|
3191
|
8.8 |
HIGH
Network
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
cifs: Fix locking usage for tcon fields
We used to use the cifs_tcp_ses_lock to protect a lot of objects
that are not just the se…
|
CWE-667
Improper Locking
|
CVE-2026-43215
|
2026-05-12 04:44 |
2026-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3192
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
net: Drop the lock in skb_may_tx_timestamp()
skb_may_tx_timestamp() may acquire sock::sk_callback_lock. The lock must
not be take…
|
CWE-476
NULL Pointer Dereference
|
CVE-2026-43216
|
2026-05-12 04:28 |
2026-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3193
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
media: iris: gen2: Add sanity check for session stop
In iris_kill_session, inst->state is set to IRIS_INST_ERROR and
session_clos…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2026-43217
|
2026-05-12 04:27 |
2026-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3194
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
media: i2c/tw9903: Fix potential memory leak in tw9903_probe()
In one of the error paths in tw9903_probe(), the memory allocated …
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2026-43218
|
2026-05-12 04:27 |
2026-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3195
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
HID: prodikeys: Check presence of pm->input_ep82
Fake USB devices can send their own report descriptors for which the
input_mappi…
|
CWE-476
NULL Pointer Dereference
|
CVE-2026-43251
|
2026-05-12 03:51 |
2026-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3196
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
mptcp: pm: in-kernel: always set ID as avail when rm endp
Syzkaller managed to find a combination of actions that was generating
…
|
CWE-667
Improper Locking
|
CVE-2026-43252
|
2026-05-12 03:49 |
2026-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3197
|
7.5 |
HIGH
Network
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
iommu/amd: move wait_on_sem() out of spinlock
With iommu.strict=1, the existing completion wait path can cause soft
lockups under…
|
CWE-667
Improper Locking
|
CVE-2026-43253
|
2026-05-12 03:40 |
2026-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3198
|
6.5 |
MEDIUM
Adjacent
|
watchguard
|
agent
|
Stack-based Buffer Overflow vulnerability in the WatchGuard Agent discovery service on Windows allows Overflow Buffers. An unauthenticated attacker on the same local network could exploit this vulner…
|
CWE-121
Stack-based Buffer Overflow
|
CVE-2026-41287
|
2026-05-12 03:36 |
2026-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3199
|
6.5 |
MEDIUM
Adjacent
|
watchguard
|
agent
|
Stack-based Buffer Overflow vulnerability in the WatchGuard Agent discovery service on Windows allows Overflow Buffers. An unauthenticated attacker on the same local network could exploit this vulner…
|
CWE-121
Stack-based Buffer Overflow
|
CVE-2026-41286
|
2026-05-12 03:36 |
2026-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3200
|
7.8 |
HIGH
Local
|
watchguard
|
agent
|
Incorrect permission assignment for a resource in the patch management component of the WatchGuard Agent on Windows allows an authenticated local user to elevate their privileges to NT AUTHORITY\\SYS…
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2026-41288
|
2026-05-12 03:35 |
2026-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
