VEX records

Browse vendor VEX statements available in this Vulnerability-Lookup instance and pivot to the related vulnerability.

Reset

222201 VEX records

API response
Vulnerability Source Title Product status Imported Links
CVE-2026-39882 redhat_vex github.com/open-telemetry/opentelemetry-go: golang: OpenTelemetry-Go: Memory exhaustion via uncapped HTTP response body reading fixed: 4 known not affected: 120 under investigation: 1 2026-07-14T21:20:45+00:00 Vulnerability · Source
CVE-2025-68114 redhat_vex capstone: Capstone: Memory corruption via unchecked vsnprintf return fixed: 276 known not affected: 129 2026-07-14T20:55:13+00:00 Vulnerability · Source
CVE-2026-56115 redhat_vex dhcpcd: dhcpcd: Denial of Service via crafted DHCPv6 ADVERTISE message known affected: 1 2026-07-14T20:51:26+00:00 Vulnerability · Source
CVE-2026-44546 redhat_vex daphne: daphne: Information disclosure via header injection due to parser differential known affected: 8 2026-07-14T20:51:24+00:00 Vulnerability · Source
CVE-2026-54516 redhat_vex jackson-databind: jackson-databind: Security bypass due to improper handling of renamed properties known affected: 64 known not affected: 38 2026-07-14T20:51:23+00:00 Vulnerability · Source
CVE-2026-54515 redhat_vex jackson-databind: jackson-databind: Ignored properties can be unexpectedly modified known affected: 101 known not affected: 1 2026-07-14T20:51:20+00:00 Vulnerability · Source
CVE-2026-54517 redhat_vex jackson-databind: jackson-databind: Information disclosure via improper JsonView filter application known affected: 89 known not affected: 13 2026-07-14T20:51:19+00:00 Vulnerability · Source
CVE-2026-50292 redhat_vex libinput: local privilege escalation via crafted uinput devices fixed: 45 known affected: 11 2026-07-14T20:51:15+00:00 Vulnerability · Source
CVE-2026-53362 redhat_vex kernel: kernel: ipv6 frag escape fixed: 663 known not affected: 198 2026-07-14T20:49:17+00:00 Vulnerability · Source
CVE-2026-52965 redhat_vex kernel: drm/ttm: Fix ttm_bo_swapout() infinite LRU walk on swapout failure known affected: 184 known not affected: 90 2026-07-14T20:35:59+00:00 Vulnerability · Source
CVE-2026-52966 redhat_vex kernel: drm: Replace old pointer to new idr known affected: 274 2026-07-14T20:35:55+00:00 Vulnerability · Source
CVE-2026-52968 redhat_vex kernel: KVM: s390: pci: fix GAIT table indexing due to double-scaling pointer arithmetic known affected: 232 known not affected: 28 under investigation: 14 2026-07-14T20:35:54+00:00 Vulnerability · Source
CVE-2026-53001 redhat_vex kernel: netfilter: xtables: restrict several matches to inet family known affected: 274 2026-07-14T20:20:43+00:00 Vulnerability · Source
CVE-2026-53004 redhat_vex kernel: sctp: fix OOB write to userspace in sctp_getsockopt_peer_auth_chunks known affected: 274 2026-07-14T20:20:42+00:00 Vulnerability · Source
CVE-2026-48068 redhat_vex grpc-js: @grpc/grpc-js: Server crash via malformed HTTP/2 stream initiation known affected: 5 2026-07-14T20:10:47+00:00 Vulnerability · Source
CVE-2026-48038 redhat_vex joi: joi: Denial of Service via uncaught RangeError on deeply nested input through recursive link() schemas known affected: 6 known not affected: 2 2026-07-14T20:10:44+00:00 Vulnerability · Source
CVE-2026-44918 redhat_vex openstack-ironic: Prevent rehoming resources to nodes with different owner known affected: 10 known not affected: 4 2026-07-14T20:10:42+00:00 Vulnerability · Source
CVE-2026-15713 redhat_vex libsoup: SoupCache: libsoup: HTTP/2 frame window exhaustion remote denial of service via memory leak known affected: 16 2026-07-14T20:06:07+00:00 Vulnerability · Source
CVE-2026-15714 redhat_vex libsoup: SoupMultipartInputStream: libsoup: Out-of-bounds read in soup_multipart_input_stream_read_headers via an oversized multipart boundary string known affected: 16 2026-07-14T20:06:06+00:00 Vulnerability · Source
CVE-2026-15709 redhat_vex SoupWebsocketExtensionDeflate: libsoup: libsoup: WebSocket permessage-deflate Unbounded Decompression Remote Denial of Service known affected: 16 2026-07-14T20:06:02+00:00 Vulnerability · Source
CVE-2026-52747 redhat_vex ModSecurity: ModSecurity: Security rule bypass due to incorrect handling of line breaks in form data known affected: 8 2026-07-14T20:05:57+00:00 Vulnerability · Source
CVE-2026-15711 redhat_vex libsoup: SoupWebsocketConnection: libsoup: WebSocket remote denial of service via oversized control frame protocol violation known affected: 16 2026-07-14T20:05:55+00:00 Vulnerability · Source
CVE-2026-48069 redhat_vex grpc-js: @grpc/grpc-js: Client or server crash via malformed compressed message known affected: 5 2026-07-14T20:05:46+00:00 Vulnerability · Source
CVE-2026-52761 redhat_vex ModSecurity: ModSecurity: Web Application Firewall rules bypass due to incorrect UTF-8 to Unicode transformation known affected: 8 2026-07-14T19:56:03+00:00 Vulnerability · Source
CVE-2024-4367 redhat_vex Mozilla: Arbitrary JavaScript execution in PDF.js fixed: 234 known affected: 32 2026-07-14T19:55:47+00:00 Vulnerability · Source
CVE-2026-52970 redhat_vex kernel: netfilter: nft_ct: fix missing expect put in obj eval known affected: 184 known not affected: 90 2026-07-14T19:55:45+00:00 Vulnerability · Source
CVE-2026-53042 redhat_vex kernel: fwctl: Fix class init ordering to avoid NULL pointer dereference on device removal known affected: 76 known not affected: 198 2026-07-14T19:45:52+00:00 Vulnerability · Source
CVE-2026-53037 redhat_vex kernel: HID: usbhid: fix deadlock in hid_post_reset() known affected: 274 2026-07-14T19:45:47+00:00 Vulnerability · Source
CVE-2026-53038 redhat_vex kernel: ima_fs: Correctly create securityfs files for unsupported hash algos known affected: 76 known not affected: 198 2026-07-14T19:45:44+00:00 Vulnerability · Source
CVE-2026-53032 redhat_vex kernel: bpf: Fix NULL deref in map_kptr_match_type for scalar regs known affected: 184 known not affected: 90 2026-07-14T19:45:42+00:00 Vulnerability · Source
CVE-2026-44843 redhat_vex langchain: LangChain: Information disclosure and data integrity compromise via insecure deserialization known affected: 14 2026-07-14T19:35:53+00:00 Vulnerability · Source
CVE-2026-53007 redhat_vex kernel: ice: fix potential NULL pointer deref in error path of ice_set_ringparam() known affected: 184 known not affected: 90 2026-07-14T19:30:41+00:00 Vulnerability · Source
CVE-2026-53008 redhat_vex kernel: ice: fix race condition in TX timestamp ring cleanup known affected: 184 known not affected: 90 2026-07-14T19:16:08+00:00 Vulnerability · Source
CVE-2026-15712 redhat_vex SoupClientMessageIOHTTP2: libsoup3: libsoup: HTTP/2 GOAWAY frame parsing heap buffer over-read via invalid NUL-termination assumption known affected: 4 2026-07-14T19:06:41+00:00 Vulnerability · Source
CVE-2026-34993 redhat_vex aiohttp: AIOHTTP: Arbitrary code execution via untrusted input to CookieJar.load() fixed: 24 known affected: 76 known not affected: 767 under investigation: 6 2026-07-14T18:56:42+00:00 Vulnerability · Source
CVE-2026-21441 redhat_vex urllib3: urllib3 vulnerable to decompression-bomb safeguard bypass when following HTTP redirects (streaming API) fixed: 1938 known affected: 394 known not affected: 2918 under investigation: 1 2026-07-14T18:44:01+00:00 Vulnerability · Source
CVE-2026-52985 redhat_vex kernel: netdevsim: zero initialize struct iphdr in dummy sk_buff known affected: 232 known not affected: 42 2026-07-14T18:08:10+00:00 Vulnerability · Source
CVE-2026-52949 redhat_vex kernel: drm/ttm: Fix ttm_bo_shrink() infinite LRU walk on backup failure known affected: 184 known not affected: 90 2026-07-14T18:08:07+00:00 Vulnerability · Source
CVE-2026-52948 redhat_vex kernel: i2c: dev: prevent integer overflow in I2C_TIMEOUT ioctl known affected: 274 2026-07-14T18:08:02+00:00 Vulnerability · Source
CVE-2026-52984 redhat_vex kernel: net/sched: netem: fix queue limit check to include reordered packets known affected: 198 known not affected: 76 2026-07-14T18:08:02+00:00 Vulnerability · Source
CVE-2026-53012 redhat_vex kernel: nexthop: fix IPv6 route referencing IPv4 nexthop known affected: 184 known not affected: 90 2026-07-14T18:07:09+00:00 Vulnerability · Source
CVE-2026-52961 redhat_vex kernel: ceph: fix BUG_ON in __ceph_build_xattrs_blob() due to stale blob size known affected: 232 known not affected: 42 2026-07-14T18:05:08+00:00 Vulnerability · Source
CVE-2026-54432 redhat_vex roundcubemail: Roundcube Webmail: Stored Cross-Site Scripting via unescaped attachment MIME type known not affected: 1 2026-07-14T18:05:07+00:00 Vulnerability · Source
CVE-2026-52990 redhat_vex kernel: fsnotify: fix inode reference leak in fsnotify_recalc_mask() known affected: 184 known not affected: 90 2026-07-14T18:05:06+00:00 Vulnerability · Source
CVE-2026-62641 redhat_vex roundcubemail: Roundcube Webmail: Denial of Service via crafted TNEF compressed-RTF size known not affected: 1 2026-07-14T18:05:04+00:00 Vulnerability · Source
CVE-2026-52977 redhat_vex kernel: futex: Prevent lockup in requeue-PI during signal/ timeout wakeup known affected: 184 known not affected: 90 2026-07-14T18:05:03+00:00 Vulnerability · Source
CVE-2026-52980 redhat_vex kernel: sched/fair: Clear rel_deadline when initializing forked entities known affected: 76 known not affected: 198 2026-07-14T18:05:02+00:00 Vulnerability · Source
CVE-2026-62642 redhat_vex roundcubemail: Roundcube Webmail: Denial of Service via infinite loop in TNEF decoder known not affected: 1 2026-07-14T18:05:01+00:00 Vulnerability · Source
CVE-2026-62644 redhat_vex roundcubemail: Roundcube Webmail: Account takeover via username spoofing in password plugin known not affected: 1 2026-07-14T18:05:01+00:00 Vulnerability · Source
CVE-2026-46173 redhat_vex kernel: exit: prevent preemption of oopsing TASK_DEAD task fixed: 1658 known affected: 36 known not affected: 76 2026-07-14T18:04:39+00:00 Vulnerability · Source