Vuln Tracker

Adversory Vulnerability Track
CVE Dashboard

Automatically updated from the Adversory each Patch Tuesday. Filter by severity, impact type (RCE, EoP, etc.) or search CVE IDs and descriptions. Last updated: 2026-05-10 · 11801 vulnerabilities

// CVE Activity Heatmap

Color = worst severity in month · Opacity = volume

Each dot = one day · Coloured dots = Patch Tuesday release date

Less More

Critical High Medium Low

11801 CVEs

Severity: Impact:

CVE

Title

CVSS

Severity

Impact

Date

CVE-2026-31706

ksmbd: validate num_aces and harden ACE walk in smb_inherit_dacl()

8.8

High

2026-05

CVE-2026-31723

usb: gadget: f_subset: Fix net_device lifecycle with device_move

7.8

High

2026-05

CVE-2026-31724

usb: gadget: f_eem: Fix net_device lifecycle with device_move

7.8

High

2026-05

CVE-2026-43036

net: use skb_header_pointer() for TCPv4 GSO frag_off check

5.5

Medium

2026-05

CVE-2026-31769

gpib: fix use-after-free in IO ioctl handlers

Unknown

2026-05

CVE-2026-31707

ksmbd: validate response sizes in ipc_validate_msg()

7.1

High

2026-05

CVE-2026-43042

mpls: add seqcount to protect the platform_label{,s} pair

7.1

High

2026-05

CVE-2026-31771

Bluetooth: hci_event: move wake reason storage into validated event handlers

8.1

High

2026-05

CVE-2026-43052

wifi: mac80211: check tdls flag in ieee80211_tdls_oper

7.0

High

2026-05

CVE-2026-31709

smb: client: validate the whole DACL before rewriting it in cifsacl

8.8

High

2026-05

CVE-2026-43021

Bluetooth: hci_sync: fix leaks when hci_cmd_sync_queue_once fails

Unknown

2026-05

CVE-2026-43010

bpf: Reject sleepable kprobe_multi programs at attach time

5.5

Medium

2026-05

CVE-2026-43045

mshv: Fix error handling in mshv_region_pin

Unknown

2026-05

CVE-2026-31721

usb: gadget: f_hid: move list and spinlock inits from bind to alloc

7.8

High

2026-05

CVE-2026-31711

smb: server: fix active_num_conn leak on transport allocation failure

7.5

High

2026-05

CVE-2026-31699

crypto: ccp: Don't attempt to copy CSR to userspace if PSP command failed

7.1

High

2026-05

CVE-2026-31694

fuse: reject oversized dirents in page cache

7.8

High

2026-05

CVE-2026-31705

ksmbd: fix out-of-bounds write in smb2_get_ea() EA alignment

9.8

Critical

2026-05

CVE-2026-43033

crypto: authencesn - Do not place hiseq at end of dst for out-of-place decryptio

7.8

High

2026-05

CVE-2026-31696

rxrpc: Fix missing validation of ticket length in non-XDR key preparsing

5.5

Medium

2026-05

CVE-2026-31704

ksmbd: use check_add_overflow() to prevent u16 DACL size overflow

7.5

High

2026-05

CVE-2026-31702

f2fs: fix use-after-free of sbi in f2fs_compress_write_end_io()

7.8

High

2026-05

CVE-2026-31700

net/packet: fix TOCTOU race on mmap'd vnet_hdr in tpacket_snd()

7.8

High

2026-05

CVE-2026-37457

7.5

High

2026-05

CVE-2026-43037

ip6_tunnel: clear skb2->cb[] in ip4ip6_err()

7.0

High

2026-05

CVE-2026-33190

CoreDNS TSIG authentication bypass on encrypted DNS transports

Unknown

2026-05

CVE-2026-32936

CoreDNS DoH GET path missing size validation causes CPU and memory amplification

Unknown

2026-05

CVE-2026-35579

CoreDNS TSIG authentication bypass on gRPC, QUIC, DoH, and DoH3 transports

Unknown

2026-05

CVE-2026-42151

Prometheus Azure AD remote write OAuth client secret exposed via config API

7.5

High

2026-05

CVE-2026-42154

Prometheus: remote read endpoint allows denial of service via crafted snappy pay

7.5

High

DoS

2026-05

CVE-2026-43248

vhost: move vdpa group bound check to vhost_vdpa

7.1

High

2026-05

CVE-2026-43127

ntfs3: fix circular locking dependency in run_unpack_ex

5.5

Medium

2026-05

CVE-2026-43161

iommu/vt-d: Skip dev-iotlb flush for inaccessible PCIe device without scalable m

5.5

Medium

2026-05

CVE-2026-43245

ntfs: ->d_compare() must not block

7.1

High

2026-05

CVE-2026-43137

ASoC: SOF: Intel: hda: Fix NULL pointer dereference

5.5

Medium

2026-05

CVE-2026-43234

team: avoid NETDEV_CHANGEMTU event when unregistering slave

5.5

Medium

2026-05

CVE-2026-43185

ksmbd: fix signededness bug in smb_direct_prepare_negotiation()

5.5

Medium

2026-05

CVE-2025-71273

wifi: rtw88: Use devm_kmemdup() in rtw_set_supported_band()

5.3

Medium

2026-05

CVE-2026-43153

xfs: remove xfs_attr_leaf_hasname

7.1

High

2026-05

CVE-2026-43116

netfilter: ctnetlink: ensure safe access to master conntrack

7.1

High

2026-05

CVE-2026-43244

kcm: fix zero-frag skb in frag_list on partial sendmsg error

5.5

Medium

2026-05

CVE-2026-43191

drm/amd/display: Adjust PHY FSM transition to TX_EN-to-PLL_ON for TMDS on DCN35

5.5

Medium

2026-05

CVE-2025-71272

most: core: fix resource leak in most_register_interface error paths

5.5

Medium

2026-05

CVE-2026-41673

xmldom: Denial of service via uncontrolled recursion in XML serialization

Unknown

DoS

2026-05

CVE-2026-43474

fs: init flags_valid before calling vfs_fileattr_get

Unknown

2026-05

CVE-2025-71302

drm/panthor: fix for dma-fence safe access rules

Unknown

2026-05

CVE-2026-43309

md raid: fix hang when stopping arrays with metadata through dm-raid

5.5

Medium

2026-05

CVE-2026-43320

drm/amd/display: Fix dsc eDP issue

Unknown

2026-05

CVE-2026-43300

drm/panel: Fix a possible null-pointer dereference in jdi_panel_dsi_remove()

5.5

Medium

2026-05

CVE-2026-43306

bpf: crypto: Use the correct destructor kfunc type

7.0

High

2026-05

CVE-2026-43443

ASoC: amd: acp-mach-common: Add missing error check for clock acquisition

Unknown

2026-05

CVE-2026-43331

x86/kexec: Disable KCOV instrumentation after load_segments()

Unknown

2026-05

CVE-2026-43319

spi: spidev: fix lock inversion between spi_lock and buf_lock

Unknown

2026-05

CVE-2026-43303

mm/page_alloc: clear page->private in free_pages_prepare()

7.0

High

2026-05

CVE-2026-43344

perf/x86/intel/uncore: Fix die ID init and look up bugs

Unknown

2026-05

CVE-2026-43305

drm/amd/display: Fix mismatched unlock for DMUB HW lock in HWSS fast path

5.5

Medium

2026-05

CVE-2026-43310

media: verisilicon: Avoid G2 bus error while decoding H.264 and HEVC

5.5

Medium

2026-05

CVE-2026-43400

drm/amdgpu: add upper bound check on user inputs in signal ioctl

Unknown

2026-05

CVE-2026-43292

mm/vmalloc: prevent RCU stalls in kasan_release_vmalloc_node

5.5

Medium

2026-05

CVE-2026-43398

drm/amdgpu: add upper bound check on user inputs in wait ioctl

Unknown

2026-05

CVE-2026-43311

soc/tegra: pmc: Fix unsafe generic_handle_irq() call

5.5

Medium

2026-05

CVE-2026-43421

usb: gadget: f_ncm: Fix net_device lifecycle with device_move

Unknown

2026-05

CVE-2026-43308

btrfs: don't BUG() on unexpected delayed ref type in run_one_delayed_ref()

5.5

Medium

2026-05

CVE-2026-37458

6.5

Medium

2026-05

CVE-2026-33846

Gnutls: gnutls: denial of service via heap buffer overflow in dtls handshake fra

7.5

High

DoS

2026-05

CVE-2026-33814

Infinite loop in HTTP/2 transport when given bad SETTINGS_MAX_FRAME_SIZE in net/

7.5

High

2026-05

CVE-2026-39823

Bypass of meta content URL escaping causes XSS in html/template

6.1

Medium

2026-05

CVE-2026-41889

pgx: SQL Injection via placeholder confusion with dollar quoted string literals

Unknown

2026-05

CVE-2026-43053

xfs: close crash window in attr dabtree inactivation

5.5

Medium

2026-05

CVE-2026-43048

HID: core: Mitigate potential OOB by removing bogus memset()

8.8

High

2026-05

CVE-2026-31777

ALSA: ctxfi: Check the error for index mapping

7.0

High

2026-05

CVE-2026-31722

usb: gadget: f_rndis: Fix net_device lifecycle with device_move

7.8

High

2026-05

CVE-2026-31725

usb: gadget: f_ecm: Fix net_device lifecycle with device_move

7.8

High

2026-05

CVE-2026-43049

HID: logitech-hidpp: Prevent use-after-free on force feedback initialisation fai

7.0

High

2026-05

CVE-2026-43022

Bluetooth: hci_sync: hci_cmd_sync_queue_once() return -EEXIST if exists

Unknown

2026-05

CVE-2026-31712

ksmbd: require minimum ACE size in smb_check_perm_dacl()

8.3

High

2026-05

CVE-2026-43019

Bluetooth: hci_conn: fix potential UAF in set_cig_params_sync

7.8

High

2026-05

CVE-2026-31729

usb: typec: ucsi: validate connector number in ucsi_notify_common()

7.0

High

2026-05

CVE-2026-43009

bpf: Fix incorrect pruning due to atomic fetch precision tracking

7.8

High

2026-05

CVE-2026-31715

f2fs: fix UAF caused by decrementing sbi->nr_pages[] in f2fs_write_end_io()

5.5

Medium

2026-05

CVE-2026-31697

crypto: ccp: Don't attempt to copy ID to userspace if PSP command failed

7.1

High

2026-05

CVE-2026-31698

crypto: ccp: Don't attempt to copy PDH cert to userspace if PSP command failed

7.1

High

2026-05

CVE-2026-31708

smb: client: fix OOB read in smb2_ioctl_query_info QUERY_INFO path

8.1

High

2026-05

CVE-2026-7598

libssh2 userauth.c userauth_password integer overflow

7.3

High

2026-05

CVE-2026-43058

media: vidtv: fix pass-by-value structs causing MSAN warnings

7.1

High

2026-05

CVE-2026-43964

3.7

Low

2026-05

CVE-2026-33489

CoreDNS transfer plugin subzone ACL bypass via lexicographic zone comparison

Unknown

2026-05

CVE-2026-32934

CoreDNS DNS-over-QUIC unbounded goroutine growth leads to denial of service

Unknown

DoS

2026-05

CVE-2026-43073

x86-64: rename misleadingly named '__copy_user_nocache()' function

2.5

Low

2026-05

CVE-2026-43125

dlm: validate length in dlm_search_rsb_tree

7.8

High

2026-05

CVE-2026-43176

wifi: rtw89: pci: validate release report content before using for RTL8922DE

7.0

High

2026-05

CVE-2026-43204

ASoC: qcom: q6asm: drop DSP responses for closed data streams

5.5

Medium

2026-05

CVE-2026-43131

drm/amd/pm: Fix null pointer dereference issue

5.5

Medium

2026-05

CVE-2026-43126

ALSA: mixer: oss: Add card disconnect checkpoints

5.5

Medium

2026-05

CVE-2026-43198

tcp: fix potential race in tcp_v6_syn_recv_sock()

4.8

Medium

2026-05

CVE-2025-71290

misc: ti_fpc202: fix a potential memory leak in probe function

5.5

Medium

2026-05

CVE-2026-43115

srcu: Use irq_work to start GP in tiny SRCU

5.5

Medium

2026-05

CVE-2025-71293

drm/amdgpu/ras: Move ras data alloc before bad page check

5.5

Medium

2026-05

CVE-2026-43172

wifi: iwlwifi: fix 22000 series SMEM parsing

5.3

Medium

2026-05

CVE-2025-71285

net: qrtr: Drop the MHI auto_queue feature for IPCR DL channels

4.7

Medium

2026-05

$ loading /data/vulns.json...

Adversory Vulnerability Track CVE Dashboard

Adversory Vulnerability Track
CVE Dashboard