|
501
|
- |
|
-
|
-
|
In the Linux kernel, the following vulnerability has been resolved:
HID: logitech-hidpp: Prevent use-after-free on force feedback initialisation failure
Presently, if the force feedback initialisat…
New
|
-
|
CVE-2026-43049
|
2026-05-2 00:24 |
2026-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
502
|
- |
|
-
|
-
|
In the Linux kernel, the following vulnerability has been resolved:
atm: lec: fix use-after-free in sock_def_readable()
A race condition exists between lec_atm_close() setting priv->lecd
to NULL an…
New
|
-
|
CVE-2026-43050
|
2026-05-2 00:24 |
2026-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
503
|
- |
|
-
|
-
|
In the Linux kernel, the following vulnerability has been resolved:
xfs: close crash window in attr dabtree inactivation
When inactivating an inode with node-format extended attributes,
xfs_attr3_n…
New
|
-
|
CVE-2026-43053
|
2026-05-2 00:24 |
2026-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
504
|
- |
|
-
|
-
|
In the Linux kernel, the following vulnerability has been resolved:
scsi: target: tcm_loop: Drain commands in target_reset handler
tcm_loop_target_reset() violates the SCSI EH contract: it returns …
New
|
-
|
CVE-2026-43054
|
2026-05-2 00:24 |
2026-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
505
|
6.5 |
MEDIUM
Network
|
wazuh
|
wazuh
|
Wazuh is a free and open source platform used for threat prevention, detection, and response. From version 4.0.0 to before version 4.14.4, multiple heap-based out-of-bounds WRITE vulnerabilities exis…
|
CWE-124
CWE-191
Buffer Underflow
Integer Underflow (Wrap or Wraparound)
|
CVE-2026-41499
|
2026-05-1 22:01 |
2026-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
506
|
9.8 |
CRITICAL
Network
|
arc53
|
docsgpt
|
DocsGPT is a GPT-powered chat for documentation. From version 0.15.0 to before version 0.16.0, an attacker accessing both the official DocsGPT website or any local and public deployment, can craft a …
|
CWE-77
Command Injection
|
CVE-2026-26015
|
2026-05-1 21:56 |
2026-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
507
|
7.5 |
HIGH
Network
|
postgresql
|
postgresql_jdbc_driver
|
pgjdbc is an open source postgresql JDBC Driver. From version 42.2.0 to before version 42.7.11, pgjdbc is vulnerable to a client-side denial of service during SCRAM-SHA-256 authentication. A maliciou…
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2026-42198
|
2026-05-1 21:51 |
2026-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
508
|
7.8 |
HIGH
Local
|
freebsd
|
freebsd
|
An operator precedence bug in the kernel results in a scenario where a buffer overflow causes attacker-controlled data to overwrite adjacent execve(2) argument buffers.
The bug may be exploitable by…
|
CWE-783
Operator Precedence Logic Error
|
CVE-2026-7270
|
2026-05-1 21:47 |
2026-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
509
|
7.5 |
HIGH
Network
|
freebsd
|
freebsd
|
Incorrect packet validation allowed unbounded recursion parsing SCTP chunk parameters. This can eventually result in a stack overflow and panic.
Remote attackers can craft packets which cause affec…
|
CWE-674
CWE-791
Uncontrolled Recursion
Incomplete Filtering of Special Elements
|
CVE-2026-7164
|
2026-05-1 21:46 |
2026-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
510
|
7.8 |
HIGH
Local
|
freebsd
|
freebsd
|
When exchanging data over a socket, libnv uses select(2) to wait for data to arrive. However, it does not verify whether the provided socket descriptor fits in select(2)'s file descriptor set size l…
|
CWE-121
Stack-based Buffer Overflow
|
CVE-2026-39457
|
2026-05-1 21:41 |
2026-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
