NVD Vulnerability Information Top

Show Search Menu

Vendor Name
プロダクト・サービス名
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
In descending order of publication date
In descending order of update date
Number of items displayed

NVD Vulnerability Information Top

You can search the list of vulnerabilities managed by the NVD (National Vulnerability Database).
Since vulnerability information is often updated before JVN (Japan Vulnerability Note), vulnerabilities that are not listed in JVN may be updated.

If there is a vulnerability related to JVN (Japan Vulnerability Note), the information will be displayed on the detail page.

To search by CWE, please refer to the CWE Overview and check the CWE number.

CRITICAL
HIGH
MEDIUM
LOW

Update Date:June 26, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
4251	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/sdma4: replace BUG_ON with WARN_ON in fence emission sdma_v4_0_ring_emit_fence() contains two BUG_ON(addr & 0x3) asser…	-	CVE-2026-46220	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4252	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: spi: mpc52xx: fix use-after-free on unbind The state machine work is scheduled by the interrupt handler and therefore needs to be…	-	CVE-2026-46219	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4253	7.1	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Add bounds checking to ib_{get,set}_value The uvd/vce/vcn code accesses the IB at predefined offsets without checking…	-	CVE-2026-46218	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4254	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/vcn4: Avoid overflow on msg bound check As pointed out by SDL, the previous condition may be vulnerable to overflow. …	-	CVE-2026-46217	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4255	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: drm/xe/hdcp: Add NULL check for media_gt in intel_hdcp_gsc_check_status() When media GT is disabled via configfs, there is no all…	-	CVE-2026-46216	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4256	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: vsock/virtio: fix accept queue count leak on transport mismatch virtio_transport_recv_listen() calls sk_acceptq_added() before vs…	-	CVE-2026-46214	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4257	8.8	HIGH Adjacent	-	-	In the Linux kernel, the following vulnerability has been resolved: batman-adv: bla: prevent use-after-free when deleting claims When batadv_bla_del_backbone_claims() removes all claims for a backb…	-	CVE-2026-46212	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4258	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: drm/gem: Fix inconsistent plane dimension calculation in drm_gem_fb_init_with_funcs() drm_gem_fb_init_with_funcs() computes sub-s…	-	CVE-2026-46209	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4259	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: batman-adv: reject new tp_meter sessions during teardown Prevent tp_meter from starting new sender or receiver sessions after mes…	-	CVE-2026-46206	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4260	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: staging: media: atomisp: Disallow all private IOCTLs Disallow all private IOCTLs. These aren't quite as safe as one could assume …	-	CVE-2026-46205	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4261	7.1	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/vcn4: Prevent OOB reads when parsing dec msg Check bounds against the end of the BO whenever we access the msg.	-	CVE-2026-46199	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4262	8.8	HIGH Adjacent	-	-	In the Linux kernel, the following vulnerability has been resolved: batman-adv: fix integer overflow on buff_pos Fixing an integer overflow present in batadv_iv_ogm_send_to_if. The size check is do…	-	CVE-2026-46198	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4263	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: validate SVM ioctl nattr against buffer size Validate nattr field against the buffer size, preventing out-of-bounds b…	-	CVE-2026-46197	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4264	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: RDMA/vmw_pvrdma: Fix double free on pvrdma_alloc_ucontext() error path Sashiko points out that pvrdma_uar_free() is already calle…	-	CVE-2026-46189	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4265	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: wifi: rsi: fix kthread lifetime race between self-exit and external-stop RSI driver use both self-exit(kthread_complete_and_exit)…	-	CVE-2026-46187	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4266	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: Bluetooth: virtio_bt: validate rx pkt_type header length virtbt_rx_handle() reads the leading pkt_type byte from the RX skb and f…	-	CVE-2026-46186	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4267	9.1	CRITICAL Network	-	-	In the Linux kernel, the following vulnerability has been resolved: smb/client: fix out-of-bounds read in symlink_data() Since smb2_check_message() returns success without length validation for the…	-	CVE-2026-46185	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4268	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: sound: ua101: fix division by zero at probe Add a missing sanity check for bNrChannels in detect_usb_format() to prevent a divisi…	-	CVE-2026-46184	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4269	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF: Don't allow pointer operations on unconfigured streams When reporting the pointer for a compressed stream we report th…	-	CVE-2026-46179	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4270	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx4: Fix resource leak on error in mlx4_ib_create_srq() Sashiko points out that mlx4_srq_alloc() was not undone during erro…	-	CVE-2026-46178	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4271	7.5	HIGH Network	-	-	In the Linux kernel, the following vulnerability has been resolved: ipmi: Add limits to event and receive message requests The driver would just fetch events and receive messages until the BMC said…	-	CVE-2026-46177	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4272	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: exit: prevent preemption of oopsing TASK_DEAD task When an already-exiting task oopses, make_task_dead() currently calls do_task_…	-	CVE-2026-46173	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4273	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: ipv6: xfrm6: release dst on error in xfrm6_rcv_encap() xfrm6_rcv_encap() performs an IPv6 route lookup when the skb does not alre…	-	CVE-2026-46172	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4274	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: mptcp: pm: ADD_ADDR rtx: free sk if last When an ADD_ADDR is retransmitted, the sk is held in sk_reset_timer(), and released at t…	-	CVE-2026-46170	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4275	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: mptcp: fix scheduling with atomic in timestamp sockopt Using lock_sock_fast() (atomic context) around sock_set_timestamp() and so…	-	CVE-2026-46168	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4276	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: usb: usblp: fix uninitialized heap leak via LPGETSTATUS ioctl Just like in a previous problem in this driver, usblp_ctrl_msg() wi…	-	CVE-2026-46167	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4277	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: openvswitch: vport: fix self-deadlock on release of tunnel ports vports are used concurrently and protected by RCU, so netdev_put…	-	CVE-2026-46165	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4278	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: wifi: b43legacy: enforce bounds check on firmware key index in RX path Same fix as b43: the firmware-controlled key index in b43l…	-	CVE-2026-46163	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4279	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: md/raid10: fix divide-by-zero in setup_geo() with zero far_copies setup_geo() extracts near_copies (nc) and far_copies (fc) from …	-	CVE-2026-46161	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4280	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: mptcp: pm: ADD_ADDR rtx: always decrease sk refcount When an ADD_ADDR is retransmitted, the sk is held in sk_reset_timer(). It sh…	-	CVE-2026-46158	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4281	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: LoongArch: Fix potential ADE in loongson_gpu_fixup_dma_hang() The switch case in loongson_gpu_fixup_dma_hang() may not DC2 or DC3…	-	CVE-2026-46156	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4282	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: usb: usblp: fix heap leak in IEEE 1284 device ID via short response usblp_ctrl_msg() collapses the usb_control_msg() return value…	-	CVE-2026-46151	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4283	7.1	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: fanotify: fix false positive on permission events fsnotify_get_mark_safe() may return false for a mark on an unrelated group, whi…	-	CVE-2026-46150	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4284	7.1	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: scsi: target: configfs: Bound snprintf() return in tg_pt_gp_members_show() target_tg_pt_gp_members_show() formats LUN paths with …	-	CVE-2026-46149	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4285	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Avoid potential endless loop in convert_chmap_v3() The convert_chmap_v3() has a loop with its increment size of …	-	CVE-2026-46146	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4286	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: ASoC: qcom: q6apm-lpass-dai: Fix multiple graph opens As prepare can be called mulitple times, this can result in multiple graph …	-	CVE-2026-46143	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4287	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7921: fix a potential clc buffer length underflow The buf_len is used to limit the iterations for retrieving the co…	-	CVE-2026-46136	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4288	7.5	HIGH Network	-	-	In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Reject unknown opcodes before ICRC processing Even after applying commit 7244491dab34 ("RDMA/rxe: Validate pad and ICRC…	-	CVE-2026-46133	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4289	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: net: rtnetlink: zero ifla_vf_broadcast to avoid stack infoleak in rtnl_fill_vfinfo rtnl_fill_vfinfo() declares struct ifla_vf_bro…	-	CVE-2026-46132	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4290	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: btrfs: fix double free in create_space_info() error path When kobject_init_and_add() fails, the call chain is: create_space_info…	-	CVE-2026-46129	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4291	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: ipmi: Check event message buffer response for bad data The event message buffer response data size got checked later when process…	-	CVE-2026-46128	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4292	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: RDMA/ocrdma: Don't NULL deref uctx on errors in ocrdma_copy_pd_uresp() Sashiko points out that pd->uctx isn't initialized until l…	-	CVE-2026-46127	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4293	7.5	HIGH Network	-	-	In the Linux kernel, the following vulnerability has been resolved: isofs: validate block number from NFS file handle in isofs_export_iget isofs_fh_to_dentry() and isofs_fh_to_parent() pass an atta…	-	CVE-2026-46124	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4294	7.7	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: Bluetooth: virtio_bt: clamp rx length before skb_put virtbt_rx_work() calls skb_put(skb, len) where len comes directly from virtq…	-	CVE-2026-46123	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4295	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: wifi: b43: enforce bounds check on firmware key index in b43_rx() The firmware-controlled key index in b43_rx() can exceed the de…	-	CVE-2026-46122	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4296	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: ip6_gre: Use cached t->net in ip6erspan_changelink(). After commit 5e72ce3e3980 ("net: ipv6: Use link netns in newlink() of rtnl_…	-	CVE-2026-46120	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4297	9.1	CRITICAL Network	-	-	In the Linux kernel, the following vulnerability has been resolved: libceph: Fix slab-out-of-bounds access in auth message processing If a (potentially corrupted) message of type CEPH_MSG_AUTH_REPL…	-	CVE-2026-46119	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4298	8.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Fix shadow paging use-after-free due to unexpected GFN The shadow MMU computes GFNs for direct shadow pages using sp->g…	-	CVE-2026-46113	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4299	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fix unlocked call to hns_roce_qp_remove() Sashiko points out that hns_roce_qp_remove() requires the caller to hold lock…	-	CVE-2026-46112	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4300	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: usb: ulpi: fix memory leak on ulpi_register() error paths Commit 01af542392b5 ("usb: ulpi: fix double free in ulpi_register_inter…	-	CVE-2026-46109	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm