CVE Database

110968+ vulnerabilities with CVSS scores, EPSS exploit predictions, and CISA KEV status. Updated daily.

Filter: All CRITICAL HIGH MEDIUM LOW CISA KEV
Sort: Newest CVSS EPSS
CVE-2026-33609
5.3 MEDIUM

Incomplete escaping of LDAP queries when running with 8bit-dns enabled allows users to perform queries of internal domain subtrees.

Apr 22, 2026
CVE-2026-33608
7.4 HIGH

An attacker can send a notify request that causes a new secondary domain to be added to the bind backend, but causes said backend to …

Apr 22, 2026
CVE-2026-33602
6.5 MEDIUM

A rogue backend can send a crafted UDP response with a query ID off by one related to the maximum configured value, triggering an out-of-bounds …

Apr 22, 2026
CVE-2026-33599
3.1 LOW

A rogue backend can send a crafted SVCB response to a Discovery of Designated Resolvers request, when requested via either the autoUpgrade (Lua) option to …

Apr 22, 2026
CVE-2026-33598
4.8 MEDIUM

A cached crafted response can cause an out-of-bounds read if custom Lua code calls getDomainListByAddress() or getAddressListByDomain() on a packet cache.

Apr 22, 2026
CVE-2026-33597
3.7 LOW

PRSD detection denial of service

Apr 22, 2026
CVE-2026-33596
3.1 LOW

A client might theoretically be able to cause a mismatch between queries sent to a backend and the received responses by sending a flood of …

Apr 22, 2026
CVE-2026-33595
5.3 MEDIUM

A client can trigger excessive memory allocation by generating a lot of errors responses over a single DoQ and DoH3 connection, as some resources were …

Apr 22, 2026
CVE-2026-33594
5.3 MEDIUM

A client can trigger excessive memory allocation by generating a lot of queries that are routed to an overloaded DoH backend, causing queries to accumulate …

Apr 22, 2026
CVE-2026-33593
7.5 HIGH

A client can trigger a divide by zero error leading to crash by sending a crafted DNSCrypt query.

Apr 22, 2026
CVE-2026-33254
5.3 MEDIUM

An attacker can create a large number of concurrent DoQ or DoH3 connections, causing unlimited memory allocation in DNSdist and leading to a denial of …

Apr 22, 2026
CVE-2026-31530
7.8 HIGH

In the Linux kernel, the following vulnerability has been resolved: cxl/port: Fix use after free of parent_port in cxl_detach_ep() cxl_detach_ep() is called during bottom-up removal …

Apr 22, 2026
CVE-2026-31529
5.5 MEDIUM

In the Linux kernel, the following vulnerability has been resolved: cxl/region: Fix leakage in __construct_region() Failing the first sysfs_update_group() needs to explicitly kfree the resource …

Apr 22, 2026
CVE-2026-31528
7.8 HIGH

In the Linux kernel, the following vulnerability has been resolved: perf: Make sure to use pmu_ctx->pmu for groups Oliver reported that x86_pmu_del() ended up doing …

Apr 22, 2026
CVE-2026-31527
7.8 HIGH

In the Linux kernel, the following vulnerability has been resolved: driver core: platform: use generic driver_override infrastructure When a driver is probed through __driver_attach(), the …

Apr 22, 2026
CVE-2026-31526
5.5 MEDIUM

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix exception exit lock checking for subprogs process_bpf_exit_full() passes check_lock = !curframe to check_resource_leak(), …

Apr 22, 2026
CVE-2026-31525
7.8 HIGH

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix undefined behavior in interpreter sdiv/smod for INT_MIN The BPF interpreter's signed 32-bit division …

Apr 22, 2026
CVE-2026-31524
5.5 MEDIUM

In the Linux kernel, the following vulnerability has been resolved: HID: asus: avoid memory leak in asus_report_fixup() The asus_report_fixup() function was returning a newly allocated …

Apr 22, 2026
CVE-2026-31523
4.7 MEDIUM

In the Linux kernel, the following vulnerability has been resolved: nvme-pci: ensure we're polling a polled queue A user can change the polled queue count …

Apr 22, 2026
CVE-2026-31522
5.5 MEDIUM

In the Linux kernel, the following vulnerability has been resolved: HID: magicmouse: avoid memory leak in magicmouse_report_fixup() The magicmouse_report_fixup() function was returning a newly kmemdup()-allocated …

Apr 22, 2026
CVE-2026-31521
5.5 MEDIUM

In the Linux kernel, the following vulnerability has been resolved: module: Fix kernel panic when a symbol st_shndx is out of bounds The module loader …

Apr 22, 2026
CVE-2026-31520
5.5 MEDIUM

In the Linux kernel, the following vulnerability has been resolved: HID: apple: avoid memory leak in apple_report_fixup() The apple_report_fixup() function was returning a newly kmemdup()-allocated …

Apr 22, 2026
CVE-2026-31519
5.5 MEDIUM

In the Linux kernel, the following vulnerability has been resolved: btrfs: set BTRFS_ROOT_ORPHAN_CLEANUP during subvol create We have recently observed a number of subvolumes with …

Apr 22, 2026
CVE-2026-31518
5.5 MEDIUM

In the Linux kernel, the following vulnerability has been resolved: esp: fix skb leak with espintcp and async crypto When the TX queue for espintcp …

Apr 22, 2026
CVE-2026-31517
5.5 MEDIUM

In the Linux kernel, the following vulnerability has been resolved: xfrm: iptfs: fix skb_put() panic on non-linear skb during reassembly In iptfs_reassem_cont(), IP-TFS attempts to …

Apr 22, 2026
CVE-2026-31516
7.8 HIGH

In the Linux kernel, the following vulnerability has been resolved: xfrm: prevent policy_hthresh.work from racing with netns teardown A XFRM_MSG_NEWSPDINFO request can queue the per-net …

Apr 22, 2026
CVE-2026-31515
5.5 MEDIUM

In the Linux kernel, the following vulnerability has been resolved: af_key: validate families in pfkey_send_migrate() syzbot was able to trigger a crash in skb_put() [1] …

Apr 22, 2026
CVE-2026-31514
5.5 MEDIUM

In the Linux kernel, the following vulnerability has been resolved: erofs: set fileio bio failed in short read case For file-backed mount, IO requests are …

Apr 22, 2026
CVE-2026-31513
8.1 HIGH

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix stack-out-of-bounds read in l2cap_ecred_conn_req Syzbot reported a KASAN stack-out-of-bounds read in l2cap_build_cmd() …

Apr 22, 2026
CVE-2026-31512
5.5 MEDIUM

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Validate PDU length before reading SDU length in l2cap_ecred_data_rcv() l2cap_ecred_data_rcv() reads the SDU …

Apr 22, 2026
CVE-2026-31511
7.8 HIGH

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: Fix dangling pointer on mgmt_add_adv_patterns_monitor_complete This fixes the condition checking so mgmt_pending_valid is …

Apr 22, 2026
CVE-2026-31510
5.5 MEDIUM

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix null-ptr-deref on l2cap_sock_ready_cb Before using sk pointer, check if it is null. …

Apr 22, 2026
CVE-2026-31509
5.5 MEDIUM

In the Linux kernel, the following vulnerability has been resolved: nfc: nci: fix circular locking dependency in nci_close_device nci_close_device() flushes rx_wq and tx_wq while holding …

Apr 22, 2026
CVE-2026-31508
7.8 HIGH

In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: Avoid releasing netdev before teardown completes The patch cited in the Fixes tag …

Apr 22, 2026
CVE-2026-31507
7.8 HIGH

In the Linux kernel, the following vulnerability has been resolved: net/smc: fix double-free of smc_spd_priv when tee() duplicates splice pipe buffer smc_rx_splice() allocates one smc_spd_priv …

Apr 22, 2026
CVE-2026-31506
7.8 HIGH

In the Linux kernel, the following vulnerability has been resolved: net: bcmasp: fix double free of WoL irq We do not need to free wol_irq …

Apr 22, 2026
CVE-2026-31505
7.8 HIGH

In the Linux kernel, the following vulnerability has been resolved: iavf: fix out-of-bounds writes in iavf_get_ethtool_stats() iavf incorrectly uses real_num_tx_queues for ETH_SS_STATS. Since the value …

Apr 22, 2026
CVE-2026-31504
7.8 HIGH

In the Linux kernel, the following vulnerability has been resolved: net: fix fanout UAF in packet_release() via NETDEV_UP race `packet_release()` has a race window where …

Apr 22, 2026
CVE-2026-31503
5.5 MEDIUM

In the Linux kernel, the following vulnerability has been resolved: udp: Fix wildcard bind conflict check when using hash2 When binding a udp_sock to a …

Apr 22, 2026
CVE-2026-31502
7.8 HIGH

In the Linux kernel, the following vulnerability has been resolved: team: fix header_ops type confusion with non-Ethernet ports Similar to commit 950803f72547 ("bonding: fix type …

Apr 22, 2026
CVE-2026-31501
9.8 CRITICAL

In the Linux kernel, the following vulnerability has been resolved: net: ti: icssg-prueth: fix use-after-free of CPPI descriptor in RX path cppi5_hdesc_get_psdata() returns a pointer …

Apr 22, 2026
CVE-2026-31500
7.8 HIGH

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btintel: serialize btintel_hw_error() with hci_req_sync_lock btintel_hw_error() issues two __hci_cmd_sync() calls (HCI_OP_RESET and Intel exception-info …

Apr 22, 2026
CVE-2026-31499
5.5 MEDIUM

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix deadlock in l2cap_conn_del() l2cap_conn_del() calls cancel_delayed_work_sync() for both info_timer and id_addr_timer while …

Apr 22, 2026
CVE-2026-31498
5.5 MEDIUM

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix ERTM re-init and zero pdu_len infinite loop l2cap_config_req() processes CONFIG_REQ for channels …

Apr 22, 2026
CVE-2026-31497
5.5 MEDIUM

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btusb: clamp SCO altsetting table indices btusb_work() maps the number of active SCO links …

Apr 22, 2026
CVE-2026-31496
5.5 MEDIUM

In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_conntrack_expect: skip expectations in other netns via proc Skip expectations that do not reside …

Apr 22, 2026
CVE-2026-31495
5.5 MEDIUM

In the Linux kernel, the following vulnerability has been resolved: netfilter: ctnetlink: use netlink policy range checks Replace manual range and mask validations with netlink …

Apr 22, 2026
CVE-2026-31494
7.8 HIGH

In the Linux kernel, the following vulnerability has been resolved: net: macb: use the current queue number for stats There's a potential mismatch between the …

Apr 22, 2026
CVE-2026-31493
7.8 HIGH

In the Linux kernel, the following vulnerability has been resolved: RDMA/efa: Fix use of completion ctx after free On admin queue completion handling, if the …

Apr 22, 2026
CVE-2026-31492
5.5 MEDIUM

In the Linux kernel, the following vulnerability has been resolved: RDMA/irdma: Initialize free_qp completion before using it In irdma_create_qp, if ib_copy_to_udata fails, it will call …

Apr 22, 2026

Scan your infrastructure for known CVEs

Free website and port scanning — find vulnerabilities before attackers do.