Latest CVE Feed

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

Score
Vulnerability
Published
6.5 MEDIUM
CVE-2025-12801 — Nfs-utils: rpc.mountd in the nfs-utils privilege escalation

A vulnerability was recently discovered in the rpc.mountd daemon in the nfs-utils package for Linux, that allows a NFSv3 client to escalate the privileges assigned to it in the /etc/exports file at m…

Remote | Authorization
Mar 04, 2026 Mar 04, 2026
Mar 04, 2026
Mar 04, 2026
0.0 NA
CVE-2026-28695 — Craft affected by authenticated RCE via Twig SSTI - create() function + Symfony Process g…

Craft is a content management system (CMS). There is an authenticated admin RCE in Craft CMS 5.8.21 via Server-Side Template Injection using the create() Twig function combined with a Symfony Process…

| Injection
Mar 04, 2026 Mar 04, 2026
Mar 04, 2026
Mar 04, 2026
7.0 HIGH
CVE-2025-15558 — Docker Desktop Docker Plugins Uncontrolled Search Path Element Local Privilege Escalation…

Docker CLI for Windows searches for plugin binaries in C:\ProgramData\Docker\cli-plugins, a directory that does not exist by default. A low-privileged attacker can create this directory and place mal…

| Misconfiguration
Mar 04, 2026 Mar 04, 2026
Mar 04, 2026
Mar 04, 2026
4.3 MEDIUM
CVE-2026-23812 — Security Boundary Bypass via Routing Node Impersonation

A vulnerability has been identified where an attacker connecting to an access point as a standard wired or wireless client can impersonate a gateway by leveraging an address-based spoofing technique.…

| Misconfiguration
Mar 04, 2026 Mar 04, 2026
Mar 04, 2026
Mar 04, 2026
4.3 MEDIUM
CVE-2026-23811 — Unauthorized Bi-Directional Traffic Interception via L2/L3 Manipulation

A vulnerability in the client isolation mechanism may allow an attacker to bypass Layer 2 (L2) communication restrictions between clients and redirect traffic at Layer 3 (L3). In addition to bypassin…

| Misconfiguration
Mar 04, 2026 Mar 04, 2026
Mar 04, 2026
Mar 04, 2026
4.3 MEDIUM
CVE-2026-23810 — Cross-BSSID GTK Re-encryption and Traffic Injection

A vulnerability in the packet processing logic may allow an authenticated attacker to craft and transmit a malicious Wi-Fi frame that causes an Access Point (AP) to classify the frame as group-addres…

| Injection
Mar 04, 2026 Mar 04, 2026
Mar 04, 2026
Mar 04, 2026
5.4 MEDIUM
CVE-2026-23809 — MAC Address Spoofing leads to Inter-BSSID Isolation Bypass Resulting in Traffic Redirecti…

A technique has been identified that adapts a known port-stealing method to Wi-Fi environments that use multiple BSSIDs. By leveraging the relationship between BSSIDs and their associated virtual por…

| Misconfiguration
Mar 04, 2026 Mar 04, 2026
Mar 04, 2026
Mar 04, 2026
5.4 MEDIUM
CVE-2026-23808 — Client Isolation Bypass via GTK Manipulation

A vulnerability has been identified in a standardized wireless roaming protocol that could enable a malicious actor to install an attacker-controlled Group Temporal Key (GTK) on a client device. Succ…

| Authentication
Mar 04, 2026 Mar 04, 2026
Mar 04, 2026
Mar 04, 2026
5.4 MEDIUM
CVE-2026-23601 — Frame Injection via Shared GTK Allows Traffic Spoofing and Client Compromise

A vulnerability has been identified in the wireless encryption handling of Wi-Fi transmissions. A malicious actor can generate shared-key authenticated transmissions containing targeted payloads whil…

| Cryptography
Mar 04, 2026 Mar 04, 2026
Mar 04, 2026
Mar 04, 2026
0.0 NA
CVE-2026-23238 — romfs: check sb_set_blocksize() return value

In the Linux kernel, the following vulnerability has been resolved: romfs: check sb_set_blocksize() return value romfs_fill_super() ignores the return value of sb_set_blocksize(), which can fail if…

| Misconfiguration
Mar 04, 2026 Mar 04, 2026
Mar 04, 2026
Mar 04, 2026
0.0 NA
CVE-2026-23237 — platform/x86: classmate-laptop: Add missing NULL pointer checks

In the Linux kernel, the following vulnerability has been resolved: platform/x86: classmate-laptop: Add missing NULL pointer checks In a few places in the Classmate laptop driver, code using the ac…

| Memory Corruption
Mar 04, 2026 Mar 04, 2026
Mar 04, 2026
Mar 04, 2026
0.0 NA
CVE-2026-23236 — fbdev: smscufx: properly copy ioctl memory to kernelspace

In the Linux kernel, the following vulnerability has been resolved: fbdev: smscufx: properly copy ioctl memory to kernelspace The UFX_IOCTL_REPORT_DAMAGE ioctl does not properly copy data from user…

| Memory Corruption
Mar 04, 2026 Mar 04, 2026
Mar 04, 2026
Mar 04, 2026
0.0 NA
CVE-2026-23235 — f2fs: fix out-of-bounds access in sysfs attribute read/write

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix out-of-bounds access in sysfs attribute read/write Some f2fs sysfs attributes suffer from out-of-bounds memory access a…

| Memory Corruption
Mar 04, 2026 Mar 04, 2026
Mar 04, 2026
Mar 04, 2026
0.0 NA
CVE-2026-23234 — f2fs: fix to avoid UAF in f2fs_write_end_io()

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid UAF in f2fs_write_end_io() As syzbot reported an use-after-free issue in f2fs_write_end_io(). It is caused by…

| Race Condition
Mar 04, 2026 Mar 04, 2026
Mar 04, 2026
Mar 04, 2026
0.0 NA
CVE-2026-23233 — f2fs: fix to avoid mapping wrong physical block for swapfile

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid mapping wrong physical block for swapfile Xiaolong Guo reported a f2fs bug in bugzilla [1] [1] https://bugzil…

| Misconfiguration
Mar 04, 2026 Mar 04, 2026
Mar 04, 2026
Mar 04, 2026
0.0 NA
CVE-2026-23232 — Revert "f2fs: block cache/dio write during f2fs_enable_checkpoint()"

In the Linux kernel, the following vulnerability has been resolved: Revert "f2fs: block cache/dio write during f2fs_enable_checkpoint()" This reverts commit 196c81fdd438f7ac429d5639090a9816abb9760a…

| Race Condition
Mar 04, 2026 Mar 04, 2026
Mar 04, 2026
Mar 04, 2026
0.0 NA
CVE-2025-71238 — scsi: qla2xxx: Fix bsg_done() causing double free

In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix bsg_done() causing double free Kernel panic observed on system, [5353358.825191] BUG: unable to handle page f…

| Memory Corruption
Mar 04, 2026 Mar 04, 2026
Mar 04, 2026
Mar 04, 2026
6.6 MEDIUM
CVE-2025-70342 — Asuswrt SwiftDialog Credential Disclosure

erase-install prior to v40.4 commit 2c31239 writes swiftDialog credential output to a hardcoded path /var/tmp/dialog.json. This allows an unauthenticated attacker to intercept admin credentials enter…

| Information Disclosure
Mar 04, 2026 Mar 04, 2026
Mar 04, 2026
Mar 04, 2026
7.8 HIGH
CVE-2025-70341 — App-Auto-Patch File Traversal Vulnerability

Insecure permissions in App-Auto-Patch v3.4.2 create a race condition which allows attackers to write arbitrary files.

| Race Condition
Mar 04, 2026 Mar 04, 2026
Mar 04, 2026
Mar 04, 2026
5.3 MEDIUM
CVE-2026-3103 — Deletion of passwords via RestApi

A logic error in the remove_password() function in Checkmk GmbH's Checkmk versions <2.4.0p23, <2.3.0p43, and 2.2.0 (EOL) allows a low-privileged user to cause data loss.

Remote | Information Disclosure
Mar 04, 2026 Mar 04, 2026
Mar 04, 2026
Mar 04, 2026
Showing 20 of 4974 Results