Security
CVE Feed
Latest vulnerabilities from the National Vulnerability Database.
10692
Total
727
Critical
3080
High
3407
Medium
| CVE ID | Severity | Score | Description | Published |
|---|---|---|---|---|
| CVE-2026-31722 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: usb: gadget: f_rndis: Fix net_device lifecycle with device_move The net_device is allocated during function instance … | May 01, 2026 |
| CVE-2026-31721 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: usb: gadget: f_hid: move list and spinlock inits from bind to alloc There was an … | May 01, 2026 |
| CVE-2026-31720 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: usb: gadget: f_uac1_legacy: validate control request size f_audio_complete() copies req->length bytes into a 4-byte stack … | May 01, 2026 |
| CVE-2026-7582 | MEDIUM | 5.3 | A vulnerability was detected in AcademySoftwareFoundation OpenImageIO up to 3.2.0.1-dev. This vulnerability affects unknown code of the file src/dds.imageio/ddsinput.cpp of the component DDS Image Handler. … | May 01, 2026 |
| CVE-2026-42484 | CRITICAL | 9.8 | A heap-based buffer overflow in hex_to_binary in the PKZIP hash parser in hashcat v7.1.2 allows an attacker to cause a denial of service or possibly … | May 01, 2026 |
| CVE-2026-42483 | CRITICAL | 9.8 | A heap-based buffer overflow in the Kerberos hash parser in hashcat v7.1.2 allows an attacker to cause a denial of service or possibly execute arbitrary … | May 01, 2026 |
| CVE-2026-42482 | CRITICAL | 9.8 | A stack-based buffer overflow in mangle_to_hex_lower() and mangle_to_hex_upper() in src/rp_cpu.c in hashcat v7.1.2 allows an attacker to cause a denial of service or possibly execute … | May 01, 2026 |
| CVE-2026-3143 | MEDIUM | 5.3 | The Total Upkeep – WordPress Backup Plugin plus Restore & Migrate by BoldGrid plugin for WordPress is vulnerable to unauthorized modification of data due to … | May 01, 2026 |
| CVE-2026-31719 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: crypto: krb5enc - fix async decrypt skipping hash verification krb5enc_dispatch_decrypt() sets req->base.complete as the skcipher … | May 01, 2026 |
| CVE-2026-31718 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in __ksmbd_close_fd() via durable scavenger When a durable file handle survives session … | May 01, 2026 |
| CVE-2026-31717 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate owner of durable handle on reconnect Currently, ksmbd does not verify if the … | May 01, 2026 |
| CVE-2026-31716 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: validate rec->used in journal-replay file record check check_file_record() validates rec->total against the record size … | May 01, 2026 |
| CVE-2026-31715 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: f2fs: fix UAF caused by decrementing sbi->nr_pages[] in f2fs_write_end_io() The xfstests case "generic/107" and syzbot … | May 01, 2026 |
| CVE-2026-31714 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid memory leak in f2fs_rename() syzbot reported a f2fs bug as below: … | May 01, 2026 |
| CVE-2026-31713 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: fuse: abort on fatal signal during sync init When sync init is used and the … | May 01, 2026 |
| CVE-2026-31712 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: ksmbd: require minimum ACE size in smb_check_perm_dacl() Both ACE-walk loops in smb_check_perm_dacl() only guard against … | May 01, 2026 |
| CVE-2026-31711 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: smb: server: fix active_num_conn leak on transport allocation failure Commit 77ffbcac4e56 ("smb: server: fix leak … | May 01, 2026 |
| CVE-2026-31710 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: smb: client: fix dir separator in SMB1 UNIX mounts When calling cifs_mount_get_tcon() with SMB1 UNIX … | May 01, 2026 |
| CVE-2026-31709 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: smb: client: validate the whole DACL before rewriting it in cifsacl build_sec_desc() and id_mode_to_cifs_acl() derive … | May 01, 2026 |
| CVE-2026-31708 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: smb: client: fix OOB read in smb2_ioctl_query_info QUERY_INFO path smb2_ioctl_query_info() has two response-copy branches: PASSTHRU_FSCTL … | May 01, 2026 |
| CVE-2026-31707 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate response sizes in ipc_validate_msg() ipc_validate_msg() computes the expected message size for each response … | May 01, 2026 |
| CVE-2026-31706 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate num_aces and harden ACE walk in smb_inherit_dacl() smb_inherit_dacl() trusts the on-disk num_aces value … | May 01, 2026 |
| CVE-2026-31705 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix out-of-bounds write in smb2_get_ea() EA alignment smb2_get_ea() applies 4-byte alignment padding via memset() … | May 01, 2026 |
| CVE-2026-31704 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: ksmbd: use check_add_overflow() to prevent u16 DACL size overflow set_posix_acl_entries_dacl() and set_ntacl_dacl() accumulate ACE sizes … | May 01, 2026 |
| CVE-2026-31703 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: writeback: Fix use after free in inode_switch_wbs_work_fn() inode_switch_wbs_work_fn() has a loop like: wb_get(new_wb); while (1) … | May 01, 2026 |