A malformed certificate can specify an entry length larger than the enclo…
CVE-2026-5295 high 8.0 8.0 FIX debian debian wolfssl 2mo ago A stack buffer overflow exists in wolfSSL's PKCS7 implementation in the wc_PKCS7_DecryptOri() function in wolfcrypt/src/pkcs7.c. When processing a CMS EnvelopedData message containing an OtherRecipie…
CVE-2026-29129 high 8.0 FIX slesdebian debian 2mo ago Configured cipher preference order not preserved vulnerability in Apache Tomcat. This issue affects Apache Tomcat: from 11.0.16 through 11.0.18, from 10.1.51 through 10.1.52, from 9.0.114 through 9.…
CVE-2026-24880 high 8.0 FIX slesdebian debian 2mo ago Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') vulnerability in Apache Tomcat via invalid chunk extension. This issue affects Apache Tomcat: from 11.0.0-M1 through …
CVE-2026-5447 high 7.5 7.5 FIX debian debian wolfssl 2mo ago Heap buffer overflow in CertFromX509 via AuthorityKeyIdentifier size confusion. A heap buffer overflow occurs when converting an X.509 certificate internally due to incorrect size handling of the Aut…
CVE-2026-5446 high 7.1 7.1 FIX debian debian wolfssl 2mo ago In wolfSSL, ARIA-GCM cipher suites used in TLS 1.2 and DTLS 1.2 reuse an identical 12-byte GCM nonce for every application-data record. Because wc_AriaEncrypt is stateless and passes the caller-suppl…
CVE-2026-34486 high 7.5 7.5 FIX slesdebian debian apache 2mo ago Missing Encryption of Sensitive Data vulnerability in Apache Tomcat due to the fix for CVE-2026-29146 allowing the bypass of the EncryptInterceptor. This issue affects Apache Tomcat: 11.0.20, 10.1.5…
CVE-2026-1584 high 7.5 7.5 FIX debian debian sles gnuredhat 2mo ago A flaw was found in gnutls. A remote, unauthenticated attacker can exploit this vulnerability by sending a specially crafted ClientHello message with an invalid Pre-Shared Key (PSK) binder value duri…
CVE-2026-4878 high 7.0 7.0 FIX rheldebian debian sles libcap_projectredhatgoogle 2mo ago A flaw was found in libcap. A local unprivileged user can exploit a Time-of-check-to-time-of-use (TOCTOU) race condition in the `cap_set_file()` function. This allows an attacker with write access to…
CVE-2026-27904 high 8.0 FIX rocky rhel sles 2mo ago RHSA-2026:8339: nodejs:20 security update (Important)
CVE-2026-27135 high 7.5 7.5 FIX rocky rhel sles nghttp2google 2mo ago RHSA-2026:8339: nodejs:20 security update (Important)
CVE-2026-26996 high 8.0 FIX rocky rhel sles 2mo ago RHSA-2026:8339: nodejs:20 security update (Important)
CVE-2026-2581 high 8.0 FIX rheldebian debianalmalinux almalinux 2mo ago RHSA-2026:7670: nodejs:24 security update (Important)
CVE-2026-25547 high 8.0 FIX rocky rhel sles 2mo ago RHSA-2026:7123: nodejs:22 security update (Important)
CVE-2026-2229 high 8.0 FIX rocky rheldebian debian 2mo ago RHSA-2026:7670: nodejs:24 security update (Important)
CVE-2026-21716 high 8.0 FIX rhel slesdebian debian 2mo ago RHSA-2026:7670: nodejs:24 security update (Important)
CVE-2026-21715 high 8.0 FIX rhel slesdebian debian 2mo ago RHSA-2026:7670: nodejs:24 security update (Important)
CVE-2026-21714 high 8.0 FIX rhel slesdebian debian 2mo ago RHSA-2026:7670: nodejs:24 security update (Important)
CVE-2026-21711 high 8.0 FIX rhel slesdebian debian 2mo ago RHSA-2026:7670: nodejs:24 security update (Important)
CVE-2026-21710 high 8.0 FIX rocky rhel sles 2mo ago RHSA-2026:8339: nodejs:20 security update (Important)
CVE-2026-1528 high 8.0 FIX rocky rheldebian debian 2mo ago RHSA-2026:7670: nodejs:24 security update (Important)
CVE-2026-1527 high 8.0 FIX rheldebian debianalmalinux almalinux 2mo ago RHSA-2026:7670: nodejs:24 security update (Important)
CVE-2026-1526 high 8.0 FIX rocky rheldebian debian 2mo ago RHSA-2026:7670: nodejs:24 security update (Important)
CVE-2026-1525 high 8.0 FIX rocky rheldebian debian 2mo ago RHSA-2026:7670: nodejs:24 security update (Important)
CVE-2026-5915 high 8.1 8.1 FIX debian debian linux-kernelmacos macos google 2mo ago Insufficient validation of untrusted input in WebML in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium secur…
CVE-2026-5914 high 8.8 8.8 FIX debian debian linux-kernelmacos macos google 2mo ago Type Confusion in CSS in Google Chrome prior to 147.0.7727.55 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Ext…
CVE-2026-5913 high 8.1 8.1 FIX debian debian linux-kernelmacos macos google 2mo ago Out of bounds read in Blink in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-5912 high 8.8 8.8 FIX debian debianmacos macos linux-kernel google 2mo ago Integer overflow in WebRTC in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-5910 high 8.8 8.8 FIX debian debian linux-kernelmacos macos google 2mo ago Integer overflow in Media in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to potentially exploit heap corruption via a crafted video file. (Chromium security severity: Low)
CVE-2026-5909 high 8.8 8.8 FIX debian debian linux-kernelmacos macos google 2mo ago Integer overflow in Media in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to potentially exploit heap corruption via a crafted video file. (Chromium security severity: Low)
CVE-2026-5908 high 8.8 8.8 FIX debian debian linux-kernelmacos macos google 2mo ago Integer overflow in Media in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to potentially exploit heap corruption via a crafted video file. (Chromium security severity: Low)
CVE-2026-5883 high 8.8 8.8 FIX debian debianmacos macos linux-kernel google 2mo ago Use after free in Media in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium)
CVE-2026-5879 high 8.8 8.8 FIX debian debianmacos macos google 2mo ago Insufficient validation of untrusted input in ANGLE in Google Chrome on Mac prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chrom…
CVE-2026-5865 high 8.8 8.8 FIX debian debian linux-kernelmacos macos google 2mo ago Type Confusion in V8 in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
CVE-2026-5863 high 8.8 8.8 FIX debian debian linux-kernelmacos macos google 2mo ago Inappropriate implementation in V8 in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: H…
CVE-2026-5860 high 8.8 8.8 FIX debian debian linux-kernelmacos macos google 2mo ago Use after free in WebRTC in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
CVE-2026-34588 high 8.0 FIX rhel slesdebian debian 2mo ago Important: openexr security update
CVE-2026-35611 high 8.0 slesdebian debian google 2mo ago Addressable has a Regular Expression Denial of Service in Addressable templates
CVE-2026-28390 high 7.5 7.5 FIX slesdebian debian rhel opensslgoogle 2mo ago Moderate: openssl security update
CVE-2026-28389 high 7.5 7.5 FIX slesdebian debian opensslgoogle 2mo ago Issue summary: During processing of a crafted CMS EnvelopedData message with KeyAgreeRecipientInfo a NULL pointer dereference can happen. Impact summary: Applications that process attacker-controlle…
CVE-2026-28388 high 7.5 7.5 FIX debian debian opensslgoogle 2mo ago Issue summary: When a delta CRL that contains a Delta CRL Indicator extension is processed a NULL pointer dereference might happen if the required CRL Number extension is missing. Impact summary: A …
CVE-2026-28387 high 8.1 8.1 FIX slesdebian debian opensslgoogle 2mo ago Issue summary: An uncommon configuration of clients performing DANE TLSA-based server authentication, when paired with uncommon server DANE TLSA records, may result in a use-after-free and/or double-…
CVE-2025-14821 high 7.0 7.0 FIX debian debian libsshredhat 2mo ago A flaw was found in libssh. This vulnerability allows local man-in-the-middle attacks, security downgrades of SSH (Secure Shell) connections, and manipulation of trusted host information, posing a si…
CVE-2026-31842 high 7.5 7.5 debian debian tinyproxy_project 2mo ago Tinyproxy through 1.11.3 is vulnerable to HTTP request parsing desynchronization due to a case-sensitive comparison of the Transfer-Encoding header in src/reqs.c. The is_chunked_transfer() function u…
CVE-2026-32647 high 8.0 FIX rhelalmalinux almalinux rocky 2mo ago Important: nginx security update
CVE-2026-27784 high 8.0 FIX rhelalmalinux almalinux rocky 2mo ago Important: nginx security update
CVE-2026-27654 high 8.0 FIX rhel rocky sles 2mo ago Important: nginx security update
CVE-2026-27651 high 8.0 FIX rhel rocky sles 2mo ago Important: nginx security update
CVE-2026-35172 high 7.5 7.5 debian debian sles distribution 2mo ago Distribution: stale blob access resurrection via repo-scoped redis descriptor cache invalidation
CVE-2026-5673 high 7.1 7.1 debian debian sles rhel xiph 2mo ago A flaw was found in libtheora. This heap-based out-of-bounds read vulnerability exists within the AVI (Audio Video Interleave) parser, specifically in the avi_parse_input_file() function. A local att…
CVE-2026-31409 high 8.8 8.8 FIX slesdebian debian linux-kernel 2mo ago In the Linux kernel, the following vulnerability has been resolved: ksmbd: unset conn->binding on failed binding request When a multichannel SMB2_SESSION_SETUP request with SMB2_SESSION_REQ_FLAG_BI…
CVE-2026-31408 high 8.8 8.8 FIX sles rheldebian debian 2mo ago In the Linux kernel, the following vulnerability has been resolved: Bluetooth: SCO: Fix use-after-free in sco_recv_frame() due to missing sock_hold sco_recv_frame() reads conn->sk under sco_conn_lo…
CVE-2026-31407 high 7.1 7.1 FIX slesdebian debian linux-kernel google 2mo ago In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack: add missing netlink policy validations Hyunwoo Kim reports out-of-bounds access in sctp and ctnetlink. The…
CVE-2026-31406 high 7.8 7.8 FIX slesdebian debian linux-kernel 2mo ago In the Linux kernel, the following vulnerability has been resolved: xfrm: Fix work re-schedule after cancel in xfrm_nat_keepalive_net_fini() After cancel_delayed_work_sync() is called from xfrm_nat…
CVE-2026-23231 high 7.8 8.8 EXPFIX rhel slesdebian debian 2mo ago Moderate: kernel security update
CVE-2026-23111 high 7.8 7.8 FIX rhel slesdebian debian 2mo ago Moderate: kernel security update
CVE-2025-15270 high 8.0 FIX rheldebian debian sles 2mo ago Important: fontforge security update
CVE-2026-31404 high 7.8 7.8 FIX slesdebian debian linux-kernel 2mo ago In the Linux kernel, the following vulnerability has been resolved: NFSD: Defer sub-object cleanup in export put callbacks svc_export_put() calls path_put() and auth_domain_put() immediately when t…
CVE-2026-31403 high 7.8 7.8 FIX slesdebian debian linux-kernel google 2mo ago In the Linux kernel, the following vulnerability has been resolved: NFSD: Hold net reference for the lifetime of /proc/fs/nfs/exports fd The /proc/fs/nfs/exports proc entry is created at module ini…
CVE-2026-31401 high 7.8 7.8 FIX slesdebian debian linux-kernel 2mo ago In the Linux kernel, the following vulnerability has been resolved: HID: bpf: prevent buffer overflow in hid_hw_request right now the returned value is considered to be always valid. However, when …
CVE-2026-31399 high 7.8 7.8 FIX slesdebian debian linux-kernel 2mo ago In the Linux kernel, the following vulnerability has been resolved: nvdimm/bus: Fix potential use after free in asynchronous initialization Dingisoul with KASAN reports a use after free if device_a…
CVE-2026-31398 high 7.8 7.8 FIX slesdebian debian linux-kernel 2mo ago In the Linux kernel, the following vulnerability has been resolved: mm/rmap: fix incorrect pte restoration for lazyfree folios We batch unmap anonymous lazyfree folios by folio_unmap_pte_batch. If…
CVE-2026-31397 high 7.8 7.8 FIX slesdebian debian linux-kernel 2mo ago In the Linux kernel, the following vulnerability has been resolved: mm/huge_memory: fix use of NULL folio in move_pages_huge_pmd() move_pages_huge_pmd() handles UFFDIO_MOVE for both normal THPs and…
CVE-2026-31396 high 7.8 7.8 FIX slesdebian debian linux-kernel 2mo ago In the Linux kernel, the following vulnerability has been resolved: net: macb: fix use-after-free access to PTP clock PTP clock is registered on every opening of the interface and destroyed on ever…
CVE-2026-31395 high 7.1 7.1 FIX slesdebian debian linux-kernel 2mo ago In the Linux kernel, the following vulnerability has been resolved: bnxt_en: fix OOB access in DBG_BUF_PRODUCER async event handler The ASYNC_EVENT_CMPL_EVENT_ID_DBG_BUF_PRODUCER handler in bnxt_as…
CVE-2026-31393 high 8.1 8.1 FIX slesdebian debian linux-kernel 2mo ago In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Validate L2CAP_INFO_RSP payload length before access l2cap_information_rsp() checks that cmd_len covers the fix…
CVE-2026-31392 high 8.1 8.1 FIX slesdebian debian linux-kernel 2mo ago In the Linux kernel, the following vulnerability has been resolved: smb: client: fix krb5 mount with username option Customer reported that some of their krb5 mounts were failing against a single s…
CVE-2026-31389 high 7.8 7.8 FIX slesdebian debian linux-kernel 2mo ago In the Linux kernel, the following vulnerability has been resolved: spi: fix use-after-free on controller registration failure Make sure to deregister from driver core also in the unlikely event th…
CVE-2026-23466 high 7.8 7.8 FIX slesdebian debian linux-kernel 2mo ago In the Linux kernel, the following vulnerability has been resolved: drm/xe: Open-code GGTT MMIO access protection GGTT MMIO access is currently protected by hotplug (drm_dev_enter), which works cor…
CVE-2026-23462 high 8.8 8.8 FIX slesdebian debian linux-kernel 2mo ago In the Linux kernel, the following vulnerability has been resolved: Bluetooth: HIDP: Fix possible UAF This fixes the following trace caused by not dropping l2cap_conn reference when user->remove ca…
CVE-2026-23461 high 8.8 8.8 FIX slesdebian debian linux-kernel 2mo ago In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix use-after-free in l2cap_unregister_user After commit ab4eedb790ca ("Bluetooth: L2CAP: Fix corrupted list in…
CVE-2026-23459 high 8.2 8.2 FIX slesdebian debian linux-kernel 2mo ago In the Linux kernel, the following vulnerability has been resolved: ip_tunnel: adapt iptunnel_xmit_stats() to NETDEV_PCPU_STAT_DSTATS Blamed commits forgot that vxlan/geneve use udp_tunnel[6]_xmit_…
CVE-2026-23458 high 7.8 7.8 FIX slesdebian debian linux-kernel google 2mo ago In the Linux kernel, the following vulnerability has been resolved: netfilter: ctnetlink: fix use-after-free in ctnetlink_dump_exp_ct() ctnetlink_dump_exp_ct() stores a conntrack pointer in cb->dat…