Security
CVE Feed
Latest vulnerabilities from the National Vulnerability Database.
10692
Total
727
Critical
3080
High
3407
Medium
| CVE ID | Severity | Score | Description | Published |
|---|---|---|---|---|
| CVE-2026-44128 | UNKNOWN | — | SEPPmail Secure Email Gateway before version 15.0.2.1 allows unauthenticated remote code execution in the new GINA UI because an endpoint passes attacker-controlled input from a … | May 08, 2026 |
| CVE-2026-44127 | UNKNOWN | — | SEPPmail Secure Email Gateway before version 15.0.4 contains an unauthenticated path traversal vulnerability in the identifier parameter of /api.app/attachment/preview that allows remote attackers to read … | May 08, 2026 |
| CVE-2026-44126 | UNKNOWN | — | SEPPmail Secure Email Gateway before version 15.0.4 insecurely deserializes untrusted data, which can be reached from the new GINA UI and may allow unauthenticated remote … | May 08, 2026 |
| CVE-2026-44125 | UNKNOWN | — | SEPPmail Secure Email Gateway before version 15.0.4 fails to enforce authorization checks for multiple endpoints in the new GINA UI, allowing unauthenticated remote attackers to … | May 08, 2026 |
| CVE-2026-43350 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: smb: client: require a full NFS mode SID before reading mode bits parse_dacl() treats an … | May 08, 2026 |
| CVE-2026-43349 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid uninit-value access in f2fs_sanity_check_node_footer syzbot reported a f2fs bug as below: … | May 08, 2026 |
| CVE-2026-43348 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: mshv_vtl: Fix vmemmap_shift exceeding MAX_FOLIO_ORDER When registering VTL0 memory via MSHV_ADD_VTL0_MEMORY, the kernel computes pgmap->vmemmap_shift … | May 08, 2026 |
| CVE-2026-43347 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: arm64: dts: qcom: monaco: Reserve full Gunyah metadata region We observe spurious "Synchronous External Abort" … | May 08, 2026 |
| CVE-2026-43346 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: ice: ptp: don't WARN when controlling PF is unavailable In VFIO passthrough setups, it is … | May 08, 2026 |
| CVE-2026-43345 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: net: ipa: fix event ring index not programmed for IPA v5.0+ For IPA v5.0+, the … | May 08, 2026 |
| CVE-2026-43344 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: perf/x86/intel/uncore: Fix die ID init and look up bugs In snbep_pci2phy_map_init(), in the nr_node_ids > … | May 08, 2026 |
| CVE-2026-43343 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: usb: gadget: f_subset: Fix unbalanced refcnt in geth_free geth_alloc() increments the reference count, but geth_free() … | May 08, 2026 |
| CVE-2026-43342 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: usb: gadget: f_rndis: Protect RNDIS options with mutex The class/subclass/protocol options are suspectible to race … | May 08, 2026 |
| CVE-2026-43341 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: net/ipv6: ioam6: prevent schema length wraparound in trace fill ioam6_fill_trace_data() stores the schema contribution to … | May 08, 2026 |
| CVE-2026-43340 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: comedi: Reinit dev->spinlock between attachments to low-level drivers `struct comedi_device` is the main controlling structure … | May 08, 2026 |
| CVE-2026-43339 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: ipv6: prevent possible UaF in addrconf_permanent_addr() The mentioned helper try to warn the user about … | May 08, 2026 |
| CVE-2026-43338 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: btrfs: reserve enough transaction items for qgroup ioctls Currently our qgroup ioctls don't reserve any … | May 08, 2026 |
| CVE-2026-43337 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix NULL pointer dereference in dcn401_init_hw() dcn401_init_hw() assumes that update_bw_bounding_box() is valid when entering … | May 08, 2026 |
| CVE-2026-43336 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: lib/crypto: chacha: Zeroize permuted_state before it leaves scope Since the ChaCha permutation is invertible, the … | May 08, 2026 |
| CVE-2026-43335 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: interconnect: qcom: sm8450: Fix NULL pointer dereference in icc_link_nodes() The change to dynamic IDs for … | May 08, 2026 |
| CVE-2026-43334 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: Bluetooth: SMP: force responder MITM requirements before building the pairing response smp_cmd_pairing_req() currently builds the … | May 08, 2026 |
| CVE-2026-43333 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: bpf: reject direct access to nullable PTR_TO_BUF pointers check_mem_access() matches PTR_TO_BUF via base_type() which strips … | May 08, 2026 |
| CVE-2026-43332 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: thermal: core: Fix thermal zone device registration error path If thermal_zone_device_register_with_trips() fails after registering a … | May 08, 2026 |
| CVE-2026-43331 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: x86/kexec: Disable KCOV instrumentation after load_segments() The load_segments() function changes segment registers, invalidating GS base … | May 08, 2026 |
| CVE-2026-43330 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: crypto: caam - fix overflow on long hmac keys When a key longer than block … | May 08, 2026 |