NVD - Home

NVD - Home
Communications Page
CVSS v4.0 Support
2.0 APIs
The NVD is the U.S. government repository
of standards based vulnerability management data represented using
the Security Content Automation Protocol (SCAP). This data enables
automation of vulnerability management, security measurement, and
compliance. The NVD includes databases of security checklist
references, security-related software flaws, product names, and
impact metrics.
For information on how to cite the NVD, including the
database's Digital Object Identifier (DOI), please consult
NIST's Public Data Repository
Legal Disclaimer:
Here is where you can read the NVD
legal disclaimer
Last
20 Scored Vulnerability IDs & Summaries
CVSS
Severity
CVE-2026-23337
- In the Linux kernel, the following vulnerability has been resolved:

pinctrl: pinconf-generic: Fix memory leak in pinconf_generic_parse_dt_config()

In pinconf_generic_parse_dt_config(), if parse_dt_cfg() fails, it returns
directly. This bypasses ...
read CVE-2026-23337
Published:
March 25, 2026; 7:16:31 AM -0400
V3.1:
5.5 MEDIUM
CVE-2026-23338
- In the Linux kernel, the following vulnerability has been resolved:

drm/amdgpu/userq: Do not allow userspace to trivially triger kernel warnings

Userspace can either deliberately pass in the too small num_fences, or the
required number can legit...
read CVE-2026-23338
Published:
March 25, 2026; 7:16:31 AM -0400
V3.1:
5.5 MEDIUM
CVE-2026-23339
- In the Linux kernel, the following vulnerability has been resolved:

nfc: nci: free skb on nci_transceive early error paths

nci_transceive() takes ownership of the skb passed by the caller,
but the -EPROTO, -EINVAL, and -EBUSY error paths return ...
read CVE-2026-23339
Published:
March 25, 2026; 7:16:31 AM -0400
V3.1:
5.5 MEDIUM
CVE-2026-23340
- In the Linux kernel, the following vulnerability has been resolved:

net: sched: avoid qdisc_reset_all_tx_gt() vs dequeue race for lockless qdiscs

When shrinking the number of real tx queues,
netif_set_real_num_tx_queues() calls qdisc_reset_all_t...
read CVE-2026-23340
Published:
March 25, 2026; 7:16:31 AM -0400
CVE-2026-23341
- In the Linux kernel, the following vulnerability has been resolved:

accel/amdxdna: Fix crash when destroying a suspended hardware context

If userspace issues an ioctl to destroy a hardware context that has
already been automatically suspended, t...
read CVE-2026-23341
Published:
March 25, 2026; 7:16:32 AM -0400
V3.1:
5.5 MEDIUM
CVE-2026-23342
- In the Linux kernel, the following vulnerability has been resolved:

bpf: Fix race in cpumap on PREEMPT_RT

On PREEMPT_RT kernels, the per-CPU xdp_bulk_queue (bq) can be accessed
concurrently by multiple preemptible tasks on the same CPU.

The ori...
read CVE-2026-23342
Published:
March 25, 2026; 7:16:32 AM -0400
V3.1:
4.7 MEDIUM
CVE-2026-23343
- In the Linux kernel, the following vulnerability has been resolved:

xdp: produce a warning when calculated tailroom is negative

Many ethernet drivers report xdp Rx queue frag size as being the same as
DMA write size. However, the only user of th...
read CVE-2026-23343
Published:
March 25, 2026; 7:16:32 AM -0400
V3.1:
7.8 HIGH
CVE-2026-23331
- In the Linux kernel, the following vulnerability has been resolved:

udp: Unhash auto-bound connected sk from 4-tuple hash table when disconnected.

Let's say we bind() an UDP socket to the wildcard address with a
non-zero port, connect() it to an...
read CVE-2026-23331
Published:
March 25, 2026; 7:16:30 AM -0400
V3.1:
5.5 MEDIUM
CVE-2026-23332
- In the Linux kernel, the following vulnerability has been resolved:

cpufreq: intel_pstate: Fix crash during turbo disable

When the system is booted with kernel command line argument "nosmt" or
"maxcpus" to limit the number of CPUs, disabling tur...
read CVE-2026-23332
Published:
March 25, 2026; 7:16:30 AM -0400
V3.1:
5.5 MEDIUM
CVE-2026-23334
- In the Linux kernel, the following vulnerability has been resolved:

can: usb: f81604: handle short interrupt urb messages properly

If an interrupt urb is received that is not the correct length, properly
detect it and don't attempt to treat the ...
read CVE-2026-23334
Published:
March 25, 2026; 7:16:30 AM -0400
V3.1:
5.5 MEDIUM
CVE-2026-23335
- In the Linux kernel, the following vulnerability has been resolved:

RDMA/irdma: Fix kernel stack leak in irdma_create_user_ah()

struct irdma_create_ah_resp { // 8 bytes, no padding
__u32 ah_id; // offset 0 - SET (uresp.ah_id =...
read CVE-2026-23335
Published:
March 25, 2026; 7:16:31 AM -0400
V3.1:
5.5 MEDIUM
CVE-2026-23336
- In the Linux kernel, the following vulnerability has been resolved:

wifi: cfg80211: cancel rfkill_block work in wiphy_unregister()

There is a use-after-free error in cfg80211_shutdown_all_interfaces found
by syzkaller:

BUG: KASAN: use-after-fre...
read CVE-2026-23336
Published:
March 25, 2026; 7:16:31 AM -0400
CVE-2026-23325
- In the Linux kernel, the following vulnerability has been resolved:

wifi: mt76: mt7996: Fix possible oob access in mt7996_mac_write_txwi_80211()

Check frame length before accessing the mgmt fields in
mt7996_mac_write_txwi_80211 in order to avoid...
read CVE-2026-23325
Published:
March 25, 2026; 7:16:29 AM -0400
V3.1:
7.1 HIGH
CVE-2026-23326
- In the Linux kernel, the following vulnerability has been resolved:

xsk: Fix fragment node deletion to prevent buffer leak

After commit b692bf9a7543 ("xsk: Get rid of xdp_buff_xsk::xskb_list_node"),
the list_node field is reused for both the xsk...
read CVE-2026-23326
Published:
March 25, 2026; 7:16:29 AM -0400
V3.1:
7.8 HIGH
CVE-2026-23327
- In the Linux kernel, the following vulnerability has been resolved:

cxl/mbox: validate payload size before accessing contents in cxl_payload_from_user_allowed()

cxl_payload_from_user_allowed() casts and dereferences the input
payload without fir...
read CVE-2026-23327
Published:
March 25, 2026; 7:16:29 AM -0400
V3.1:
7.1 HIGH
CVE-2026-23328
- In the Linux kernel, the following vulnerability has been resolved:

accel/amdxdna: Fix NULL pointer dereference of mgmt_chann

mgmt_chann may be set to NULL if the firmware returns an unexpected
error in aie2_send_mgmt_msg_wait(). This can later ...
read CVE-2026-23328
Published:
March 25, 2026; 7:16:29 AM -0400
V3.1:
5.5 MEDIUM
CVE-2026-23329
- In the Linux kernel, the following vulnerability has been resolved:

libie: don't unroll if fwlog isn't supported

The libie_fwlog_deinit() function can be called during driver unload
even when firmware logging was never properly initialized. This...
read CVE-2026-23329
Published:
March 25, 2026; 7:16:30 AM -0400
V3.1:
5.5 MEDIUM
CVE-2026-23330
- In the Linux kernel, the following vulnerability has been resolved:

nfc: nci: complete pending data exchange on device close

In nci_close_device(), complete any pending data exchange before
closing. The data exchange callback (e.g.
rawsock_data_...
read CVE-2026-23330
Published:
March 25, 2026; 7:16:30 AM -0400
V3.1:
5.5 MEDIUM
CVE-2026-23317
- In the Linux kernel, the following vulnerability has been resolved:

drm/vmwgfx: Return the correct value in vmw_translate_ptr functions

Before the referenced fixes these functions used a lookup function that
returned a pointer. This was changed ...
read CVE-2026-23317
Published:
March 25, 2026; 7:16:28 AM -0400
CVE-2026-23316
- In the Linux kernel, the following vulnerability has been resolved:

net: ipv4: fix ARM64 alignment fault in multipath hash seed

`struct sysctl_fib_multipath_hash_seed` contains two u32 fields
(user_seed and mp_seed), making it an 8-byte structur...
read CVE-2026-23316
Published:
March 25, 2026; 7:16:28 AM -0400
V3.1:
5.5 MEDIUM
Created
September 20, 2022
Updated
August 27, 2024