|
911
|
- |
|
-
|
-
|
In the Linux kernel, the following vulnerability has been resolved:
wifi: mac80211: check tdls flag in ieee80211_tdls_oper
When NL80211_TDLS_ENABLE_LINK is called, the code only checks if the
stati…
|
-
|
CVE-2026-43052
|
2026-05-2 00:24 |
2026-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
912
|
- |
|
-
|
-
|
In the Linux kernel, the following vulnerability has been resolved:
btrfs: reject root items with drop_progress and zero drop_level
[BUG]
When recovering relocation at mount time, merge_reloc_root(…
|
-
|
CVE-2026-43046
|
2026-05-2 00:24 |
2026-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
913
|
- |
|
-
|
-
|
In the Linux kernel, the following vulnerability has been resolved:
HID: logitech-hidpp: Prevent use-after-free on force feedback initialisation failure
Presently, if the force feedback initialisat…
|
-
|
CVE-2026-43049
|
2026-05-2 00:24 |
2026-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
914
|
- |
|
-
|
-
|
In the Linux kernel, the following vulnerability has been resolved:
atm: lec: fix use-after-free in sock_def_readable()
A race condition exists between lec_atm_close() setting priv->lecd
to NULL an…
|
-
|
CVE-2026-43050
|
2026-05-2 00:24 |
2026-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
915
|
- |
|
-
|
-
|
In the Linux kernel, the following vulnerability has been resolved:
xfs: close crash window in attr dabtree inactivation
When inactivating an inode with node-format extended attributes,
xfs_attr3_n…
|
-
|
CVE-2026-43053
|
2026-05-2 00:24 |
2026-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
916
|
- |
|
-
|
-
|
In the Linux kernel, the following vulnerability has been resolved:
scsi: target: tcm_loop: Drain commands in target_reset handler
tcm_loop_target_reset() violates the SCSI EH contract: it returns …
|
-
|
CVE-2026-43054
|
2026-05-2 00:24 |
2026-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
917
|
6.5 |
MEDIUM
Network
|
wazuh
|
wazuh
|
Wazuh is a free and open source platform used for threat prevention, detection, and response. From version 4.0.0 to before version 4.14.4, multiple heap-based out-of-bounds WRITE vulnerabilities exis…
|
CWE-124
CWE-191
Buffer Underflow
Integer Underflow (Wrap or Wraparound)
|
CVE-2026-41499
|
2026-05-1 22:01 |
2026-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
918
|
9.8 |
CRITICAL
Network
|
arc53
|
docsgpt
|
DocsGPT is a GPT-powered chat for documentation. From version 0.15.0 to before version 0.16.0, an attacker accessing both the official DocsGPT website or any local and public deployment, can craft a …
|
CWE-77
Command Injection
|
CVE-2026-26015
|
2026-05-1 21:56 |
2026-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
919
|
7.5 |
HIGH
Network
|
postgresql
|
postgresql_jdbc_driver
|
pgjdbc is an open source postgresql JDBC Driver. From version 42.2.0 to before version 42.7.11, pgjdbc is vulnerable to a client-side denial of service during SCRAM-SHA-256 authentication. A maliciou…
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2026-42198
|
2026-05-1 21:51 |
2026-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
920
|
7.8 |
HIGH
Local
|
freebsd
|
freebsd
|
An operator precedence bug in the kernel results in a scenario where a buffer overflow causes attacker-controlled data to overwrite adjacent execve(2) argument buffers.
The bug may be exploitable by…
|
CWE-783
Operator Precedence Logic Error
|
CVE-2026-7270
|
2026-05-1 21:47 |
2026-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
