NVD

Icon for NVD Communications and Status Updates Page

The NVD is the U.S. government repository of standards based vulnerability management data represented using the Security Content Automation Protocol (SCAP). This data enables automation of vulnerability management, security measurement, and compliance. The NVD includes databases of security checklist references, security-related software flaws, product names, and impact metrics.

For information on how to cite the NVD, including the database's Digital Object Identifier (DOI), please consult NIST's Public Data Repository.

Legal Disclaimer:

Here is where you can read the NVD legal disclaimer.

Last 20 Scored Vulnerability IDs & Summaries CVSS Severity

CVE-2026-6843 - A flaw was found in nano. A local user could exploit a format string vulnerability in the `statusline()` function. By creating a directory with a name containing `printf` specifiers, the application attempts to display this name, leading to a segm... read CVE-2026-6843
Published: April 22, 2026; 5:16:26 AM -0400

V3.1: 5.5 MEDIUM
CVE-2026-6844 - A flaw was found in the `readelf` utility of the binutils package. A local attacker could exploit two Denial of Service (DoS) vulnerabilities by providing a specially crafted Executable and Linkable Format (ELF) file. One vulnerability, a resource... read CVE-2026-6844
Published: April 22, 2026; 5:16:27 AM -0400

V3.1: 5.5 MEDIUM
CVE-2026-6845 - A flaw was found in binutils, specifically within the `readelf` utility. This vulnerability allows a local attacker to cause a Denial of Service (DoS) by tricking a user into processing a specially crafted Executable and Linkable Format (ELF) file... read CVE-2026-6845
Published: April 22, 2026; 5:16:27 AM -0400

V3.1: 5.0 MEDIUM
CVE-2026-6846 - A flaw was found in binutils. A heap-buffer-overflow vulnerability exists when processing a specially crafted XCOFF (Extended Common Object File Format) object file during linking. A local attacker could trick a user into processing this malicious... read CVE-2026-6846
Published: April 22, 2026; 5:16:27 AM -0400
CVE-2026-6848 - A flaw was found in Red Hat Quay. When Red Hat Quay requests password re-verification for sensitive operations, such as token generation or robot account creation, the re-authentication prompt can be bypassed. This allows a user with a timed-out s... read CVE-2026-6848
Published: April 22, 2026; 6:16:52 AM -0400

V3.1: 8.1 HIGH
CVE-2026-6855 - A flaw was found in InstructLab. A local attacker could exploit a path traversal vulnerability in the chat session handler by manipulating the `logs_dir` parameter. This allows the attacker to create new directories and write files to arbitrary lo... read CVE-2026-6855
Published: April 22, 2026; 9:16:22 AM -0400

V3.1: 7.1 HIGH
CVE-2026-31396 - In the Linux kernel, the following vulnerability has been resolved: net: macb: fix use-after-free access to PTP clock PTP clock is registered on every opening of the interface and destroyed on every closing. However it may be accessed via get_t... read CVE-2026-31396
Published: April 03, 2026; 12:16:37 PM -0400
CVE-2026-31397 - In the Linux kernel, the following vulnerability has been resolved: mm/huge_memory: fix use of NULL folio in move_pages_huge_pmd() move_pages_huge_pmd() handles UFFDIO_MOVE for both normal THPs and huge zero pages. For the huge zero page path, ... read CVE-2026-31397
Published: April 03, 2026; 12:16:38 PM -0400
CVE-2026-31398 - In the Linux kernel, the following vulnerability has been resolved: mm/rmap: fix incorrect pte restoration for lazyfree folios We batch unmap anonymous lazyfree folios by folio_unmap_pte_batch. If the batch has a mix of writable and non-writabl... read CVE-2026-31398
Published: April 03, 2026; 12:16:38 PM -0400
CVE-2026-31399 - In the Linux kernel, the following vulnerability has been resolved: nvdimm/bus: Fix potential use after free in asynchronous initialization Dingisoul with KASAN reports a use after free if device_add() fails in nd_async_device_register(). Commi... read CVE-2026-31399
Published: April 03, 2026; 12:16:38 PM -0400

V3.1: 7.8 HIGH
CVE-2026-31400 - In the Linux kernel, the following vulnerability has been resolved: sunrpc: fix cache_request leak in cache_release When a reader's file descriptor is closed while in the middle of reading a cache_request (rp->offset != 0), cache_release() decre... read CVE-2026-31400
Published: April 03, 2026; 12:16:38 PM -0400

V3.1: 5.5 MEDIUM
CVE-2026-31401 - In the Linux kernel, the following vulnerability has been resolved: HID: bpf: prevent buffer overflow in hid_hw_request right now the returned value is considered to be always valid. However, when playing with HID-BPF, the return value can be ar... read CVE-2026-31401
Published: April 03, 2026; 12:16:39 PM -0400
CVE-2026-31402 - In the Linux kernel, the following vulnerability has been resolved: nfsd: fix heap overflow in NFSv4.0 LOCK replay cache The NFSv4.0 replay cache uses a fixed 112-byte inline buffer (rp_ibuf[NFSD4_REPLAY_ISIZE]) to store encoded operation respon... read CVE-2026-31402
Published: April 03, 2026; 12:16:39 PM -0400
CVE-2026-31403 - In the Linux kernel, the following vulnerability has been resolved: NFSD: Hold net reference for the lifetime of /proc/fs/nfs/exports fd The /proc/fs/nfs/exports proc entry is created at module init and persists for the module's lifetime. export... read CVE-2026-31403
Published: April 03, 2026; 12:16:39 PM -0400
CVE-2026-31404 - In the Linux kernel, the following vulnerability has been resolved: NFSD: Defer sub-object cleanup in export put callbacks svc_export_put() calls path_put() and auth_domain_put() immediately when the last reference drops, before the RCU grace pe... read CVE-2026-31404
Published: April 03, 2026; 12:16:39 PM -0400
CVE-2026-31405 - In the Linux kernel, the following vulnerability has been resolved: media: dvb-net: fix OOB access in ULE extension header tables The ule_mandatory_ext_handlers[] and ule_optional_ext_handlers[] tables in handle_one_ule_extension() are declared ... read CVE-2026-31405
Published: April 06, 2026; 4:16:38 AM -0400
CVE-2025-3406 - A vulnerability was found in Nothings stb up to f056911. It has been classified as problematic. Affected is the function stbhw_build_tileset_from_image of the component Header Array Handler. The manipulation of the argument w leads to out-of-bound... read CVE-2025-3406
Published: April 08, 2025; 12:15:31 AM -0400

V3.1: 6.5 MEDIUM
CVE-2025-3408 - A vulnerability was found in Nothings stb up to f056911. It has been rated as critical. Affected by this issue is the function stb_dupreplace. The manipulation leads to integer overflow. The attack may be launched remotely. Continious delivery wit... read CVE-2025-3408
Published: April 08, 2025; 12:15:32 AM -0400

V3.1: 8.8 HIGH
CVE-2025-3407 - A vulnerability was found in Nothings stb up to f056911. It has been declared as critical. Affected by this vulnerability is the function stbhw_build_tileset_from_image. The manipulation of the argument h_count/v_count leads to out-of-bounds read.... read CVE-2025-3407
Published: April 08, 2025; 12:15:31 AM -0400

V3.1: 8.8 HIGH
CVE-2025-3409 - A vulnerability classified as critical has been found in Nothings stb up to f056911. This affects the function stb_include_string. The manipulation of the argument path_to_includes leads to stack-based buffer overflow. It is possible to initiate t... read CVE-2025-3409
Published: April 08, 2025; 1:15:40 AM -0400

V3.1: 8.8 HIGH

Created September 20, 2022 , Updated August 27, 2024

You are viewing this page in an unauthorized frame window.

Information Technology Laboratory

National Vulnerability Database

National Vulnerability Database

Legal Disclaimer: