NVD Vulnerability Information Top

Show Search Menu

Vendor Name
プロダクト・サービス名
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
In descending order of publication date
In descending order of update date
Number of items displayed

NVD Vulnerability Information Top

You can search the list of vulnerabilities managed by the NVD (National Vulnerability Database).
Since vulnerability information is often updated before JVN (Japan Vulnerability Note), vulnerabilities that are not listed in JVN may be updated.

If there is a vulnerability related to JVN (Japan Vulnerability Note), the information will be displayed on the detail page.

To search by CWE, please refer to the CWE Overview and check the CWE number.

CRITICAL
HIGH
MEDIUM
LOW

Update Date:April 28, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
401	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: i2c: s3c24xx: check the size of the SMBUS message before using it The first byte of an i2c SMBUS message is the size, and it shou… Update	-	CVE-2026-31627	2026-04-28 00:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

402	7.1	HIGH Adjacent	-	-	In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: initialize le_tmp64 in rtw_BIP_verify() Initialize le_tmp64 to zero in rtw_BIP_verify() to prevent using unin… Update	-	CVE-2026-31626	2026-04-28 00:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

403	8.8	HIGH Adjacent	-	-	In the Linux kernel, the following vulnerability has been resolved: NFC: digital: Bounds check NFC-A cascade depth in SDD response handler The NFC-A anti-collision cascade in digital_in_recv_sdd_re… Update	-	CVE-2026-31622	2026-04-28 00:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

404	8.1	HIGH Network	-	-	In the Linux kernel, the following vulnerability has been resolved: smb: client: fix OOB reads parsing symlink error response When a CREATE returns STATUS_STOPPED_ON_SYMLINK, smb2_check_message() r… Update	-	CVE-2026-31613	2026-04-28 00:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

405	7.5	HIGH Network	-	-	In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate EaNameLength in smb2_get_ea() smb2_get_ea() reads ea_req->EaNameLength from the client request and passes it dire… Update	-	CVE-2026-31612	2026-04-28 00:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

406	8.6	HIGH Network	-	-	In the Linux kernel, the following vulnerability has been resolved: ksmbd: require 3 sub-authorities before reading sub_auth[2] parse_dacl() compares each ACE SID against sid_unix_NFS_mode and on m… Update	-	CVE-2026-31611	2026-04-28 00:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

407	9.8	CRITICAL Network	-	-	In the Linux kernel, the following vulnerability has been resolved: smb: client: avoid double-free in smbd_free_send_io() after smbd_send_batch_flush() smbd_send_batch_flush() already calls smbd_fr… Update	-	CVE-2026-31609	2026-04-28 00:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

408	9.8	CRITICAL Network	-	-	In the Linux kernel, the following vulnerability has been resolved: smb: server: avoid double-free in smb_direct_free_sendmsg after smb_direct_flush_send_list() smb_direct_flush_send_list() already… Update	-	CVE-2026-31608	2026-04-28 00:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

409	9.8	CRITICAL Network	-	-	In the Linux kernel, the following vulnerability has been resolved: usbip: validate number_of_packets in usbip_pack_ret_submit() When a USB/IP client receives a RET_SUBMIT response, usbip_pack_ret_… Update	-	CVE-2026-31607	2026-04-28 00:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

410	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: ALSA: ctxfi: Limit PTP to a single page Commit 391e69143d0a increased CT_PTP_NUM from 1 to 4 to support 256 playback streams, but… Update	-	CVE-2026-31602	2026-04-28 00:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

411	7.5	HIGH Network	-	-	In the Linux kernel, the following vulnerability has been resolved: arm64: mm: Handle invalid large leaf mappings correctly It has been possible for a long time to mark ptes in the linear map as in… Update	-	CVE-2026-31600	2026-04-28 00:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

412	7.5	HIGH Network	-	-	In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix possible deadlock between unlink and dio_end_io_write ocfs2_unlink takes orphan dir inode_lock first and then ip_alloc… Update	-	CVE-2026-31598	2026-04-28 00:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

413	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix use-after-free in ocfs2_fault() when VM_FAULT_RETRY filemap_fault() may drop the mmap_lock before returning VM_FAULT_R… Update	-	CVE-2026-31597	2026-04-28 00:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

414	9.8	CRITICAL Network	-	-	In the Linux kernel, the following vulnerability has been resolved: mm: call ->free_folio() directly in folio_unmap_invalidate() We can only call filemap_free_folio() if we have a reference to (or … Update	-	CVE-2026-31589	2026-04-28 00:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

415	8.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Use scratch field in MMIO fragment to hold small write values When exiting to userspace to service an emulated MMIO wri… Update	-	CVE-2026-31588	2026-04-28 00:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

416	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: ASoC: qcom: q6apm: move component registration to unmanaged version q6apm component registers dais dynamically from ASoC toplolog… Update	-	CVE-2026-31587	2026-04-28 00:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

417	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: mm: blk-cgroup: fix use-after-free in cgwb_release_workfn() cgwb_release_workfn() calls css_put(wb->blkcg_css) and then later acc… Update	-	CVE-2026-31586	2026-04-28 00:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

418	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: media: mediatek: vcodec: fix use-after-free in encoder release path The fops_vcodec_release() function frees the context structur… Update	-	CVE-2026-31584	2026-04-28 00:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

419	8.8	HIGH Adjacent	-	-	In the Linux kernel, the following vulnerability has been resolved: can: gw: fix OOB heap access in cgw_csum_crc8_rel() cgw_csum_crc8_rel() correctly computes bounds-safe indices via calc_idx(): … Update	-	CVE-2026-31570	2026-04-28 00:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

420	7.3	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: LoongArch: KVM: Handle the case that EIOINTC's coremap is empty EIOINTC's coremap in eiointc_update_sw_coremap() can be empty, cu… Update	-	CVE-2026-31569	2026-04-28 00:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

421	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix fence put before wait in amdgpu_amdkfd_submit_ib amdgpu_amdkfd_submit_ib() submits a GPU job and gets a fence fro… Update	-	CVE-2026-31566	2026-04-28 00:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

422	7.5	HIGH Network	-	-	In the Linux kernel, the following vulnerability has been resolved: net: macb: Use dev_consume_skb_any() to free TX SKBs The napi_consume_skb() function is not intended to be called in an IRQ disab… Update	-	CVE-2026-31563	2026-04-28 00:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

423	8.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: LoongArch: KVM: Make kvm_get_vcpu_by_cpuid() more robust kvm_get_vcpu_by_cpuid() takes a cpuid parameter whose type is int, so cp… Update	-	CVE-2026-31558	2026-04-28 00:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

424	7.5	HIGH Network	-	-	In the Linux kernel, the following vulnerability has been resolved: nvmet: move async event work off nvmet-wq For target nvmet_ctrl_free() flushes ctrl->async_event_work. If nvmet_ctrl_free() runs … Update	-	CVE-2026-31557	2026-04-28 00:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

425	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: futex: Require sys_futex_requeue() to have identical flags Nicholas reported that his LLM found it was possible to create a UaF w… Update	-	CVE-2026-31554	2026-04-28 00:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

426	8.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Fix the descriptor address in __kvm_at_swap_desc() Using "(u64 __user *)hva + offset" to get the virtual addresses of… Update	-	CVE-2026-31553	2026-04-28 00:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

427	7.5	HIGH Network	-	-	In the Linux kernel, the following vulnerability has been resolved: wifi: wlcore: Return -ENOMEM instead of -EAGAIN if there is not enough headroom Since upstream commit e75665dd0968 ("wifi: wlcore… Update	-	CVE-2026-31552	2026-04-28 00:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

428	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: cancel pmsr_free_wk in cfg80211_pmsr_wdev_down When the nl80211 socket that originated a PMSR request is closed, … Update	-	CVE-2026-31548	2026-04-28 00:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

429	7.5	HIGH Network	-	-	In the Linux kernel, the following vulnerability has been resolved: smb: smbdirect: introduce smbdirect_socket.recv_io.credits.available The logic off managing recv credits by counting posted recv_… Update	-	CVE-2026-31539	2026-04-28 00:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

430	7.5	HIGH Network	-	-	In the Linux kernel, the following vulnerability has been resolved: smb: server: make use of smbdirect_socket.recv_io.credits.available The logic off managing recv credits by counting posted recv_i… Update	-	CVE-2026-31538	2026-04-28 00:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

431	9.8	CRITICAL Network	-	-	In the Linux kernel, the following vulnerability has been resolved: smb: server: let send_done handle a completion without IB_SEND_SIGNALED With smbdirect_send_batch processing we likely have reque… Update	-	CVE-2026-31536	2026-04-28 00:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

432	9.8	CRITICAL Network	-	-	In the Linux kernel, the following vulnerability has been resolved: net/tls: fix use-after-free in -EBUSY error path of tls_do_encryption The -EBUSY handling in tls_do_encryption(), introduced by c… Update	-	CVE-2026-31533	2026-04-28 00:16	2026-04-24	Show	GitHub Exploit DB Packet Storm

433	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: can: raw: fix ro->uniq use-after-free in raw_rcv() raw_release() unregisters raw CAN receive filters via can_rx_unregister(), but… Update	-	CVE-2026-31532	2026-04-28 00:16	2026-04-23	Show	GitHub Exploit DB Packet Storm

434	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: perf: Make sure to use pmu_ctx->pmu for groups Oliver reported that x86_pmu_del() ended up doing an out-of-bound memory access wh… Update	-	CVE-2026-31528	2026-04-28 00:16	2026-04-22	Show	GitHub Exploit DB Packet Storm

435	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: bpf: Fix undefined behavior in interpreter sdiv/smod for INT_MIN The BPF interpreter's signed 32-bit division and modulo handlers… Update	-	CVE-2026-31525	2026-04-28 00:16	2026-04-22	Show	GitHub Exploit DB Packet Storm

436	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: xfrm: prevent policy_hthresh.work from racing with netns teardown A XFRM_MSG_NEWSPDINFO request can queue the per-net work item p… Update	-	CVE-2026-31516	2026-04-28 00:16	2026-04-22	Show	GitHub Exploit DB Packet Storm

437	8.1	HIGH Adjacent	-	-	In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix stack-out-of-bounds read in l2cap_ecred_conn_req Syzbot reported a KASAN stack-out-of-bounds read in l2cap_… Update	-	CVE-2026-31513	2026-04-28 00:16	2026-04-22	Show	GitHub Exploit DB Packet Storm

438	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: Fix dangling pointer on mgmt_add_adv_patterns_monitor_complete This fixes the condition checking so mgmt_pending… Update	-	CVE-2026-31511	2026-04-28 00:16	2026-04-22	Show	GitHub Exploit DB Packet Storm

439	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: Avoid releasing netdev before teardown completes The patch cited in the Fixes tag below changed the teardown co… Update	-	CVE-2026-31508	2026-04-28 00:16	2026-04-22	Show	GitHub Exploit DB Packet Storm

440	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: net/smc: fix double-free of smc_spd_priv when tee() duplicates splice pipe buffer smc_rx_splice() allocates one smc_spd_priv per … Update	-	CVE-2026-31507	2026-04-28 00:16	2026-04-22	Show	GitHub Exploit DB Packet Storm

441	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: iavf: fix out-of-bounds writes in iavf_get_ethtool_stats() iavf incorrectly uses real_num_tx_queues for ETH_SS_STATS. Since the v… Update	-	CVE-2026-31505	2026-04-28 00:16	2026-04-22	Show	GitHub Exploit DB Packet Storm

442	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: net: fix fanout UAF in packet_release() via NETDEV_UP race `packet_release()` has a race window where `NETDEV_UP` can re-register… Update	-	CVE-2026-31504	2026-04-28 00:16	2026-04-22	Show	GitHub Exploit DB Packet Storm

443	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: team: fix header_ops type confusion with non-Ethernet ports Similar to commit 950803f72547 ("bonding: fix type confusion in bond_… Update	-	CVE-2026-31502	2026-04-28 00:16	2026-04-22	Show	GitHub Exploit DB Packet Storm

444	9.8	CRITICAL Network	-	-	In the Linux kernel, the following vulnerability has been resolved: net: ti: icssg-prueth: fix use-after-free of CPPI descriptor in RX path cppi5_hdesc_get_psdata() returns a pointer into the CPPI … Update	-	CVE-2026-31501	2026-04-28 00:16	2026-04-22	Show	GitHub Exploit DB Packet Storm

445	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: net: macb: use the current queue number for stats There's a potential mismatch between the memory reserved for statistics and the… Update	-	CVE-2026-31494	2026-04-28 00:16	2026-04-22	Show	GitHub Exploit DB Packet Storm

446	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: drm/xe/pf: Fix use-after-free in migration restore When an error is returned from xe_sriov_pf_migration_restore_produce(), the da… Update	-	CVE-2026-31490	2026-04-28 00:16	2026-04-22	Show	GitHub Exploit DB Packet Storm

447	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Do not skip unrelated mode changes in DSC validation Starting with commit 17ce8a6907f7 ("drm/amd/display: Add ds… Update	-	CVE-2026-31488	2026-04-28 00:16	2026-04-22	Show	GitHub Exploit DB Packet Storm

448	7.1	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: hwmon: (pmbus/core) Protect regulator operations with mutex The regulator operations pmbus_regulator_get_voltage(), pmbus_regulat… Update	-	CVE-2026-31486	2026-04-28 00:16	2026-04-22	Show	GitHub Exploit DB Packet Storm

449	7.1	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: io_uring/fdinfo: fix OOB read in SQE_MIXED wrap check __io_uring_show_fdinfo() iterates over pending SQEs and, for 128-byte SQEs … Update	-	CVE-2026-31484	2026-04-28 00:16	2026-04-22	Show	GitHub Exploit DB Packet Storm

450	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: drm/xe: always keep track of remap prev/next During 3D workload, user is reporting hitting: [ 413.361679] WARNING: drivers/gpu/… Update	-	CVE-2026-31479	2026-04-28 00:16	2026-04-22	Show	GitHub Exploit DB Packet Storm