Aggregator

CVE-2026-23156 | Linux Kernel up to 6.1.161/6.6.122/6.12.68/6.18.8 efivarfs efivar_entry_get uninitialized pointer (Nessus ID 299150)

Vuldb Updates
4 months 1 week ago
A vulnerability has been found in Linux Kernel up to 6.1.161/6.6.122/6.12.68/6.18.8 and classified as critical. Affected by this vulnerability is the function efivar_entry_get of the component efivarfs. This manipulation causes uninitialized pointer. This vulnerability is tracked as CVE-2026-23156. The attack is only possible within the local network. No exploit exists. The affected component should be upgraded.
vuldb.com

CVE-2026-23159 | Linux Kernel up to 6.6.122/6.12.68/6.18.8 perf is_user_task null pointer dereference (Nessus ID 299151)

Vuldb Updates
4 months 1 week ago
A vulnerability was found in Linux Kernel up to 6.6.122/6.12.68/6.18.8 and classified as critical. Affected by this issue is the function is_user_task of the component perf. Such manipulation leads to null pointer dereference. This vulnerability is listed as CVE-2026-23159. The attack must be carried out from within the local network. There is no available exploit. It is suggested to upgrade the affected component.
vuldb.com

CVE-2025-11411

CVE Trends
4 months 1 week ago
Currently trending CVE - Hype Score: 2 - NLnet Labs Unbound up to and including version 1.24.2 is vulnerable to possible domain hijack attacks. Promiscuous NS RRSets that complement positive DNS replies in the authority section can be used to trick resolvers to update their delegation information for the zone. Usually ...

CVE-2025-40778

CVE Trends
4 months 1 week ago
Currently trending CVE - Hype Score: 2 - Under certain circumstances, BIND is too lenient when accepting records from answers, allowing an attacker to inject forged data into the cache. This issue affects BIND 9 versions 9.11.0 through 9.16.50, 9.18.0 through 9.18.39, 9.20.0 through 9.20.13, 9.21.0 through 9.21.12, ...

Managed ad