Trellix announced Trellix SecondSight, a threat hunting service designed to proactively identify low-noise advanced threats often undetected, reducing… The post
Vulnerabilities
CVE-2019-25369 | OPNsense 19.1 POST Request system_advanced_sysctl.php tunable cross site scripting (Exploit 46351 / EDB-46351)
A vulnerability was found in OPNsense 19.1. It has been declared as problematic. This affects an unknown part of the
CVE-2019-25370 | OPNsense 19.1 interfaces_vlan_edit.php tag/descr/vlanif cross site scripting (Exploit 46351 / EDB-46351)
A vulnerability was found in OPNsense 19.1. It has been rated as problematic. This vulnerability affects unknown code of the
CVE-2019-25372 | OPNsense 19.1 diag_traceroute.php host cross site scripting (Exploit 46351 / EDB-46351)
A vulnerability identified as problematic has been detected in OPNsense 19.1. Impacted is an unknown function of the file diag_traceroute.php.
CVE-2019-25371 | OPNsense 19.1 POST Request diag_ping.php host cross site scripting (Exploit 46351 / EDB-46351)
A vulnerability categorized as problematic has been discovered in OPNsense 19.1. This issue affects some unknown processing of the file
CVE-2019-25374 | OPNsense 19.1 vpn_ipsec_settings.php passthrough_networks cross site scripting (Exploit 46351 / EDB-46351)
A vulnerability labeled as problematic has been found in OPNsense 19.1. The affected element is an unknown function of the
CVE-2019-25373 | OPNsense 19.1 firewall_rules_edit.php Category cross site scripting (Exploit 46351 / EDB-46351)
A vulnerability marked as problematic has been reported in OPNsense 19.1. The impacted element is an unknown function of the
CVE-2019-25377 | OPNsense 19.1 POST Request system_advanced_sysctl.php Value cross site scripting (Exploit 46351 / EDB-46351)
A vulnerability described as problematic has been identified in OPNsense 19.1. This affects an unknown function of the file system_advanced_sysctl.php
CVE-2025-32059 | Bosch Infotainment System ECU 283C30861E on Linux Bluetooth Stack stack-based overflow
A vulnerability classified as critical has been found in Bosch Infotainment System ECU 283C30861E on Linux. This impacts an unknown
CVE-2025-32061 | Bosch Infotainment System ECU 283C30861E Bluetooth Stack stack-based overflow
A vulnerability classified as critical was found in Bosch Infotainment System ECU 283C30861E. Affected is an unknown function of the
CVE-2025-32062 | Bosch Infotainment System ECU 283C30861E Bluetooth Stack stack-based overflow
A vulnerability, which was classified as critical, has been found in Bosch Infotainment System ECU 283C30861E. Affected by this vulnerability
CVE-2026-2539 | Micca Auto Electronics Car Alarm System KE700/KE700+ RF Communication cleartext transmission
A vulnerability, which was classified as problematic, was found in Micca Auto Electronics Car Alarm System KE700/KE700+. Affected by this
CVE-2025-32060 | Bosch Infotainment System ECU 283C30861E Kernel signature verification
A vulnerability has been found in Bosch Infotainment System ECU 283C30861E and classified as critical. This affects an unknown part
CVE-2026-26367 | JUNG eNet SMART HOME server 2.2.1 (46056)/2.3.1 (46841) HTTP POST Request /jsonrpc/management deleteUserAccount Username authorization (ZSL-2026-5973)
A vulnerability was found in JUNG eNet SMART HOME server 2.2.1 (46056)/2.3.1 (46841) and classified as problematic. This vulnerability affects
CVE-2026-2540 | Micca Auto Electronics Car Alarm System KE700/KE700+ authentication bypass
A vulnerability was found in Micca Auto Electronics Car Alarm System KE700/KE700+. It has been classified as critical. This issue
CVE-2026-2541 | Micca Auto Electronics Car Alarm System KE700/KE700+ entropy
A vulnerability was found in Micca Auto Electronics Car Alarm System KE700/KE700+. It has been declared as problematic. Impacted is
CVE-2025-32058 | Bosch Infotainment System ECU 283C30861E RH850 stack-based overflow
A vulnerability was found in Bosch Infotainment System ECU 283C30861E. It has been rated as critical. The affected element is
CVE-2025-32063 | Bosch Infotainment System ECU 283C30861E SSH Server missing authentication
A vulnerability categorized as critical has been discovered in Bosch Infotainment System ECU 283C30861E. The impacted element is an unknown
CVE-2026-26366 | JUNG eNet SMART HOME server 2.2.1 (46056)/2.3.1 (46841) Password Change default credentials (ZSL-2026-5972)
A vulnerability identified as very critical has been detected in JUNG eNet SMART HOME server 2.2.1 (46056)/2.3.1 (46841). This affects
CVE-2026-26368 | JUNG eNet SMART HOME server 2.2.1 (46056)/2.3.1 (46841) /jsonrpc/management authorization (ZSL-2026-5974)
A vulnerability labeled as critical has been found in JUNG eNet SMART HOME server 2.2.1 (46056)/2.3.1 (46841). This impacts an
CVE-2026-26369 | JUNG eNet SMART HOME server 2.2.1 (46056)/2.3.1 (46841) HTTP POST Request /jsonrpc/management privileges management (ZSL-2026-5975)
A vulnerability marked as critical has been reported in JUNG eNet SMART HOME server 2.2.1 (46056)/2.3.1 (46841). Affected is an
CVE-2019-25375 | OPNsense 19.1 Monit Interface mailserver cross site scripting (Exploit 46351 / EDB-46351)
A vulnerability described as problematic has been identified in OPNsense 19.1. Affected by this vulnerability is an unknown functionality of
CVE-2019-25376 | OPNsense 19.1 Proxy Endpoint ignoreLogACL cross site scripting (Exploit 46351 / EDB-46351)
A vulnerability classified as problematic has been found in OPNsense 19.1. Affected by this issue is some unknown functionality of
CVE-2019-25367 | ArangoDB Community Edition 3.4.2-1 Aardvark Web Admin Interface index.html cross site scripting (Exploit 46407 / EDB-46407)
A vulnerability classified as problematic was found in ArangoDB Community Edition 3.4.2-1. This affects an unknown part of the file
CVE-2026-2543 | vichan-devel vichan up to 5.1.5 Password Change inc/mod/pages.php unverified password change
A vulnerability, which was classified as critical, has been found in vichan-devel vichan up to 5.1.5. This vulnerability affects unknown
CVE-2026-2544 | yued-fe LuLu UI up to 3.0.0 run.js child_process.exec os command injection
A vulnerability, which was classified as critical, was found in yued-fe LuLu UI up to 3.0.0. This issue affects the
CVE-2026-2545 | LigeroSmart up to 6.1.26 index.pl?Action=AgentTicketSearch Profile cross site scripting (Issue 282)
A vulnerability has been found in LigeroSmart up to 6.1.26 and classified as problematic. Impacted is an unknown function of
CVE-2026-2546 | LigeroSmart up to 6.1.26 /otrs/index.pl SortBy cross site scripting (Issue 283)
A vulnerability was found in LigeroSmart up to 6.1.26 and classified as problematic. The affected element is an unknown function
CVE-2026-2547 | LigeroSmart up to 6.1.26 /otrs/index.pl AgentDashboard Subaction cross site scripting (Issue 284)
A vulnerability was found in LigeroSmart up to 6.1.26. It has been classified as problematic. The impacted element is the
CVE-2026-2548 | WAYOS FBM-220G 24.10.19 rc sub_40F820 upnp_waniface/upnp_ssdp_interval/upnp_max_age command injection
A vulnerability was found in WAYOS FBM-220G 24.10.19. It has been declared as critical. This affects the function sub_40F820 of
CVE-2026-2549 | zhanghuanhao LibrarySystem 图书馆管理系统 up to 1.1.1 BookController.java access control
A vulnerability was found in zhanghuanhao LibrarySystem 图书馆管理系统 up to 1.1.1. It has been rated as critical. This impacts an
CVE-2026-2550 | EFM iptime A6004MX 14.18.2 /cgi/timepro.cgi commit_vpncli_file_upload unrestricted upload
A vulnerability categorized as critical has been discovered in EFM iptime A6004MX 14.18.2. Affected is the function commit_vpncli_file_upload of the
CVE-2026-2551 | ZenTao up to 21.7.8 Backup editor/control.php delete fileName path traversal
A vulnerability identified as critical has been detected in ZenTao up to 21.7.8. Affected by this vulnerability is the function
CVE-2026-2552 | ZenTao up to 21.7.8 Editor editor/control.php delete filePath path traversal
A vulnerability labeled as critical has been found in ZenTao up to 21.7.8. Affected by this issue is the function
CVE-2026-2553 | tushar-2223 Hotel-Management-System up to bb1f3b3666124b888f1e4bcf51b6fba9fbb01d15 HTTP POST Request /home.php Name/Email sql injection
A vulnerability marked as critical has been reported in tushar-2223 Hotel-Management-System up to bb1f3b3666124b888f1e4bcf51b6fba9fbb01d15. This affects an unknown part of
CVE-2026-2521 | Open5GS up to 2.7.6 SGW-C sgwc_s5c_handle_create_session_response memory corruption (Issue 4282)
A vulnerability classified as critical was found in Open5GS up to 2.7.6. This issue affects the function sgwc_s5c_handle_create_session_response of the
CVE-2026-2522 | Open5GS up to 2.7.6 MME /src/mme/esm-build.c memory corruption (Issue 4283)
A vulnerability, which was classified as problematic, has been found in Open5GS up to 2.7.6. Impacted is an unknown function
CVE-2026-2523 | Open5GS up to 2.7.6 SMF /src/smf/gn-handler.c smf_gn_handle_create_pdp_context_request assertion (Issue 4285)
A vulnerability, which was classified as problematic, was found in Open5GS up to 2.7.6. The affected element is the function
CVE-2026-2524 | Open5GS 2.7.6 MME mme_s11_handle_create_session_response denial of service (Issue 4284)
A vulnerability has been found in Open5GS 2.7.6 and classified as problematic. The impacted element is the function mme_s11_handle_create_session_response of
CVE-2026-2525 | Free5GC up to 4.1.0 PFCP UDP Endpoint denial of service (Issue 796)
A vulnerability was found in Free5GC up to 4.1.0 and classified as problematic. This affects an unknown function of the
CVE-2026-2526 | Wavlink WL-WN579A3 up to 20210219 /cgi-bin/wireless.cgi multi_ssid SSID2G2 command injection
A vulnerability was found in Wavlink WL-WN579A3 up to 20210219. It has been classified as critical. This impacts the function
CVE-2026-2527 | Wavlink WL-WN579A3 up to 20210219 /cgi-bin/login.cgi key command injection
A vulnerability was found in Wavlink WL-WN579A3 up to 20210219. It has been declared as critical. Affected is an unknown
CVE-2026-2528 | Wavlink WL-WN579A3 up to 20210219 /cgi-bin/wireless.cgi Delete_Mac_list delete_list command injection
A vulnerability was found in Wavlink WL-WN579A3 up to 20210219. It has been rated as critical. Affected by this vulnerability
CVE-2026-2529 | Wavlink WL-WN579A3 up to 20210219 /cgi-bin/wireless.cgi DeleteMac delete_list command injection
A vulnerability categorized as critical has been discovered in Wavlink WL-WN579A3 up to 20210219. Affected by this issue is the
CVE-2026-2530 | Wavlink WL-WN579A3 up to 20210219 /cgi-bin/wireless.cgi AddMac macAddr command injection
A vulnerability identified as critical has been detected in Wavlink WL-WN579A3 up to 20210219. This affects the function AddMac of
CVE-2026-2531 | MindsDB up to 25.14.1 File Upload security.py clear_filename server-side request forgery (Issue 12163)
A vulnerability labeled as critical has been found in MindsDB up to 25.14.1. This vulnerability affects the function clear_filename of
CVE-2026-2532 | lintsinghua DeepAudit up to 3.0.3 IP Address embedding_config.py server-side request forgery
A vulnerability marked as critical has been reported in lintsinghua DeepAudit up to 3.0.3. This issue affects some unknown processing
CVE-2026-2533 | Tosei Self-service Washing Machine 4.02 tosei_datasend.php adr_txt_1 command injection
A vulnerability described as critical has been identified in Tosei Self-service Washing Machine 4.02. Impacted is an unknown function of
CVE-2026-2534 | Comfast CF-N1 V2 2.6.0.2 mbox-config?method=SET§ion=ptest_bandwidth sub_44AC4C command injection
A vulnerability classified as critical has been found in Comfast CF-N1 V2 2.6.0.2. The affected element is the function sub_44AC4C
CVE-2026-2535 | Comfast CF-N1 V2 2.6.0.2 mbox-config?method=SET§ion=ptest_channel sub_44AB9C command injection
A vulnerability classified as critical was found in Comfast CF-N1 V2 2.6.0.2. The impacted element is the function sub_44AB9C of
CVE-2026-2536 | opencc JFlow up to 20260129 Workflow Engine WF_Admin_AttrFlow.java Imp_Done File xml external entity reference (IDN7GT)
A vulnerability, which was classified as problematic, has been found in opencc JFlow up to 20260129. This affects the function
CVE-2026-2537 | Comfast CF-E4 2.6.0.1 HTTP POST Request mbox-config?method=SET§ion=ntp_timezone timestr command injection
A vulnerability, which was classified as critical, was found in Comfast CF-E4 2.6.0.1. This impacts an unknown function of the
CVE-2026-2538 | Flos Freeware Notepad2 4.2.22/4.2.23/4.2.24/4.2.25 Msimg32.dll uncontrolled search path
A vulnerability has been found in Flos Freeware Notepad2 4.2.22/4.2.23/4.2.24/4.2.25 and classified as problematic. Affected is an unknown function in
Roundcube Webmail DOM-based XSS Exploit via SVG href Attribute
Topic: Roundcube Webmail DOM-based XSS Exploit via SVG href Attribute Risk: Low Text:#!/usr/bin/env python3 # Exploit Title: Roundcube Webmail DOM-based
WordPress Plugin Ajax Upload for Gravity Forms – Arbitrary File Upload
Topic: WordPress Plugin Ajax Upload for Gravity Forms – Arbitrary File Upload Risk: Low Text: ## # Exploit Title: WordPress
Fedora 42 nginx-mod-brotli Critical Data Injection Fix CVE-2026-1642
nginx-mod-fancyindex: Rebuild for 1.28.2 nginx-mod-headers-more: Rebuild for 1.28.2 nginx-mod-brotli:LinuxSecurity – Security AdvisoriesRead More
Fedora 42 nginx-mod-fancyindex Update CVE-2026-1642 TLS Attack Fix
nginx-mod-fancyindex: Rebuild for 1.28.2 nginx-mod-headers-more: Rebuild for 1.28.2 nginx-mod-brotli:LinuxSecurity – Security AdvisoriesRead More
Fedora 42 nginx-mod-headers-more Critical Data Injection Flaw CVE-2026-1642
nginx-mod-fancyindex: Rebuild for 1.28.2 nginx-mod-headers-more: Rebuild for 1.28.2 nginx-mod-brotli:LinuxSecurity – Security AdvisoriesRead More
Fedora 42 nginx-mod-vts Critical Data Injection Fix CVE-2026-1642
nginx-mod-fancyindex: Rebuild for 1.28.2 nginx-mod-headers-more: Rebuild for 1.28.2 nginx-mod-brotli:LinuxSecurity – Security AdvisoriesRead More
Fedora 42 nginx-mod-naxsi Moderate DoS Threat Fix FEDORA-2026-0b8cc86e5b
nginx-mod-fancyindex: Rebuild for 1.28.2 nginx-mod-headers-more: Rebuild for 1.28.2 nginx-mod-brotli:LinuxSecurity – Security AdvisoriesRead More
Ubuntu 23 mingw-lz4 Important Memory Leak Remediation 2023-2398efc5a7
Update to expat-2.7.4.LinuxSecurity – Security AdvisoriesRead More
openSUSE Tumbleweed python310 Access Vulnerability CVE-2025-11468
An update that solves 6 vulnerabilities can now be installed.LinuxSecurity – Security AdvisoriesRead More
CVE-2026-2516 | Unidocs ezPDF DRM Reader/ezPDF Reader 2.0/3.0.0.4 on 32-bit SHFOLDER.dll uncontrolled search path
A vulnerability described as problematic has been identified in Unidocs ezPDF DRM Reader and ezPDF Reader 2.0/3.0.0.4 on 32-bit. This
CVE-2026-2517 | Open5GS up to 2.7.6 SMF lib/gtp/v2/types.c ogs_gtp2_parse_tft pf[0].content.length denial of service (Issue 4281)
A vulnerability classified as problematic has been found in Open5GS up to 2.7.6. This vulnerability affects the function ogs_gtp2_parse_tft in
ProgressBar 2 4.5.0 – Unbounded Resource Consumption DoS
Topic: ProgressBar 2 4.5.0 – Unbounded Resource Consumption DoS Risk: Medium Text:#!/usr/bin/env python3 “”” Exploit Title: ProgressBar 2 4.5.0 –
Windows 11 25H2 Hyper-V CVE-2026-21248 Heap Overflow + Ghost Patch Exploit Framework
Topic: Windows 11 25H2 Hyper-V CVE-2026-21248 Heap Overflow + Ghost Patch Exploit Framework Risk: High Text:Title: Windows 11 25H2 Hyper-V
ClipBucket 5.5.0 Arbitrary File Upload
Topic: ClipBucket 5.5.0 Arbitrary File Upload Risk: High Text:# Exploit Title: ClipBucket 5.5.0 – Arbitrary File Upload # Google Dork:
Siklu EtherHaul Series EH-8010 Remote Command Execution
Topic: Siklu EtherHaul Series EH-8010 Remote Command Execution Risk: High Text:# Exploit Title:Siklu EtherHaul Series EH-8010 – Remote Command Execution
motionEye 0.43.1b4 RCE
Topic: motionEye 0.43.1b4 RCE Risk: High Text:# Exploit Title: motionEye 0.43.1b4 – RCE # Exploit PoC: motionEye RCE via client-side
WordPress Commentator Plugin – Arbitrary File Upload
Topic: WordPress Commentator Plugin – Arbitrary File Upload Risk: Medium Text: ## # Exploit Title: WordPress Commentator Plugin – Arbitrary
CVE-2026-23172 | Linux Kernel up to 6.1.161/6.6.122/6.12.68/6.18.8 t7xx_dpmaif_set_frag_to_skb frags[] buffer overflow
A vulnerability was found in Linux Kernel up to 6.1.161/6.6.122/6.12.68/6.18.8 and classified as critical. The impacted element is the function
CVE-2026-23209 | Linux Kernel up to 6.18.9 macvlan_common_newlink use after free
A vulnerability was found in Linux Kernel up to 6.18.9. It has been classified as critical. This affects the function
CVE-2026-23193 | Linux Kernel up to 6.18.9 scsi iscsit_dec_session_usage_count use after free
A vulnerability was found in Linux Kernel up to 6.18.9. It has been declared as critical. This impacts the function
CVE-2026-23124 | Linux Kernel up to 5.15.198/6.1.161/6.6.121/6.12.67/6.18.7 ipv6 ndisc_router_discovery race condition
A vulnerability was found in Linux Kernel up to 5.15.198/6.1.161/6.6.121/6.12.67/6.18.7. It has been rated as critical. Affected is the function
CVE-2026-23129 | Linux Kernel up to 6.12.67/6.18.7 dpll _add reference count
A vulnerability categorized as critical has been discovered in Linux Kernel up to 6.12.67/6.18.7. Affected by this vulnerability is the
CVE-2026-23128 | Linux Kernel up to 5.15.198/6.1.161/6.6.121/6.12.67/6.18.7 swsusp_arch_resume buffer overflow
A vulnerability identified as critical has been detected in Linux Kernel up to 5.15.198/6.1.161/6.6.121/6.12.67/6.18.7. Affected by this issue is the
CVE-2026-23119 | Linux Kernel up to 6.18.7 bonding flow_dissector.c __skb_flow_dissect privilege escalation
A vulnerability labeled as problematic has been found in Linux Kernel up to 6.18.7. This affects the function __skb_flow_dissect of
CVE-2026-23117 | Linux Kernel up to 6.18.7 Ice Driver ice_deinit_hw null pointer dereference
A vulnerability marked as critical has been reported in Linux Kernel up to 6.18.7. This vulnerability affects the function ice_deinit_hw
CVE-2026-23125 | Linux Kernel up to 6.18.7 sctp_auth_asoc_init_active_key initialization
A vulnerability described as critical has been identified in Linux Kernel up to 6.18.7. This issue affects the function sctp_auth_asoc_init_active_key.
CVE-2025-71220 | Linux Kernel up to 5.15.199/6.1.162/6.6.123/6.12.69/6.18.9 smb ksmbd_session_rpc_close privilege escalation
A vulnerability classified as critical has been found in Linux Kernel up to 5.15.199/6.1.162/6.6.123/6.12.69/6.18.9. Impacted is the function ksmbd_session_rpc_close of
CVE-2025-71221 | Linux Kernel up to 6.18.9 dmaengine mmp_pdma_residue use after free
A vulnerability classified as critical was found in Linux Kernel up to 6.18.9. The affected element is the function mmp_pdma_residue
CVE-2025-71223 | Linux Kernel up to 6.6.123/6.12.69/6.18.9 smb smb2_open reference count
A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.6.123/6.12.69/6.18.9. The impacted element is
CVE-2026-23174 | Linux Kernel up to 6.18.9 Nvme Driver dma_needs_unmap uninitialized pointer
A vulnerability, which was classified as critical, was found in Linux Kernel up to 6.18.9. This affects the function dma_needs_unmap
CVE-2026-23177 | Linux Kernel up to 6.12.69/6.18.9 mm shmem_free_swap infinite loop
A vulnerability has been found in Linux Kernel up to 6.12.69/6.18.9 and classified as critical. This impacts the function shmem_free_swap
CVE-2026-23179 | Linux Kernel up to 6.6.123/6.12.69/6.18.9 nvmet-tcp nvmet_tcp_listen_data_ready deadlock
A vulnerability was found in Linux Kernel up to 6.6.123/6.12.69/6.18.9 and classified as critical. Affected is the function nvmet_tcp_listen_data_ready of
CVE-2026-23176 | Linux Kernel up to 6.18.9 toshiba_haps_add memory leak
A vulnerability was found in Linux Kernel up to 6.18.9. It has been classified as critical. Affected by this vulnerability
CVE-2025-71222 | Linux Kernel up to 6.18.9 wifi skb_push privilege escalation
A vulnerability was found in Linux Kernel up to 6.18.9. It has been declared as critical. Affected by this issue
CVE-2026-23180 | Linux Kernel up to 5.15.199/6.1.162/6.6.123/6.12.69/6.18.9 IRQ dpaa2_switch_rx out-of-bounds
A vulnerability was found in Linux Kernel up to 5.15.199/6.1.162/6.6.123/6.12.69/6.18.9. It has been rated as critical. This affects the function
CVE-2026-23181 | Linux Kernel up to 6.18.9 btrfs mapping_min_folio_order null pointer dereference
A vulnerability categorized as critical has been discovered in Linux Kernel up to 6.18.9. This vulnerability affects the function mapping_min_folio_order
CVE-2026-23182 | Linux Kernel up to 5.15.199/6.1.162/6.6.123/6.12.69/6.18.9 spi tegra_slink_probe memory leak
A vulnerability identified as critical has been detected in Linux Kernel up to 5.15.199/6.1.162/6.6.123/6.12.69/6.18.9. This issue affects the function tegra_slink_probe
CVE-2026-23184 | Linux Kernel up to 6.18.9 binder binder_netlink_report use after free
A vulnerability labeled as critical has been found in Linux Kernel up to 6.18.9. Impacted is the function binder_netlink_report of
CVE-2026-23187 | Linux Kernel up to 6.1.162/6.6.123/6.12.69/6.18.9 pmdomain imx8m_blk_ctrl_remove range error
A vulnerability marked as critical has been reported in Linux Kernel up to 6.1.162/6.6.123/6.12.69/6.18.9. The affected element is the function
CVE-2026-23197 | Linux Kernel up to 6.18.9 i2c i2c_imx_master_isr buffer overflow
A vulnerability described as critical has been identified in Linux Kernel up to 6.18.9. The impacted element is the function
CVE-2026-23188 | Linux Kernel up to 6.12.69/6.18.9 r8152 mutex_lock deadlock
A vulnerability classified as critical has been found in Linux Kernel up to 6.12.69/6.18.9. This affects the function mutex_lock of
CVE-2026-23196 | Linux Kernel up to 6.18.9 HID null pointer dereference
A vulnerability classified as critical was found in Linux Kernel up to 6.18.9. This impacts an unknown function of the
CVE-2026-23189 | Linux Kernel up to 6.12.69/6.18.9 FS File Parser ceph_mds_auth_match null pointer dereference
A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.12.69/6.18.9. Affected is the function
CVE-2026-23199 | Linux Kernel up to 6.12.69/6.18.9 procfs __kernel_read reference count
A vulnerability, which was classified as critical, was found in Linux Kernel up to 6.12.69/6.18.9. Affected by this vulnerability is
CVE-2026-23201 | Linux Kernel up to 6.12.69/6.18.9 ceph kfree denial of service
A vulnerability has been found in Linux Kernel up to 6.12.69/6.18.9 and classified as critical. Affected by this issue is
CVE-2026-23202 | Linux Kernel up to 5.15.199/6.1.162/6.6.123/6.12.69/6.18.9 IRQ tegra_qspi_combined_seq_xfer curr_xfer null pointer dereference
A vulnerability was found in Linux Kernel up to 5.15.199/6.1.162/6.6.123/6.12.69/6.18.9 and classified as critical. This affects the function tegra_qspi_combined_seq_xfer of
CVE-2026-23206 | Linux Kernel up to 5.15.199/6.1.162/6.6.123/6.12.69/6.18.9 dpaa2-switch kcalloc initialization
A vulnerability was found in Linux Kernel up to 5.15.199/6.1.162/6.6.123/6.12.69/6.18.9. It has been classified as critical. This vulnerability affects the
CVE-2026-23204 | Linux Kernel up to 6.6.123/6.12.69/6.18.9 cls_u32 skb_header_pointer_careful out-of-bounds
A vulnerability was found in Linux Kernel up to 6.6.123/6.12.69/6.18.9. It has been declared as critical. This issue affects the