|
1401
|
8.8 |
HIGH
Network
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ksmbd: validate num_aces and harden ACE walk in smb_inherit_dacl()
smb_inherit_dacl() trusts the on-disk num_aces value from the …
|
NVD-CWE-noinfo
|
CVE-2026-31706
|
2026-05-7 05:27 |
2026-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1402
|
7.3 |
HIGH
Network
|
osrg
|
gobgp
|
A vulnerability was found in osrg GoBGP up to 4.3.0. Affected is the function PathAttributeAigp.DecodeFromBytes of the file pkg/packet/bgp/bgp.go of the component AIGP Attribute Parser. Performing a …
|
CWE-119
CWE-120
Incorrect Access of Indexable Resource ('Range Error')
Classic Buffer Overflow
|
CVE-2026-7735
|
2026-05-7 05:27 |
2026-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1403
|
7.5 |
HIGH
Network
|
osrg
|
gobgp
|
A vulnerability has been found in osrg GoBGP up to 4.3.0. This impacts the function SRv6L3ServiceAttribute.DecodeFromBytes of the file pkg/packet/bgp/prefix_sid.go of the component SRv6 L3 Service. S…
|
CWE-404
Improper Resource Shutdown or Release
|
CVE-2026-7734
|
2026-05-7 05:26 |
2026-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1404
|
7.1 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ksmbd: validate response sizes in ipc_validate_msg()
ipc_validate_msg() computes the expected message size for each
response type…
|
CWE-787
Out-of-bounds Write
|
CVE-2026-31707
|
2026-05-7 05:26 |
2026-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1405
|
8.1 |
HIGH
Network
|
trendnet
|
tew-821dap_firmware
|
A vulnerability was found in TRENDnet TEW-821DAP up to 1.12B01. This impacts the function platform_do_upgrade_cameo_dev of the file cameo_dev.sh of the component Firmware Update Handler. Performing a…
|
CWE-345
Insufficient Verification of Data Authenticity
|
CVE-2026-7611
|
2026-05-7 05:26 |
2026-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1406
|
8.1 |
HIGH
Network
|
trendnet
|
tew-821dap_firmware
|
A vulnerability has been found in TRENDnet TEW-821DAP 1.12B01. This affects an unknown function of the file /www/cgi/ssi of the component Firmware Update. Such manipulation leads to cleartext transmi…
|
CWE-310
CWE-319
Cryptographic Issues
Cleartext Transmission of Sensitive Information
|
CVE-2026-7610
|
2026-05-7 05:25 |
2026-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1407
|
8.1 |
HIGH
Network
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
smb: client: fix OOB read in smb2_ioctl_query_info QUERY_INFO path
smb2_ioctl_query_info() has two response-copy branches: PASSTH…
|
CWE-125
Out-of-bounds Read
|
CVE-2026-31708
|
2026-05-7 05:25 |
2026-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1408
|
8.8 |
HIGH
Network
|
trendnet
|
tew-821dap_firmware
|
A flaw has been found in TRENDnet TEW-821DAP up to 1.12B01. The impacted element is the function tools_diagnostic of the file /tmp/diagnostic of the component Firmware Udpate. This manipulation cause…
|
CWE-77
CWE-78
Command Injection
OS Command
|
CVE-2026-7609
|
2026-05-7 05:24 |
2026-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1409
|
8.0 |
HIGH
Adjacent
|
trendnet
|
tew-821dap_firmware
|
A vulnerability was detected in TRENDnet TEW-821DAP up to 1.12B01. The affected element is the function tools_diagnostic. The manipulation results in os command injection. The exploit is now public a…
|
CWE-77
CWE-78
Command Injection
OS Command
|
CVE-2026-7608
|
2026-05-7 05:24 |
2026-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1410
|
8.8 |
HIGH
Network
|
trendnet
|
tew-821dap_firmware
|
A security vulnerability has been detected in TRENDnet TEW-821DAP 1.12B01. Impacted is the function auto_update_firmware of the component Firmware Udpate. The manipulation of the argument str leads t…
|
CWE-119
CWE-120
Incorrect Access of Indexable Resource ('Range Error')
Classic Buffer Overflow
|
CVE-2026-7607
|
2026-05-7 05:23 |
2026-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
