Security
CVE Feed
Latest vulnerabilities from the National Vulnerability Database.
10692
Total
727
Critical
3080
High
3407
Medium
| CVE ID | Severity | Score | Description | Published |
|---|---|---|---|---|
| CVE-2026-43507 | MEDIUM | 5.3 | An issue was discovered in Prosody before 0.12.6 and 1.0.0 through 13.0.0 before 13.0.5. A Denial of Service can occur via memory exhaustion caused by … | May 01, 2026 |
| CVE-2026-43506 | MEDIUM | 5.3 | An issue was discovered in Prosody before 0.12.6 and 1.0.0 through 13.0.0 before 13.0.5. A Denial of Service can occur via memory exhaustion caused by … | May 01, 2026 |
| CVE-2026-43505 | MEDIUM | 6.5 | An issue was discovered in Prosody before 0.12.6 and 1.0.0 through 13.0.0 before 13.0.5, when mod_proxy65 is enabled. Because mod_proxy65 mishandles access control in the … | May 01, 2026 |
| CVE-2026-43504 | MEDIUM | 6.5 | An issue was discovered in Prosody before 0.12.6 and 1.0.0 through 13.0.0 before 13.0.5, when mod_proxy65 is enabled. Because mod_proxy65 mishandles access control in a … | May 01, 2026 |
| CVE-2026-43057 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: net: correctly handle tunneled traffic on IPV6_CSUM GSO fallback NETIF_F_IPV6_CSUM only advertises support for checksum … | May 01, 2026 |
| CVE-2026-43056 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: net: mana: fix use-after-free in add_adev() error path If auxiliary_device_add() fails, add_adev() jumps to add_fail … | May 01, 2026 |
| CVE-2026-43055 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: scsi: target: file: Use kzalloc_flex for aio_cmd The target_core_file doesn't initialize the aio_cmd->iocb for the … | May 01, 2026 |
| CVE-2026-43054 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: scsi: target: tcm_loop: Drain commands in target_reset handler tcm_loop_target_reset() violates the SCSI EH contract: it … | May 01, 2026 |
| CVE-2026-43053 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: xfs: close crash window in attr dabtree inactivation When inactivating an inode with node-format extended … | May 01, 2026 |
| CVE-2026-43052 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: check tdls flag in ieee80211_tdls_oper When NL80211_TDLS_ENABLE_LINK is called, the code only checks … | May 01, 2026 |
| CVE-2026-43051 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: HID: wacom: fix out-of-bounds read in wacom_intuos_bt_irq The wacom_intuos_bt_irq() function processes Bluetooth HID reports without … | May 01, 2026 |
| CVE-2026-43050 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: atm: lec: fix use-after-free in sock_def_readable() A race condition exists between lec_atm_close() setting priv->lecd to … | May 01, 2026 |
| CVE-2026-43049 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: HID: logitech-hidpp: Prevent use-after-free on force feedback initialisation failure Presently, if the force feedback initialisation … | May 01, 2026 |
| CVE-2026-43048 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: HID: core: Mitigate potential OOB by removing bogus memset() The memset() in hid_report_raw_event() has the … | May 01, 2026 |
| CVE-2026-43047 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: HID: multitouch: Check to ensure report responses match the request It is possible for a … | May 01, 2026 |
| CVE-2026-43046 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: btrfs: reject root items with drop_progress and zero drop_level [BUG] When recovering relocation at mount … | May 01, 2026 |
| CVE-2026-43045 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: mshv: Fix error handling in mshv_region_pin The current error handling has two issues: First, pin_user_pages_fast() … | May 01, 2026 |
| CVE-2026-43044 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: crypto: caam - fix DMA corruption on long hmac keys When a key longer than … | May 01, 2026 |
| CVE-2026-43043 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: crypto: af-alg - fix NULL pointer dereference in scatterwalk The AF_ALG interface fails to unmark … | May 01, 2026 |
| CVE-2026-43042 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: mpls: add seqcount to protect the platform_label{,s} pair The RCU-protected codepaths (mpls_forward, mpls_dump_routes) can have … | May 01, 2026 |
| CVE-2026-43041 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: net: qrtr: replace qrtr_tx_flow radix_tree with xarray to fix memory leak __radix_tree_create() allocates and links … | May 01, 2026 |
| CVE-2026-43040 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: net: ipv6: ndisc: fix ndisc_ra_useropt to initialize nduseropt_padX fields to zero to prevent an info-leak … | May 01, 2026 |
| CVE-2026-43039 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: net: ti: icssg-prueth: fix missing data copy and wrong recycle in ZC RX dispatch emac_dispatch_skb_zc() … | May 01, 2026 |
| CVE-2026-43038 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: ipv6: icmp: clear skb2->cb[] in ip6_err_gen_icmpv6_unreach() Sashiko AI-review observed: In ip6_err_gen_icmpv6_unreach(), the skb is an … | May 01, 2026 |
| CVE-2026-43037 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: ip6_tunnel: clear skb2->cb[] in ip4ip6_err() Oskar Kjos reported the following problem. ip4ip6_err() calls icmp_send() on … | May 01, 2026 |