|
1871
|
7.5 |
HIGH
Network
|
-
|
-
|
In the Linux kernel, the following vulnerability has been resolved:
xprtrdma: Decrement re_receiving on the early exit paths
In the event that rpcrdma_post_recvs() fails to create a work request
(d…
|
-
|
CVE-2026-43469
|
2026-05-12 23:10 |
2026-05-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1872
|
- |
|
-
|
-
|
In the Linux kernel, the following vulnerability has been resolved:
nfs: return EISDIR on nfs3_proc_create if d_alias is a dir
If we found an alias through nfs3_do_create/nfs_add_or_obtain
/d_splic…
|
-
|
CVE-2026-43470
|
2026-05-12 23:10 |
2026-05-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1873
|
- |
|
-
|
-
|
In the Linux kernel, the following vulnerability has been resolved:
scsi: ufs: core: Fix possible NULL pointer dereference in ufshcd_add_command_trace()
The kernel log indicates a crash in ufshcd_a…
|
-
|
CVE-2026-43471
|
2026-05-12 23:10 |
2026-05-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1874
|
- |
|
-
|
-
|
In the Linux kernel, the following vulnerability has been resolved:
unshare: fix unshare_fs() handling
There's an unpleasant corner case in unshare(2), when we have a
CLONE_NEWNS in flags and curre…
|
-
|
CVE-2026-43472
|
2026-05-12 23:10 |
2026-05-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1875
|
- |
|
-
|
-
|
In the Linux kernel, the following vulnerability has been resolved:
scsi: storvsc: Fix scheduling while atomic on PREEMPT_RT
This resolves the follow splat and lock-up when running with PREEMPT_RT
…
|
-
|
CVE-2026-43475
|
2026-05-12 23:10 |
2026-05-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1876
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A weakness has been identified in D-Link DIR-816 1.10CNB05_R1B011D88210. Affected by this vulnerability is the function sub_445E7C of the file /goform/formDMZ.cgi. This manipulation causes command in…
|
CWE-74
CWE-77
Injection
Command Injection
|
CVE-2026-8344
|
2026-05-12 23:09 |
2026-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1877
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A security vulnerability has been detected in D-Link DIR-816 1.10CNB05_R1B011D88210. Affected by this issue is the function sub_445E7C of the file /goform/singlePortForward. Such manipulation of the …
|
CWE-74
CWE-77
Injection
Command Injection
|
CVE-2026-8345
|
2026-05-12 23:09 |
2026-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1878
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was detected in D-Link DIR-816 1.10CNB05_R1B011D88210. This affects the function portForward. Performing a manipulation of the argument ip_address results in command injection. The at…
|
CWE-74
CWE-77
Injection
Command Injection
|
CVE-2026-8346
|
2026-05-12 23:09 |
2026-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1879
|
4.3 |
MEDIUM
Network
|
onyx
|
onyx
|
Onyx is an open-source AI platform. Prior to versions 3.0.9, 3.1.6, and 3.2.6, the POST /chat/stop-chat-session/{chat_session_id} endpoint lets any authenticated user stop any other user's active cha…
|
CWE-639
Authorization Bypass Through User-Controlled Key
|
CVE-2026-42276
|
2026-05-12 23:08 |
2026-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1880
|
7.1 |
HIGH
Network
|
legeling
|
prompthub
|
PromptHub is an all-in-one AI toolbox for prompt, skill, and agent management. From version 0.4.9 to before version 0.5.4, apps/web/src/routes/skills.ts exposes an authenticated endpoint POST /api/sk…
|
CWE-20
CWE-693
CWE-918
Improper Input Validation
Protection Mechanism Failure
Server-Side Request Forgery (SSRF)
|
CVE-2026-42261
|
2026-05-12 23:06 |
2026-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
