Latest CVE Feed

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

Score
Vulnerability
Published
0.0 NA
CVE-2026-53387 — iio: light: veml6075: add bounds check to veml6075_it_ms index

In the Linux kernel, the following vulnerability has been resolved: iio: light: veml6075: add bounds check to veml6075_it_ms index veml6075_it_ms has 5 elements but VEML6075_CONF_IT can yield value…

| Memory Corruption
Jul 19, 2026 Jul 19, 2026
Jul 19, 2026
Jul 19, 2026
0.0 NA
CVE-2026-53386 — iio: adc: ti-ads1298: add bounds check to pga_settings index

In the Linux kernel, the following vulnerability has been resolved: iio: adc: ti-ads1298: add bounds check to pga_settings index ads1298_pga_settings has 7 elements but ADS1298_MASK_CH_PGA can yiel…

| Memory Corruption
Jul 19, 2026 Jul 19, 2026
Jul 19, 2026
Jul 19, 2026
0.0 NA
CVE-2026-53385 — vc_screen: fix null-ptr-deref in vcs_notifier() during concurrent vcs_write

In the Linux kernel, the following vulnerability has been resolved: vc_screen: fix null-ptr-deref in vcs_notifier() during concurrent vcs_write A KASAN null-ptr-deref was observed in vcs_notifier()…

| Race Condition
Jul 19, 2026 Jul 19, 2026
Jul 19, 2026
Jul 19, 2026
0.0 NA
CVE-2026-53384 — serial: 8250_dw: unregister 8250 port if clk_notifier_register() fails

In the Linux kernel, the following vulnerability has been resolved: serial: 8250_dw: unregister 8250 port if clk_notifier_register() fails dw8250_probe() registers the 8250 port via serial8250_regi…

| Misconfiguration
Jul 19, 2026 Jul 19, 2026
Jul 19, 2026
Jul 19, 2026
0.0 NA
CVE-2026-53383 — ksmbd: reject non-VALID session in compound request branch

In the Linux kernel, the following vulnerability has been resolved: ksmbd: reject non-VALID session in compound request branch smb2_check_user_session() takes a shortcut for any operation that is n…

| Authentication
Jul 19, 2026 Jul 19, 2026
Jul 19, 2026
Jul 19, 2026
0.0 NA
CVE-2026-53382 — media: vidtv: fix NULL pointer dereference in vidtv_mux_push_si

In the Linux kernel, the following vulnerability has been resolved: media: vidtv: fix NULL pointer dereference in vidtv_mux_push_si syzbot reported a general protection fault in vidtv_psi_ts_psi_wr…

| Memory Corruption
Jul 19, 2026 Jul 19, 2026
Jul 19, 2026
Jul 19, 2026
0.0 NA
CVE-2026-53381 — virtiofs: fix UAF on submount umount

In the Linux kernel, the following vulnerability has been resolved: virtiofs: fix UAF on submount umount iput() called from fuse_release_end() can Oops if the super block has already been destroyed…

| Memory Corruption
Jul 19, 2026 Jul 19, 2026
Jul 19, 2026
Jul 19, 2026
0.0 NA
CVE-2026-53380 — media: rzv2h-ivc: Fix concurrent buffer list access

In the Linux kernel, the following vulnerability has been resolved: media: rzv2h-ivc: Fix concurrent buffer list access The list of buffers (`rzv2h_ivc::buffers.queue`) is protected by a spinlock (…

| Race Condition
Jul 19, 2026 Jul 19, 2026
Jul 19, 2026
Jul 19, 2026
0.0 NA
CVE-2026-53379 — media: i2c: ov8856: free control handler on error in ov8856_init_controls()

In the Linux kernel, the following vulnerability has been resolved: media: i2c: ov8856: free control handler on error in ov8856_init_controls() The control handler wasn't freed if adding controls f…

| Memory Corruption
Jul 19, 2026 Jul 19, 2026
Jul 19, 2026
Jul 19, 2026
0.0 NA
CVE-2026-53378 — drm/colorop: Fix blob property reference tracking in state lifecycle

In the Linux kernel, the following vulnerability has been resolved: drm/colorop: Fix blob property reference tracking in state lifecycle The colorop state blob property handling had memory leaks du…

| Memory Corruption
Jul 19, 2026 Jul 19, 2026
Jul 19, 2026
Jul 19, 2026
0.0 NA
CVE-2026-53377 — drm/msm: always recover the gpu

In the Linux kernel, the following vulnerability has been resolved: drm/msm: always recover the gpu Previously, in case there was no more work to do, recover worker wouldn't trigger recovery and wo…

| Denial of Service
Jul 19, 2026 Jul 19, 2026
Jul 19, 2026
Jul 19, 2026
0.0 NA
CVE-2026-53376 — drm/amdkfd: Add upper bound check for num_of_nodes

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Add upper bound check for num_of_nodes drm/amdkfd: Add upper bound check for num_of_nodes in kfd_ioctl_get_process_ap…

Jul 19, 2026 Jul 19, 2026
Jul 19, 2026
Jul 19, 2026
0.0 NA
CVE-2026-53375 — drm/amdgpu/vce: Prevent partial address patches

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/vce: Prevent partial address patches In the case that only one of lo/hi is valid, the patching could result in a bad a…

| Memory Corruption
Jul 19, 2026 Jul 19, 2026
Jul 19, 2026
Jul 19, 2026
0.0 NA
CVE-2026-53374 — drm/amdgpu: zero-initialize GART table on allocation

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: zero-initialize GART table on allocation GART TLB is flushed after unmapping but not after mapping. Since amdgpu_bo_c…

| Memory Corruption
Jul 19, 2026 Jul 19, 2026
Jul 19, 2026
Jul 19, 2026
0.0 NA
CVE-2026-53373 — mm/vma: do not try to unmap a VMA if mmap_prepare() invoked from mmap()

In the Linux kernel, the following vulnerability has been resolved: mm/vma: do not try to unmap a VMA if mmap_prepare() invoked from mmap() The mmap_prepare hook functionality includes the ability …

| Misconfiguration
Jul 19, 2026 Jul 19, 2026
Jul 19, 2026
Jul 19, 2026
5.0 MEDIUM
CVE-2026-16229 — itsourcecode Courier Management System index.php cross site scripting

A flaw has been found in itsourcecode Courier Management System up to 1.0. Affected by this vulnerability is an unknown functionality of the file /index.php. Executing a manipulation of the argument …

courier_management_system | Remote | Cross-Site Scripting
Jul 19, 2026 Jul 19, 2026
Jul 19, 2026
Jul 19, 2026
7.5 HIGH
CVE-2026-16228 — SourceCodester Class and Exam Timetabling System edit_schoolyr.php sql injection

A vulnerability was detected in SourceCodester Class and Exam Timetabling System 1.0. Affected is an unknown function of the file /edit_schoolyr.php. Performing a manipulation of the argument ID resu…

class_and_exam_timetabling_system | Remote | Injection
Jul 19, 2026 Jul 19, 2026
Jul 19, 2026
Jul 19, 2026
7.5 HIGH
CVE-2026-16227 — SourceCodester Class and Exam Timetabling System edit_subject.php sql injection

A security vulnerability has been detected in SourceCodester Class and Exam Timetabling System 1.0. This impacts an unknown function of the file /edit_subject.php. Such manipulation of the argument I…

class_and_exam_timetabling_system | Remote | Injection
Jul 19, 2026 Jul 19, 2026
Jul 19, 2026
Jul 19, 2026
0.0 NA
CVE-2026-53372 — iommu/vt-d: Block PASID attachment to nested domain with dirty tracking

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Block PASID attachment to nested domain with dirty tracking Kernel lacks dirty tracking support on nested domain atta…

| Misconfiguration
Jul 19, 2026 Jul 19, 2026
Jul 19, 2026
Jul 19, 2026
0.0 NA
CVE-2026-53371 — RDMA/ionic: bound node_desc sysfs read with %.64s

In the Linux kernel, the following vulnerability has been resolved: RDMA/ionic: bound node_desc sysfs read with %.64s node_desc[64] in struct ib_device is not guaranteed to be NUL- terminated. The …

| Information Disclosure
Jul 19, 2026 Jul 19, 2026
Jul 19, 2026
Jul 19, 2026
Showing 20 of 7853 Results