CVE-2026-41139
Red Hat
HIGH
MAY 07, 2026
mathjs: math.js: Arbitrary code execution via expression parser
IMPORTANT severity advisory. See advisory for affected packages.
Affected: RHEL · Rocky Linux · CentOS Stream
Patch: sudo dnf update — see RHSA for package list
CVE-2026-43116
Red Hat
HIGH
MAY 06, 2026
kernel: netfilter: ctnetlink: ensure safe access to master conntrack
IMPORTANT severity advisory. See advisory for affected packages.
Affected: RHEL · Rocky Linux · CentOS Stream
Patch: sudo dnf update — see RHSA for package list
CVE-2026-43110
Red Hat
HIGH
MAY 06, 2026
kernel: wifi: brcmfmac: validate bsscfg indices in IF events
IMPORTANT severity advisory. See advisory for affected packages.
Affected: RHEL · Rocky Linux · CentOS Stream
Patch: sudo dnf update — see RHSA for package list
CVE-2026-43074
Red Hat
HIGH
MAY 06, 2026
kernel: eventpoll: defer struct eventpoll free to RCU grace period
IMPORTANT severity advisory. See advisory for affected packages.
Affected: RHEL · Rocky Linux · CentOS Stream
Patch: sudo dnf update — see RHSA for package list
CVE-2026-43077
Red Hat
HIGH
MAY 06, 2026
kernel: crypto: algif_aead - Fix minimum RX size check for decryption
IMPORTANT severity advisory. Affected packages: kernel-0:4.18.0-553.123.1.el8_10, kernel-0:4.18.0-477.139.1.el8_8, kernel-rt-0:5.14.0-70.178.1.rt21.250.el9_0.
Affected: RHEL · Rocky Linux · CentOS Stream
Patch: sudo dnf update — see RHSA for package list
CVE-2026-43078
Red Hat
HIGH
MAY 06, 2026
kernel: crypto: af_alg - Fix page reassignment overflow in af_alg_pull_tsgl
IMPORTANT severity advisory. See advisory for affected packages.
Affected: RHEL · Rocky Linux · CentOS Stream
Patch: sudo dnf update — see RHSA for package list
CVE-2026-43163
Red Hat
HIGH
MAY 06, 2026
kernel: md/bitmap: fix GPF in write_page caused by resize race
IMPORTANT severity advisory. See advisory for affected packages.
Affected: RHEL · Rocky Linux · CentOS Stream
Patch: sudo dnf update — see RHSA for package list
CVE-2026-43190
Red Hat
HIGH
MAY 06, 2026
kernel: netfilter: xt_tcpmss: check remaining length before reading optlen
IMPORTANT severity advisory. See advisory for affected packages.
Affected: RHEL · Rocky Linux · CentOS Stream
Patch: sudo dnf update — see RHSA for package list
CVE-2026-43208
Red Hat
HIGH
MAY 06, 2026
kernel: net: do not pass flow_id to set_rps_cpu()
IMPORTANT severity advisory. See advisory for affected packages.
Affected: RHEL · Rocky Linux · CentOS Stream
Patch: sudo dnf update — see RHSA for package list
CVE-2026-43248
Red Hat
HIGH
MAY 06, 2026
kernel: vhost: move vdpa group bound check to vhost_vdpa
IMPORTANT severity advisory. See advisory for affected packages.
Affected: RHEL · Rocky Linux · CentOS Stream
Patch: sudo dnf update — see RHSA for package list
CVE-2026-43205
Red Hat
HIGH
MAY 06, 2026
kernel: dpaa2-switch: validate num_ifs to prevent out-of-bounds write
IMPORTANT severity advisory. See advisory for affected packages.
Affected: RHEL · Rocky Linux · CentOS Stream
Patch: sudo dnf update — see RHSA for package list
CVE-2026-43186
Red Hat
HIGH
MAY 06, 2026
kernel: ipv6: ioam: fix heap buffer overflow in __ioam6_fill_trace_data()
IMPORTANT severity advisory. See advisory for affected packages.
Affected: RHEL · Rocky Linux · CentOS Stream
Patch: sudo dnf update — see RHSA for package list
CVE-2026-43128
Red Hat
HIGH
MAY 06, 2026
kernel: RDMA/umem: Fix double dma_buf_unpin in failure path
IMPORTANT severity advisory. See advisory for affected packages.
Affected: RHEL · Rocky Linux · CentOS Stream
Patch: sudo dnf update — see RHSA for package list
CVE-2026-43158
Red Hat
HIGH
MAY 06, 2026
kernel: xfs: fix freemap adjustments when adding xattrs to leaf blocks
IMPORTANT severity advisory. See advisory for affected packages.
Affected: RHEL · Rocky Linux · CentOS Stream
Patch: sudo dnf update — see RHSA for package list
CVE-2026-43279
Red Hat
HIGH
MAY 06, 2026
kernel: ALSA: usb-audio: Add sanity check for OOB writes at silencing
IMPORTANT severity advisory. See advisory for affected packages.
Affected: RHEL · Rocky Linux · CentOS Stream
Patch: sudo dnf update — see RHSA for package list
CVE-2026-31431
CISA KEV
CRITICAL
MAY 01, 2026
Linux Kernel contains an incorrect resource transfer between spheres vulnerability that could allow for...
Linux Kernel contains an incorrect resource transfer between spheres vulnerability that could allow for privilege escalation.
Affected: Linux · Kernel
Patch: Apply vendor patch — see advisory
CVE-2026-34197
CISA KEV
CRITICAL
APR 16, 2026
Apache ActiveMQ contains an improper input validation vulnerability that allows for code injection.
Apache ActiveMQ contains an improper input validation vulnerability that allows for code injection.
Affected: Apache · ActiveMQ
Patch: Apply vendor patch — see advisory
CVE-2026-31419
NVD
HIGH · CVSS 7.8
APR 13, 2026
In the Linux kernel, the following vulnerability has been resolved:
net: bonding: fix use-after-free in...
In the Linux kernel, the following vulnerability has been resolved:
net: bonding: fix use-after-free in bond_xmit_broadcast()
bond_xmit_broadcast() reuses the original skb for the last slave
(determined by bond_is_last_slave()) and clones it for others.
Concurrent slave enslave/release can mutate
Affected: Linux systems — see advisory for full scope
Patch: Apply vendor patch — see NVD advisory
CVE-2026-31417
NVD
HIGH · CVSS 7.5
APR 13, 2026
In the Linux kernel, the following vulnerability has been resolved:
net/x25: Fix overflow when...
In the Linux kernel, the following vulnerability has been resolved:
net/x25: Fix overflow when accumulating packets
Add a check to ensure that `x25_sock.fraglen` does not overflow.
The `fraglen` also needs to be resetted when purging `fragment_queue` in
`x25_clear_queues()`.
Affected: Linux systems — see advisory for full scope
Patch: Apply vendor patch — see NVD advisory
CVE-2026-31414
NVD
CRITICAL · CVSS 9.8
APR 13, 2026
In the Linux kernel, the following vulnerability has been resolved:
netfilter: nf_conntrack_expect: use...
In the Linux kernel, the following vulnerability has been resolved:
netfilter: nf_conntrack_expect: use expect->helper
Use expect->helper in ctnetlink and /proc to dump the helper name.
Using nfct_help() without holding a reference to the master conntrack
is unsafe.
Use exp->master->helper in ctn
Affected: Linux systems — see advisory for full scope
Patch: Apply vendor patch — see NVD advisory
CVE-2026-31413
NVD
HIGH · CVSS 7.8
APR 12, 2026
In the Linux kernel, the following vulnerability has been resolved:
bpf: Fix unsound scalar forking in...
In the Linux kernel, the following vulnerability has been resolved:
bpf: Fix unsound scalar forking in maybe_fork_scalars() for BPF_OR
maybe_fork_scalars() is called for both BPF_AND and BPF_OR when the
source operand is a constant. When dst has signed range [-1, 0], it
forks the verifier state:
Affected: Linux systems — see advisory for full scope
Patch: Apply vendor patch — see NVD advisory
CVE-2025-15480
NVD
CRITICAL · CVSS 9.1
APR 09, 2026
In Ubuntu, ubuntu-desktop-provision version 24.04.4 could leak sensitive user credentials during crash...
In Ubuntu, ubuntu-desktop-provision version 24.04.4 could leak sensitive user credentials during crash reporting. Upon installation failure, if a user submitted a bug report to Launchpad, ubuntu-desktop-provision could include the user's password hash in the attached logs.
Affected: Linux systems — see advisory for full scope
Patch: Apply vendor patch — see NVD advisory
CVE-2025-14551
NVD
HIGH · CVSS 8.1
APR 09, 2026
In Ubuntu, Subiquity version 24.04.4 could leak sensitive user credentials during crash reporting. Upon...
In Ubuntu, Subiquity version 24.04.4 could leak sensitive user credentials during crash reporting. Upon installation failure, if a user submitted a bug report to Launchpad, Subiquity could include certain user credentials, such as the user's plaintext Wi-Fi password, in the attached logs.
Affected: Linux systems — see advisory for full scope
Patch: Apply vendor patch — see NVD advisory
CVE-2025-43520
CISA KEV
CRITICAL
MAR 20, 2026
Apple watchOS, iOS, iPadOS, macOS, visionOS, and tvOS contain a classic buffer overflow vulnerability...
Apple watchOS, iOS, iPadOS, macOS, visionOS, and tvOS contain a classic buffer overflow vulnerability which could allow a malicious application to cause unexpected system termination or write kernel memory.
Affected: Apple · Multiple Products
Patch: Apply vendor patch — see advisory
CVE-2023-41974
CISA KEV
CRITICAL
MAR 05, 2026
Apple iOS and iPadOS contain a use-after-free vulnerability. An app may be able to execute arbitrary code...
Apple iOS and iPadOS contain a use-after-free vulnerability. An app may be able to execute arbitrary code with kernel privileges.
Affected: Apple · iOS and iPadOS
Patch: Apply vendor patch — see advisory
CVE-2026-20127
CISA KEV
CRITICAL
FEB 25, 2026
Cisco Catalyst SD-WAN Controller, formerly SD-WAN vSmart, and Cisco Catalyst SD-WAN Manager, formerly...
Cisco Catalyst SD-WAN Controller, formerly SD-WAN vSmart, and Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, contain an authentication bypass vulnerability could allow an unauthenticated, remote attacker to bypass authentication and obtain administrative privileges on an affected system....
Affected: Cisco · Catalyst SD-WAN Controller and Manager
Patch: Please adhere to CISA’s guidelines to assess exposure and mitigate risks associated with Cisco SD-WAN devices as outlines in CISA’s Emergency Directive 26-03 (URL listed below in Notes) and CISA’s “Hunt & Hardening Guidance for Cisco SD-WAN Devices (URL listed below in Notes). Adhere to the applicable BOD 22-01 guidance for cloud services or discontinue use of the product if mitigations are not available
CVE-2024-7694
CISA KEV
CRITICAL
FEB 17, 2026
TeamT5 ThreatSonar Anti-Ransomware contains an unrestricted upload of file with dangerous type...
TeamT5 ThreatSonar Anti-Ransomware contains an unrestricted upload of file with dangerous type vulnerability. ThreatSonar Anti-Ransomware does not properly validate the content of uploaded files. Remote attackers with administrator privileges on the product platform can upload malicious files, which...
Affected: TeamT5 · ThreatSonar Anti-Ransomware
Patch: Apply vendor patch — see advisory
CVE-2018-14634
CISA KEV
CRITICAL
JAN 26, 2026
Linux Kernel contains an integer overflow vulnerability in the create_elf_tables() function which could...
Linux Kernel contains an integer overflow vulnerability in the create_elf_tables() function which could allow an unprivileged local user with access to SUID (or otherwise privileged) binary to escalate their privileges on the system.
Affected: Linux · Kernel
Patch: Apply vendor patch — see advisory
CVE-2025-62215
CISA KEV
CRITICAL
NOV 12, 2025
Microsoft Windows Kernel contains a race condition vulnerability that allows a local attacker with...
Microsoft Windows Kernel contains a race condition vulnerability that allows a local attacker with low-level privileges to escalate privileges. Successful exploitation of this vulnerability could enable the attacker to gain SYSTEM-level access.
Affected: Microsoft · Windows
Patch: Apply vendor patch — see advisory
CVE-2025-48703
CISA KEV
CRITICAL
NOV 04, 2025
CWP Control Web Panel (formerly CentOS Web Panel) contains an OS command Injection vulnerability that...
CWP Control Web Panel (formerly CentOS Web Panel) contains an OS command Injection vulnerability that allows unauthenticated remote code execution via shell metacharacters in the t_total parameter in a filemanager changePerm request. A valid non-root username must be known.
Affected: CWP · Control Web Panel
Patch: Apply vendor patch — see advisory
CVE-2025-47827
CISA KEV
CRITICAL
OCT 14, 2025
IGEL OS contains a use of a key past its expiration date vulnerability that allows for Secure Boot bypass....
IGEL OS contains a use of a key past its expiration date vulnerability that allows for Secure Boot bypass. The igel-flash-driver module improperly verifies a cryptographic signature. Ultimately, a crafted root filesystem can be mounted from an unverified SquashFS image.
Affected: IGEL · IGEL OS
Patch: Apply vendor patch — see advisory
CVE-2021-22555
CISA KEV
CRITICAL
OCT 06, 2025
Linux Kernel contains a heap out-of-bounds write vulnerability that could allow an attacker to gain...
Linux Kernel contains a heap out-of-bounds write vulnerability that could allow an attacker to gain privileges or cause a DoS (via heap memory corruption) through user name space.
Affected: Linux · Kernel
Patch: Apply vendor patch — see advisory
CVE-2011-3402
CISA KEV
CRITICAL
OCT 06, 2025
Microsoft Windows Kernel contains an unspecified vulnerability in the TrueType font parsing engine in...
Microsoft Windows Kernel contains an unspecified vulnerability in the TrueType font parsing engine in win32k.sys in the kernel-mode drivers that allows remote attackers to execute arbitrary code via crafted font data in a Word document or web page.
Affected: Microsoft · Windows
Patch: Apply vendor patch — see advisory
CVE-2014-6278
CISA KEV
CRITICAL
OCT 02, 2025
GNU Bash contains an OS command injection vulnerability which allows remote attackers to execute arbitrary...
GNU Bash contains an OS command injection vulnerability which allows remote attackers to execute arbitrary commands via a crafted environment.
Affected: GNU · GNU Bash
Patch: Apply vendor patch — see advisory
CVE-2025-32463
CISA KEV
CRITICAL
SEP 29, 2025
Sudo contains an inclusion of functionality from untrusted control sphere vulnerability. This...
Sudo contains an inclusion of functionality from untrusted control sphere vulnerability. This vulnerability could allow local attacker to leverage sudo’s -R (--chroot) option to run arbitrary commands as root, even if they are not listed in the sudoers file.
Affected: Sudo · Sudo
Patch: Apply vendor patch — see advisory
CVE-2025-38352
CISA KEV
CRITICAL
SEP 04, 2025
Linux kernel contains a time-of-check time-of-use (TOCTOU) race condition vulnerability that has a high...
Linux kernel contains a time-of-check time-of-use (TOCTOU) race condition vulnerability that has a high impact on confidentiality, integrity, and availability.
Affected: Linux · Kernel
Patch: Apply vendor patch — see advisory
CVE-2023-0386
CISA KEV
CRITICAL
JUN 17, 2025
Linux Kernel contains an improper ownership management vulnerability, where unauthorized access to the...
Linux Kernel contains an improper ownership management vulnerability, where unauthorized access to the execution of the setuid file with capabilities was found in the Linux kernel’s OverlayFS subsystem in how a user copies a capable file from a nosuid mount into another mount. This uid mapping bug...
Affected: Linux · Kernel
Patch: Apply vendor patch — see advisory
CVE-2024-38475
CISA KEV
CRITICAL
MAY 01, 2025
Apache HTTP Server contains an improper escaping of output vulnerability in mod_rewrite that allows an...
Apache HTTP Server contains an improper escaping of output vulnerability in mod_rewrite that allows an attacker to map URLs to filesystem locations that are permitted to be served by the server but are not intentionally/directly reachable by any URL, resulting in code execution or source code...
Affected: Apache · HTTP Server
Patch: Apply vendor patch — see advisory
CVE-2024-53150
CISA KEV
CRITICAL
APR 09, 2025
Linux Kernel contains an out-of-bounds read vulnerability in the USB-audio driver that allows a local,...
Linux Kernel contains an out-of-bounds read vulnerability in the USB-audio driver that allows a local, privileged attacker to obtain potentially sensitive information.
Affected: Linux · Kernel
Patch: Apply vendor patch — see advisory
CVE-2024-53197
CISA KEV
CRITICAL
APR 09, 2025
Linux Kernel contains an out-of-bounds access vulnerability in the USB-audio driver that allows an...
Linux Kernel contains an out-of-bounds access vulnerability in the USB-audio driver that allows an attacker with physical access to the system to use a malicious USB device to potentially manipulate system memory, escalate privileges, or execute arbitrary code.
Affected: Linux · Kernel
Patch: Apply vendor patch — see advisory
CVE-2025-24813
CISA KEV
CRITICAL
APR 01, 2025
Apache Tomcat contains a path equivalence vulnerability that allows a remote attacker to execute code,...
Apache Tomcat contains a path equivalence vulnerability that allows a remote attacker to execute code, disclose information, or inject malicious content via a partial PUT request.
Affected: Apache · Tomcat
Patch: Apply vendor patch — see advisory
CVE-2025-24983
CISA KEV
CRITICAL
MAR 11, 2025
Microsoft Windows Win32 Kernel Subsystem contains a use-after-free vulnerability that allows an authorized...
Microsoft Windows Win32 Kernel Subsystem contains a use-after-free vulnerability that allows an authorized attacker to elevate privileges locally.
Affected: Microsoft · Windows
Patch: Apply vendor patch — see advisory
CVE-2025-22225
CISA KEV
CRITICAL
MAR 04, 2025
VMware ESXi contains an arbitrary write vulnerability. Successful exploitation allows an attacker with...
VMware ESXi contains an arbitrary write vulnerability. Successful exploitation allows an attacker with privileges within the VMX process to trigger an arbitrary kernel write leading to an escape of the sandbox.
Affected: VMware · ESXi
Patch: Apply vendor patch — see advisory
CVE-2024-50302
CISA KEV
CRITICAL
MAR 04, 2025
Linux Kernel — The Linux kernel contains a use of uninitialized resource vulnerability that allows an...
The Linux kernel contains a use of uninitialized resource vulnerability that allows an attacker to leak kernel memory via a specially crafted HID report.
Affected: Linux · Kernel
Patch: Apply vendor patch — see advisory
CVE-2018-8639
CISA KEV
CRITICAL
MAR 03, 2025
Microsoft Windows Win32k contains an improper resource shutdown or release vulnerability that allows for...
Microsoft Windows Win32k contains an improper resource shutdown or release vulnerability that allows for local, authenticated privilege escalation. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode.
Affected: Microsoft · Windows
Patch: Apply vendor patch — see advisory
CVE-2017-3066
CISA KEV
CRITICAL
FEB 24, 2025
Adobe ColdFusion contains a deserialization vulnerability in the Apache BlazeDS library that allows for...
Adobe ColdFusion contains a deserialization vulnerability in the Apache BlazeDS library that allows for arbitrary code execution.
Affected: Adobe · ColdFusion
Patch: Apply vendor patch — see advisory
CVE-2024-53104
CISA KEV
CRITICAL
FEB 05, 2025
Linux kernel contains an out-of-bounds write vulnerability in the uvc_parse_streaming component of the USB...
Linux kernel contains an out-of-bounds write vulnerability in the uvc_parse_streaming component of the USB Video Class (UVC) driver that could allow for physical escalation of privilege.
Affected: Linux · Kernel
Patch: Apply vendor patch — see advisory
CVE-2024-45195
CISA KEV
CRITICAL
FEB 04, 2025
Apache OFBiz contains a forced browsing vulnerability that allows a remote attacker to obtain unauthorized...
Apache OFBiz contains a forced browsing vulnerability that allows a remote attacker to obtain unauthorized access.
Affected: Apache · OFBiz
Patch: Apply vendor patch — see advisory
CVE-2025-21335
CISA KEV
CRITICAL
JAN 14, 2025
Microsoft Windows Hyper-V NT Kernel Integration VSP contains a use-after-free vulnerability that allows a...
Microsoft Windows Hyper-V NT Kernel Integration VSP contains a use-after-free vulnerability that allows a local attacker to gain SYSTEM privileges.
Affected: Microsoft · Windows
Patch: Apply vendor patch — see advisory
CVE-2025-21334
CISA KEV
CRITICAL
JAN 14, 2025
Microsoft Windows Hyper-V NT Kernel Integration VSP contains a use-after-free vulnerability that allows a...
Microsoft Windows Hyper-V NT Kernel Integration VSP contains a use-after-free vulnerability that allows a local attacker to gain SYSTEM privileges.
Affected: Microsoft · Windows
Patch: Apply vendor patch — see advisory
CVE-2025-21333
CISA KEV
CRITICAL
JAN 14, 2025
Microsoft Windows Hyper-V NT Kernel Integration VSP contains a heap-based buffer overflow vulnerability...
Microsoft Windows Hyper-V NT Kernel Integration VSP contains a heap-based buffer overflow vulnerability that allows a local attacker to gain SYSTEM privileges.
Affected: Microsoft · Windows
Patch: Apply vendor patch — see advisory
CVE-2024-55956
CISA KEV
CRITICAL
DEC 17, 2024
Cleo Harmony, VLTrader, and LexiCom, which are managed file transfer products, contain an unrestricted...
Cleo Harmony, VLTrader, and LexiCom, which are managed file transfer products, contain an unrestricted file upload vulnerability that could allow an unauthenticated user to import and execute arbitrary bash or PowerShell commands on the host system by leveraging the default settings of the Autorun...
Affected: Cleo · Multiple Products
Patch: Apply vendor patch — see advisory
CVE-2024-35250
CISA KEV
CRITICAL
DEC 16, 2024
Microsoft Windows Kernel-Mode Driver contains an untrusted pointer dereference vulnerability that allows a...
Microsoft Windows Kernel-Mode Driver contains an untrusted pointer dereference vulnerability that allows a local attacker to escalate privileges.
Affected: Microsoft · Windows
Patch: Apply vendor patch — see advisory
CVE-2024-30088
CISA KEV
CRITICAL
OCT 15, 2024
Microsoft Windows Kernel contains a time-of-check to time-of-use (TOCTOU) race condition vulnerability...
Microsoft Windows Kernel contains a time-of-check to time-of-use (TOCTOU) race condition vulnerability that could allow for privilege escalation.
Affected: Microsoft · Windows
Patch: Apply vendor patch — see advisory
CVE-2020-15415
CISA KEV
CRITICAL
SEP 30, 2024
DrayTek Vigor3900, Vigor2960, and Vigor300B devices contain an OS command injection vulnerability in...
DrayTek Vigor3900, Vigor2960, and Vigor300B devices contain an OS command injection vulnerability in cgi-bin/mainfunction.cgi/cvmcfgupload that allows for remote code execution via shell metacharacters in a filename when the text/x-python-script content type is used.
Affected: DrayTek · Multiple Vigor Routers
Patch: Apply vendor patch — see advisory
CVE-2024-27348
CISA KEV
CRITICAL
SEP 18, 2024
Apache HugeGraph-Server contains an improper access control vulnerability that could allow a remote...
Apache HugeGraph-Server contains an improper access control vulnerability that could allow a remote attacker to execute arbitrary code.
Affected: Apache · HugeGraph-Server
Patch: Apply vendor patch — see advisory
CVE-2017-1000253
CISA KEV
CRITICAL
SEP 09, 2024
Linux kernel contains a position-independent executable (PIE) stack buffer corruption vulnerability in...
Linux kernel contains a position-independent executable (PIE) stack buffer corruption vulnerability in load_elf_ binary() that allows a local attacker to escalate privileges.
Affected: Linux · Kernel
Patch: Apply vendor patch — see advisory
CVE-2024-38856
CISA KEV
CRITICAL
AUG 27, 2024
Apache OFBiz contains an incorrect authorization vulnerability that could allow remote code execution via...
Apache OFBiz contains an incorrect authorization vulnerability that could allow remote code execution via a Groovy payload in the context of the OFBiz user process by an unauthenticated attacker.
Affected: Apache · OFBiz
Patch: Apply vendor patch — see advisory
CVE-2022-0185
CISA KEV
CRITICAL
AUG 21, 2024
Linux kernel contains a heap-based buffer overflow vulnerability in the legacy_parse_param function in the...
Linux kernel contains a heap-based buffer overflow vulnerability in the legacy_parse_param function in the Filesystem Context functionality. This allows an attacker to open a filesystem that does not support the Filesystem Context API and ultimately escalate privileges.
Affected: Linux · Kernel
Patch: Apply updates per vendor instructions or discontinue use of the product if updates are unavailable
CVE-2024-38106
CISA KEV
CRITICAL
AUG 13, 2024
Microsoft Windows Kernel contains an unspecified vulnerability that allows for privilege escalation,...
Microsoft Windows Kernel contains an unspecified vulnerability that allows for privilege escalation, enabling a local attacker to gain SYSTEM privileges. Successful exploitation of this vulnerability requires an attacker to win a race condition.
Affected: Microsoft · Windows
Patch: Apply vendor patch — see advisory
CVE-2024-32113
CISA KEV
CRITICAL
AUG 07, 2024
Apache OFBiz contains a path traversal vulnerability that could allow for remote code execution.
Apache OFBiz contains a path traversal vulnerability that could allow for remote code execution.
Affected: Apache · OFBiz
Patch: Apply vendor patch — see advisory
CVE-2024-36971
CISA KEV
CRITICAL
AUG 07, 2024
Android contains an unspecified vulnerability in the kernel that allows for remote code execution. This...
Android contains an unspecified vulnerability in the kernel that allows for remote code execution. This vulnerability resides in Linux Kernel and could impact other products, including but not limited to Android OS.
Affected: Android · Kernel
Patch: Apply vendor patch — see advisory
CVE-2012-4792
CISA KEV
CRITICAL
JUL 23, 2024
Microsoft Internet Explorer contains a use-after-free vulnerability that allows a remote attacker to...
Microsoft Internet Explorer contains a use-after-free vulnerability that allows a remote attacker to execute arbitrary code via a crafted web site that triggers access to an object that (1) was not properly allocated or (2) is deleted, as demonstrated by a CDwnBindInfo object.
Affected: Microsoft · Internet Explorer
Patch: The impacted product is end-of-life and should be disconnected if still in use
CVE-2022-2586
CISA KEV
CRITICAL
JUN 26, 2024
Linux Kernel contains a use-after-free vulnerability in the nft_object, allowing local attackers to...
Linux Kernel contains a use-after-free vulnerability in the nft_object, allowing local attackers to escalate privileges.
Affected: Linux · Kernel
Patch: Apply updates per vendor instructions or discontinue use of the product if updates are unavailable
CVE-2024-4610
CISA KEV
CRITICAL
JUN 12, 2024
Arm Bifrost and Valhall GPU kernel drivers contain a use-after-free vulnerability that allows a local,...
Arm Bifrost and Valhall GPU kernel drivers contain a use-after-free vulnerability that allows a local, non-privileged user to make improper GPU memory processing operations to gain access to already freed memory.
Affected: Arm · Mali GPU Kernel Driver
Patch: Apply vendor patch — see advisory
CVE-2024-1086
CISA KEV
CRITICAL
MAY 30, 2024
Linux kernel contains a use-after-free vulnerability in the netfilter: nf_tables component that allows an...
Linux kernel contains a use-after-free vulnerability in the netfilter: nf_tables component that allows an attacker to achieve local privilege escalation.
Affected: Linux · Kernel
Patch: Apply vendor patch — see advisory
CVE-2020-17519
CISA KEV
CRITICAL
MAY 23, 2024
Apache Flink contains an improper access control vulnerability that allows an attacker to read any file on...
Apache Flink contains an improper access control vulnerability that allows an attacker to read any file on the local filesystem of the JobManager through its REST interface.
Affected: Apache · Flink
Patch: Apply vendor patch — see advisory
CVE-2024-23225
CISA KEV
CRITICAL
MAR 06, 2024
Apple iOS, iPadOS, macOS, tvOS, watchOS, and visionOS kernel contain a memory corruption vulnerability...
Apple iOS, iPadOS, macOS, tvOS, watchOS, and visionOS kernel contain a memory corruption vulnerability that allows an attacker with arbitrary kernel read and write capability to bypass kernel memory protections.
Affected: Apple · Multiple Products
Patch: Apply vendor patch — see advisory
CVE-2024-23296
CISA KEV
CRITICAL
MAR 06, 2024
Apple iOS, iPadOS, macOS, tvOS, and watchOS RTKit contain a memory corruption vulnerability that allows an...
Apple iOS, iPadOS, macOS, tvOS, and watchOS RTKit contain a memory corruption vulnerability that allows an attacker with arbitrary kernel read and write capability to bypass kernel memory protections.
Affected: Apple · Multiple Products
Patch: Apply vendor patch — see advisory
CVE-2024-21338
CISA KEV
CRITICAL
MAR 04, 2024
Microsoft Windows Kernel contains an exposed IOCTL with insufficient access control vulnerability within...
Microsoft Windows Kernel contains an exposed IOCTL with insufficient access control vulnerability within the IOCTL (input and output control) dispatcher in appid.sys that allows a local attacker to achieve privilege escalation.
Affected: Microsoft · Windows
Patch: Apply vendor patch — see advisory
CVE-2023-27524
CISA KEV
CRITICAL
JAN 08, 2024
Apache Superset contains an insecure default initialization of a resource vulnerability that allows an...
Apache Superset contains an insecure default initialization of a resource vulnerability that allows an attacker to authenticate and access unauthorized resources on installations that have not altered the default configured SECRET_KEY according to installation instructions.
Affected: Apache · Superset
Patch: Apply vendor patch — see advisory
CVE-2023-33107
CISA KEV
CRITICAL
DEC 05, 2023
Qualcomm Multiple Chipsets — Multiple Qualcomm chipsets contain an integer overflow vulnerability due to...
Multiple Qualcomm chipsets contain an integer overflow vulnerability due to memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL call.
Affected: Qualcomm · Multiple Chipsets
Patch: Apply remediations or mitigations per vendor instructions or discontinue use of the product if remediation or mitigations are unavailable
CVE-2023-4911
CISA KEV
CRITICAL
NOV 21, 2023
GNU C Library's dynamic loader ld.so contains a buffer overflow vulnerability when processing the...
GNU C Library's dynamic loader ld.so contains a buffer overflow vulnerability when processing the GLIBC_TUNABLES environment variable, allowing a local attacker to execute code with elevated privileges.
Affected: GNU · GNU C Library
Patch: Apply vendor patch — see advisory
CVE-2023-46604
CISA KEV
CRITICAL
NOV 02, 2023
Apache ActiveMQ contains a deserialization of untrusted data vulnerability that may allow a remote...
Apache ActiveMQ contains a deserialization of untrusted data vulnerability that may allow a remote attacker with network access to a broker to run shell commands by manipulating serialized class types in the OpenWire protocol to cause the broker to instantiate any class on the classpath.
Affected: Apache · ActiveMQ
Patch: Apply vendor patch — see advisory
CVE-2023-4211
CISA KEV
CRITICAL
OCT 03, 2023
Arm Mali GPU Kernel Driver contains a use-after-free vulnerability that allows a local, non-privileged...
Arm Mali GPU Kernel Driver contains a use-after-free vulnerability that allows a local, non-privileged user to make improper GPU memory processing operations to gain access to already freed memory.
Affected: Arm · Mali GPU Kernel Driver
Patch: Apply vendor patch — see advisory
CVE-2018-14667
CISA KEV
CRITICAL
SEP 28, 2023
Red Hat JBoss RichFaces Framework contains an expression language injection vulnerability via the...
Red Hat JBoss RichFaces Framework contains an expression language injection vulnerability via the UserResource resource. A remote, unauthenticated attacker could exploit this vulnerability to execute malicious code using a chain of Java serialized objects via...
Affected: Red Hat · JBoss RichFaces Framework
Patch: Apply vendor patch — see advisory
CVE-2023-33246
CISA KEV
CRITICAL
SEP 06, 2023
Apache RocketMQ — Several components of Apache RocketMQ, including NameServer, Broker, and Controller, are...
Several components of Apache RocketMQ, including NameServer, Broker, and Controller, are exposed to the extranet and lack permission verification. An attacker can exploit this vulnerability by using the update configuration function to execute commands as the system users that RocketMQ is running as...
Affected: Apache · RocketMQ
Patch: Apply vendor patch — see advisory
CVE-2023-38035
CISA KEV
CRITICAL
AUG 22, 2023
Ivanti Sentry, formerly known as MobileIron Sentry, contains an authentication bypass vulnerability that...
Ivanti Sentry, formerly known as MobileIron Sentry, contains an authentication bypass vulnerability that may allow an attacker to bypass authentication controls on the administrative interface due to an insufficiently restrictive Apache HTTPD configuration.
Affected: Ivanti · Sentry
Patch: Apply vendor patch — see advisory
CVE-2023-38606
CISA KEV
CRITICAL
JUL 26, 2023
Apple iOS, iPadOS, macOS, tvOS, and watchOS contain an unspecified vulnerability allowing an app to modify...
Apple iOS, iPadOS, macOS, tvOS, and watchOS contain an unspecified vulnerability allowing an app to modify a sensitive kernel state.
Affected: Apple · Multiple Products
Patch: Apply vendor patch — see advisory
CVE-2021-29256
CISA KEV
CRITICAL
JUL 07, 2023
Arm Mali GPU Kernel Driver contains a use-after-free vulnerability that may allow a non-privileged user to...
Arm Mali GPU Kernel Driver contains a use-after-free vulnerability that may allow a non-privileged user to gain root privilege and/or disclose information.
Affected: Arm · Mali Graphics Processing Unit (GPU)
Patch: Apply updates per vendor instructions or discontinue use of the product if updates are unavailable
CVE-2021-25489
CISA KEV
CRITICAL
JUN 29, 2023
Samsung mobile devices contain an improper input validation vulnerability within the modem interface...
Samsung mobile devices contain an improper input validation vulnerability within the modem interface driver that results in a format string bug leading to kernel panic.
Affected: Samsung · Mobile Devices
Patch: Apply updates per vendor instructions or discontinue use of the product if updates are unavailable
No entries match the current filter.