NVD Vulnerability Information Top

Show Search Menu

Vendor Name
プロダクト・サービス名
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
In descending order of publication date
In descending order of update date
Number of items displayed

NVD Vulnerability Information Top

You can search the list of vulnerabilities managed by the NVD (National Vulnerability Database).
Since vulnerability information is often updated before JVN (Japan Vulnerability Note), vulnerabilities that are not listed in JVN may be updated.

If there is a vulnerability related to JVN (Japan Vulnerability Note), the information will be displayed on the detail page.

To search by CWE, please refer to the CWE Overview and check the CWE number.

CRITICAL
HIGH
MEDIUM
LOW

Update Date:April 28, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
501	8.1	HIGH Network	xibosignage	xibo	Xibo is an open source digital signage platform with a web content management system and Windows display player software. Versions 1.7 through 4.4.0 have an SQL injection vulnerability in the API rou… Update	CWE-89 CWE-184 SQL Injection Incomplete Blacklist	CVE-2026-31952	2026-04-27 23:33	2026-04-24	Show	GitHub Exploit DB Packet Storm

502	6.1	MEDIUM Local	chainguard	melange	melange allows users to build apk packages using declarative pipelines. Starting in version 0.32.0 and prior to version 0.43.4, an attacker who can influence a melange configuration file — for exampl… Update	CWE-22 Path Traversal	CVE-2026-29050	2026-04-27 23:31	2026-04-24	Show	GitHub Exploit DB Packet Storm

503	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: HID: alps: fix NULL pointer dereference in alps_raw_event() Commit ecfa6f34492c ("HID: Add HID_CLAIMED_INPUT guards in raw_event … Update	-	CVE-2026-31625	2026-04-27 23:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

504	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: HID: core: clamp report_size in s32ton() to avoid undefined shift s32ton() shifts by n-1 where n is the field's report_size, a va… Update	-	CVE-2026-31624	2026-04-27 23:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

505	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: net: usb: cdc-phonet: fix skb frags[] overflow in rx_complete() A malicious USB device claiming to be a CDC Phonet modem can over… Update	-	CVE-2026-31623	2026-04-27 23:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

506	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: ALSA: fireworks: bound device-supplied status before string array lookup The status field in an EFW response is a 32-bit value su… Update	-	CVE-2026-31619	2026-04-27 23:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

507	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: fbdev: tdfxfb: avoid divide-by-zero on FBIOPUT_VSCREENINFO Much like commit 19f953e74356 ("fbdev: fb_pm2fb: Avoid potential divid… Update	-	CVE-2026-31618	2026-04-27 23:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

508	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: usb: gadget: f_ncm: validate minimum block_len in ncm_unwrap_ntb() The block_len read from the host-supplied NTB header is checke… Update	-	CVE-2026-31617	2026-04-27 23:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

509	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: usb: gadget: f_phonet: fix skb frags[] overflow in pn_rx_complete() A broken/bored/mean USB host can overflow the skb_shared_info… Update	-	CVE-2026-31616	2026-04-27 23:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

510	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: usb: gadget: renesas_usb3: validate endpoint index in standard request handlers The GET_STATUS and SET/CLEAR_FEATURE handlers ext… Update	-	CVE-2026-31615	2026-04-27 23:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

511	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: smb: client: fix off-by-8 bounds check in check_wsl_eas() The bounds check uses (u8 *)ea + nlen + 1 + vlen as the end of the EA n… Update	-	CVE-2026-31614	2026-04-27 23:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

512	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix mechToken leak when SPNEGO decode fails after token alloc The kernel ASN.1 BER decoder calls action callbacks incremen… Update	-	CVE-2026-31610	2026-04-27 23:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

513	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: fbdev: udlfb: avoid divide-by-zero on FBIOPUT_VSCREENINFO Much like commit 19f953e74356 ("fbdev: fb_pm2fb: Avoid potential divide… Update	-	CVE-2026-31605	2026-04-27 23:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

514	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: wifi: rtw88: fix device leak on probe failure Driver core holds a reference to the USB interface and its parent USB device while … Update	-	CVE-2026-31604	2026-04-27 23:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

515	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: staging: sm750fb: fix division by zero in ps_to_hz() ps_to_hz() is called from hw_sm750_crtc_set_mode() without validating that p… Update	-	CVE-2026-31603	2026-04-27 23:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

516	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: media: vidtv: fix NULL pointer dereference in vidtv_channel_pmt_match_sections syzbot reported a general protection fault in vidt… Update	-	CVE-2026-31599	2026-04-27 23:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

517	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: ocfs2: handle invalid dinode in ocfs2_group_extend [BUG] kernel BUG at fs/ocfs2/resize.c:308! Oops: invalid opcode: 0000 [#1] SMP… Update	-	CVE-2026-31596	2026-04-27 23:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

518	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: PCI: endpoint: pci-epf-vntb: Stop cmd_handler work in epf_ntb_epc_cleanup Disable the delayed work before clearing BAR mappings a… Update	-	CVE-2026-31595	2026-04-27 23:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

519	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: PCI: endpoint: pci-epf-vntb: Remove duplicate resource teardown epf_ntb_epc_destroy() duplicates the teardown that the caller is … Update	-	CVE-2026-31594	2026-04-27 23:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

520	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: KVM: SEV: Drop WARN on large size for KVM_MEMORY_ENCRYPT_REG_REGION Drop the WARN in sev_pin_memory() on npages overflowing an in… Update	-	CVE-2026-31590	2026-04-27 23:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

521	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: media: vidtv: fix nfeeds state corruption on start_streaming failure syzbot reported a memory leak in vidtv_psi_service_desc_init… Update	-	CVE-2026-31585	2026-04-27 23:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

522	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: media: em28xx: fix use-after-free in em28xx_v4l2_open() em28xx_v4l2_open() reads dev->v4l2 without holding dev->lock, creating a … Update	-	CVE-2026-31583	2026-04-27 23:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

523	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: ALSA: 6fire: fix use-after-free on disconnect In usb6fire_chip_abort(), the chip struct is allocated as the card's private data (… Update	-	CVE-2026-31581	2026-04-27 23:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

524	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: bcache: fix cached_dev.sb_bio use-after-free and crash In our production environment, we have received multiple crash reports reg… Update	-	CVE-2026-31580	2026-04-27 23:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

525	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: media: as102: fix to not free memory after the device is registered in as102_usb_probe() In as102_usb driver, the following race … Update	-	CVE-2026-31578	2026-04-27 23:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

526	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix NULL i_assoc_inode dereference in nilfs_mdt_save_to_shadow_map The DAT inode's btree node cache (i_assoc_inode) is in… Update	-	CVE-2026-31577	2026-04-27 23:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

527	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: media: hackrf: fix to not free memory after the device is registered in hackrf_probe() In hackrf driver, the following race condi… Update	-	CVE-2026-31576	2026-04-27 23:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

528	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: mm/userfaultfd: fix hugetlb fault mutex hash calculation In mfill_atomic_hugetlb(), linear_page_index() is used to calculate the … Update	-	CVE-2026-31575	2026-04-27 23:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

529	7.5	HIGH Network	-	-	In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix memory leaks and NULL deref in smb2_lock() smb2_lock() has three error handling issues after list_del() detaches smb_l… Update	-	CVE-2026-31477	2026-04-27 23:16	2026-04-22	Show	GitHub Exploit DB Packet Storm

530	8.2	HIGH Network	-	-	In the Linux kernel, the following vulnerability has been resolved: ksmbd: do not expire session on binding failure When a multichannel session binding request fails (e.g. wrong password), the erro… Update	-	CVE-2026-31476	2026-04-27 23:16	2026-04-22	Show	GitHub Exploit DB Packet Storm

531	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: ASoC: sma1307: fix double free of devm_kzalloc() memory A previous change added NULL checks and cleanup for allocation failures i… Update	-	CVE-2026-31475	2026-04-27 23:16	2026-04-22	Show	GitHub Exploit DB Packet Storm

532	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: can: isotp: fix tx.buf use-after-free in isotp_sendmsg() isotp_sendmsg() uses only cmpxchg() on so->tx.state to serialize access … Update	-	CVE-2026-31474	2026-04-27 23:16	2026-04-22	Show	GitHub Exploit DB Packet Storm

533	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: media: mc, v4l2: serialize REINIT and REQBUFS with req_queue_mutex MEDIA_REQUEST_IOC_REINIT can run concurrently with VIDIOC_REQB… Update	-	CVE-2026-31473	2026-04-27 23:16	2026-04-22	Show	GitHub Exploit DB Packet Storm

534	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: xfrm: iptfs: only publish mode_data after clone setup iptfs_clone_state() stores x->mode_data before allocating the reorder windo… Update	-	CVE-2026-31471	2026-04-27 23:16	2026-04-22	Show	GitHub Exploit DB Packet Storm

535	7.1	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: virt: tdx-guest: Fix handling of host controlled 'quote' buffer length Validate host controlled value `quote_buf->out_len` that d… Update	-	CVE-2026-31470	2026-04-27 23:16	2026-04-22	Show	GitHub Exploit DB Packet Storm

536	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: virtio_net: Fix UAF on dst_ops when IFF_XMIT_DST_RELEASE is cleared and napi_tx is false A UAF issue occurs when the virtio_net d… Update	-	CVE-2026-31469	2026-04-27 23:16	2026-04-22	Show	GitHub Exploit DB Packet Storm

537	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: vfio/pci: Fix double free in dma-buf feature The error path through vfio_pci_core_feature_dma_buf() ignores its own advice to onl… Update	-	CVE-2026-31468	2026-04-27 23:16	2026-04-22	Show	GitHub Exploit DB Packet Storm

538	7.5	HIGH Network	-	-	In the Linux kernel, the following vulnerability has been resolved: erofs: add GFP_NOIO in the bio completion if needed The bio completion path in the process context (e.g. dm-verity) will directly… Update	-	CVE-2026-31467	2026-04-27 23:16	2026-04-22	Show	GitHub Exploit DB Packet Storm

539	8.1	HIGH Adjacent	-	-	In the Linux kernel, the following vulnerability has been resolved: scsi: ibmvfc: Fix OOB access in ibmvfc_discover_targets_done() A malicious or compromised VIO server can return a num_written val… Update	-	CVE-2026-31464	2026-04-27 23:16	2026-04-22	Show	GitHub Exploit DB Packet Storm

540	9.8	CRITICAL Network	-	-	In the Linux kernel, the following vulnerability has been resolved: iomap: fix invalid folio access when i_blkbits differs from I/O granularity Commit aa35dd5cbc06 ("iomap: fix invalid folio access… Update	-	CVE-2026-31463	2026-04-27 23:16	2026-04-22	Show	GitHub Exploit DB Packet Storm

541	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: xfs: save ailp before dropping the AIL lock in push callbacks In xfs_inode_item_push() and xfs_qm_dquot_logitem_push(), the AIL l… Update	-	CVE-2026-31454	2026-04-27 23:16	2026-04-22	Show	GitHub Exploit DB Packet Storm

542	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: xfs: avoid dereferencing log items after push callbacks After xfsaild_push_item() calls iop_push(), the log item may have been fr… Update	-	CVE-2026-31453	2026-04-27 23:16	2026-04-22	Show	GitHub Exploit DB Packet Storm

543	8.8	HIGH Network	-	-	In the Linux kernel, the following vulnerability has been resolved: ext4: publish jinode after initialization ext4_inode_attach_jinode() publishes ei->jinode to concurrent users. It used to set ei-… Update	-	CVE-2026-31450	2026-04-27 23:16	2026-04-22	Show	GitHub Exploit DB Packet Storm

544	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: ext4: validate p_idx bounds in ext4_ext_correct_indexes ext4_ext_correct_indexes() walks up the extent tree correcting index entr… Update	-	CVE-2026-31449	2026-04-27 23:16	2026-04-22	Show	GitHub Exploit DB Packet Storm

545	9.4	CRITICAL Network	-	-	In the Linux kernel, the following vulnerability has been resolved: ext4: avoid infinite loops caused by residual data On the mkdir/mknod path, when mapping logical blocks to physical blocks, if in… Update	-	CVE-2026-31448	2026-04-27 23:16	2026-04-22	Show	GitHub Exploit DB Packet Storm

546	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: ext4: reject mount if bigalloc with s_first_data_block != 0 bigalloc with s_first_data_block != 0 is not supported, reject mounti… Update	-	CVE-2026-31447	2026-04-27 23:16	2026-04-22	Show	GitHub Exploit DB Packet Storm

547	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: ext4: fix use-after-free in update_super_work when racing with umount Commit b98535d09179 ("ext4: fix bug_on in start_this_handle… Update	-	CVE-2026-31446	2026-04-27 23:16	2026-04-22	Show	GitHub Exploit DB Packet Storm

548	9.8	CRITICAL Network	-	-	In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free and NULL deref in smb_grant_oplock() smb_grant_oplock() has two issues in the oplock publication sequen… Update	-	CVE-2026-31444	2026-04-27 23:16	2026-04-22	Show	GitHub Exploit DB Packet Storm

549	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Fix possible invalid memory access after FLR In the case that the first Function Level Reset (FLR) concludes cor… Update	-	CVE-2026-31442	2026-04-27 23:16	2026-04-22	Show	GitHub Exploit DB Packet Storm

550	9.8	CRITICAL Network	-	-	In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: fix possible wrong descriptor completion in llist_abort_desc() At the end of this function, d is the traversal c… Update	-	CVE-2026-31436	2026-04-27 23:16	2026-04-22	Show	GitHub Exploit DB Packet Storm