NVD

Icon for New NVD Communications and Status Updates Page

The NVD is the U.S. government repository of standards based vulnerability management data represented using the Security Content Automation Protocol (SCAP). This data enables automation of vulnerability management, security measurement, and compliance. The NVD includes databases of security checklist references, security-related software flaws, product names, and impact metrics.

For information on how to cite the NVD, including the database's Digital Object Identifier (DOI), please consult NIST's Public Data Repository.

Legal Disclaimer:

Here is where you can read the NVD legal disclaimer.

Last 20 Scored Vulnerability IDs & Summaries CVSS Severity

CVE-2026-23230 - In the Linux kernel, the following vulnerability has been resolved: smb: client: split cached_fid bitfields to avoid shared-byte RMW races is_open, has_lease and on_list are stored in the same bitfield byte in struct cached_fid but are updated i... read CVE-2026-23230
Published: February 18, 2026; 11:22:32 AM -0500

V3.1: 5.5 MEDIUM
CVE-2026-23231 - In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: fix use-after-free in nf_tables_addchain() nf_tables_addchain() publishes the chain to table->chains via list_add_tail_rcu() (in nft_chain_add()) before re... read CVE-2026-23231
Published: March 04, 2026; 8:15:58 AM -0500

V3.1: 7.8 HIGH
CVE-2025-71238 - In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix bsg_done() causing double free Kernel panic observed on system, [5353358.825191] BUG: unable to handle page fault for address: ff5f5e897b024000 [5353358.8251... read CVE-2025-71238
Published: March 04, 2026; 10:16:12 AM -0500

V3.1: 7.8 HIGH
CVE-2026-23232 - In the Linux kernel, the following vulnerability has been resolved: Revert "f2fs: block cache/dio write during f2fs_enable_checkpoint()" This reverts commit 196c81fdd438f7ac429d5639090a9816abb9760a. Original patch may cause below deadlock, reve... read CVE-2026-23232
Published: March 04, 2026; 10:16:13 AM -0500

V3.1: 5.5 MEDIUM
CVE-2026-23233 - In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid mapping wrong physical block for swapfile Xiaolong Guo reported a f2fs bug in bugzilla [1] [1] https://bugzilla.kernel.org/show_bug.cgi?id=220951 Quoted: "... read CVE-2026-23233
Published: March 04, 2026; 10:16:13 AM -0500

V3.1: 7.8 HIGH
CVE-2026-23234 - In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid UAF in f2fs_write_end_io() As syzbot reported an use-after-free issue in f2fs_write_end_io(). It is caused by below race condition: loop device umount - ... read CVE-2026-23234
Published: March 04, 2026; 10:16:13 AM -0500

V3.1: 7.8 HIGH
CVE-2026-23235 - In the Linux kernel, the following vulnerability has been resolved: f2fs: fix out-of-bounds access in sysfs attribute read/write Some f2fs sysfs attributes suffer from out-of-bounds memory access and incorrect handling of integer values whose si... read CVE-2026-23235
Published: March 04, 2026; 10:16:13 AM -0500

V3.1: 7.1 HIGH
CVE-2026-23236 - In the Linux kernel, the following vulnerability has been resolved: fbdev: smscufx: properly copy ioctl memory to kernelspace The UFX_IOCTL_REPORT_DAMAGE ioctl does not properly copy data from userspace to kernelspace, and instead directly refer... read CVE-2026-23236
Published: March 04, 2026; 10:16:14 AM -0500

V3.1: 5.5 MEDIUM
CVE-2026-23130 - In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: fix dead lock while flushing management frames Commit [1] converted the management transmission work item into a wiphy work. Since a wiphy work can only run under ... read CVE-2026-23130
Published: February 14, 2026; 10:16:08 AM -0500

V3.1: 5.5 MEDIUM
CVE-2026-23131 - In the Linux kernel, the following vulnerability has been resolved: platform/x86: hp-bioscfg: Fix kobject warnings for empty attribute names The hp-bioscfg driver attempts to register kobjects with empty names when the HP BIOS returns attributes... read CVE-2026-23131
Published: February 14, 2026; 10:16:08 AM -0500

V3.1: 5.5 MEDIUM
CVE-2025-71201 - In the Linux kernel, the following vulnerability has been resolved: netfs: Fix early read unlock of page with EOF in middle The read result collection for buffered reads seems to run ahead of the completion of subrequests under some circumstance... read CVE-2025-71201
Published: February 14, 2026; 11:15:52 AM -0500

V3.1: 7.1 HIGH
CVE-2025-71202 - In the Linux kernel, the following vulnerability has been resolved: iommu/sva: invalidate stale IOTLB entries for kernel address space Introduce a new IOMMU interface to flush IOTLB paging cache entries for the CPU kernel address space. This in... read CVE-2025-71202
Published: February 14, 2026; 11:15:52 AM -0500

V3.1: 5.5 MEDIUM
CVE-2026-23132 - In the Linux kernel, the following vulnerability has been resolved: drm/bridge: synopsys: dw-dp: fix error paths of dw_dp_bind Fix several issues in dw_dp_bind() error handling: 1. Missing return after drm_bridge_attach() failure - the function... read CVE-2026-23132
Published: February 14, 2026; 11:15:53 AM -0500

V3.1: 5.5 MEDIUM
CVE-2026-23133 - In the Linux kernel, the following vulnerability has been resolved: wifi: ath10k: fix dma_free_coherent() pointer dma_alloc_coherent() allocates a DMA mapped buffer and stores the addresses in XXX_unaligned fields. Those should be reused when f... read CVE-2026-23133
Published: February 14, 2026; 11:15:53 AM -0500

V3.1: 5.5 MEDIUM
CVE-2026-23134 - In the Linux kernel, the following vulnerability has been resolved: slab: fix kmalloc_nolock() context check for PREEMPT_RT On PREEMPT_RT kernels, local_lock becomes a sleeping lock. The current check in kmalloc_nolock() only verifies we're not ... read CVE-2026-23134
Published: February 14, 2026; 11:15:53 AM -0500

V3.1: 5.5 MEDIUM
CVE-2026-23135 - In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: fix dma_free_coherent() pointer dma_alloc_coherent() allocates a DMA mapped buffer and stores the addresses in XXX_unaligned fields. Those should be reused when f... read CVE-2026-23135
Published: February 14, 2026; 11:15:53 AM -0500

V3.1: 5.5 MEDIUM
CVE-2026-23237 - In the Linux kernel, the following vulnerability has been resolved: platform/x86: classmate-laptop: Add missing NULL pointer checks In a few places in the Classmate laptop driver, code using the accel object may run before that object's address ... read CVE-2026-23237
Published: March 04, 2026; 10:16:14 AM -0500

V3.1: 5.5 MEDIUM
CVE-2026-23136 - In the Linux kernel, the following vulnerability has been resolved: libceph: reset sparse-read state in osd_fault() When a fault occurs, the connection is abandoned, reestablished, and any pending operations are retried. The OSD client tracks th... read CVE-2026-23136
Published: February 14, 2026; 11:15:53 AM -0500

V3.1: 5.5 MEDIUM
CVE-2026-23137 - In the Linux kernel, the following vulnerability has been resolved: of: unittest: Fix memory leak in unittest_data_add() In unittest_data_add(), if of_resolve_phandles() fails, the allocated unittest_data is not freed, leading to a memory leak. ... read CVE-2026-23137
Published: February 14, 2026; 11:15:53 AM -0500

V3.1: 5.5 MEDIUM
CVE-2026-23238 - In the Linux kernel, the following vulnerability has been resolved: romfs: check sb_set_blocksize() return value romfs_fill_super() ignores the return value of sb_set_blocksize(), which can fail if the requested block size is incompatible with t... read CVE-2026-23238
Published: March 04, 2026; 10:16:14 AM -0500

V3.1: 5.5 MEDIUM

Created September 20, 2022 , Updated August 27, 2024

You are viewing this page in an unauthorized frame window.

Information Technology Laboratory

National Vulnerability Database

National Vulnerability Database

Legal Disclaimer: