VEX records
Browse vendor VEX statements available in this Vulnerability-Lookup instance and pivot to the related vulnerability.
222274 VEX records
API response| Vulnerability | Source | Title | Product status | Imported | Links |
|---|---|---|---|---|---|
| CVE-2025-38017 | redhat_vex | kernel: Linux kernel: Denial of Service via endless busy loop in eventpoll | known affected: 274 | 2026-07-08T12:23:48+00:00 | Vulnerability · Source |
| CVE-2023-54120 | redhat_vex | kernel: Linux kernel Bluetooth: Denial of Service via race condition in hidp_session_thread | fixed: 279 known affected: 112 known not affected: 76 | 2026-07-08T12:23:45+00:00 | Vulnerability · Source |
| CVE-2025-38060 | redhat_vex | kernel: Linux kernel: BPF verifier security bypass due to incorrect state handling | known affected: 260 known not affected: 14 | 2026-07-08T12:23:42+00:00 | Vulnerability · Source |
| CVE-2023-54110 | redhat_vex | kernel: usb: rndis_host: Secure rndis_query check against int overflow | known affected: 198 known not affected: 76 | 2026-07-08T12:23:40+00:00 | Vulnerability · Source |
| CVE-2023-54179 | redhat_vex | kernel: scsi: qla2xxx: Array index may go out of bound | fixed: 399 known affected: 80 known not affected: 76 | 2026-07-08T12:23:37+00:00 | Vulnerability · Source |
| CVE-2023-54102 | redhat_vex | kernel: scsi: lpfc: Prevent lpfc_debugfs_lockstat_write() buffer overflow | fixed: 387 known affected: 80 known not affected: 76 | 2026-07-08T12:23:36+00:00 | Vulnerability · Source |
| CVE-2025-38099 | redhat_vex | kernel: Linux kernel Bluetooth: Denial of Service via improper SCO voice setting | known affected: 274 | 2026-07-08T12:23:35+00:00 | Vulnerability · Source |
| CVE-2025-38108 | redhat_vex | kernel: net_sched: red: fix a race in __red_change() | known affected: 274 | 2026-07-08T12:23:24+00:00 | Vulnerability · Source |
| CVE-2026-23192 | redhat_vex | kernel: linkwatch: use __dev_put() in callers to prevent UAF | known affected: 90 known not affected: 184 | 2026-07-08T12:23:22+00:00 | Vulnerability · Source |
| CVE-2025-40345 | redhat_vex | kernel: usb: storage: sddr55: Reject out-of-bound new_pba | known affected: 274 | 2026-07-08T12:23:20+00:00 | Vulnerability · Source |
| CVE-2025-68239 | redhat_vex | kernel: binfmt_misc: restore write access before closing files opened by open_exec() | known affected: 198 known not affected: 76 | 2026-07-08T12:23:19+00:00 | Vulnerability · Source |
| CVE-2026-23121 | redhat_vex | kernel: Linux kernel mISDN: Denial of Service via data race | known affected: 90 known not affected: 184 | 2026-07-08T12:23:17+00:00 | Vulnerability · Source |
| CVE-2025-38128 | redhat_vex | kernel: Linux kernel: Memory corruption in Bluetooth subsystem via malformed HCI_CMD_SYNC command | known affected: 212 known not affected: 62 | 2026-07-08T12:23:15+00:00 | Vulnerability · Source |
| CVE-2025-38115 | redhat_vex | kernel: Linux kernel: Local Denial of Service in network scheduler | known affected: 274 | 2026-07-08T12:23:13+00:00 | Vulnerability · Source |
| CVE-2025-38100 | redhat_vex | kernel: Linux kernel: Local Denial of Service due to TIF_IO_BITMAP inconsistency | known affected: 226 known not affected: 48 | 2026-07-08T12:23:10+00:00 | Vulnerability · Source |
| CVE-2026-23208 | redhat_vex | kernel: ALSA: usb-audio: Prevent excessive number of frames | known affected: 274 | 2026-07-08T12:23:09+00:00 | Vulnerability · Source |
| CVE-2026-23124 | redhat_vex | kernel: Linux kernel: Data race in IPv6 neighbor discovery leads to limited availability | known affected: 90 known not affected: 184 | 2026-07-08T12:23:05+00:00 | Vulnerability · Source |
| CVE-2025-38140 | redhat_vex | kernel: Linux kernel: Local denial of service in device mapper | known affected: 226 known not affected: 48 | 2026-07-08T12:23:04+00:00 | Vulnerability · Source |
| CVE-2025-38113 | redhat_vex | kernel: ACPI: CPPC: Fix NULL pointer dereference when nosmp is used | known affected: 260 known not affected: 14 | 2026-07-08T12:23:01+00:00 | Vulnerability · Source |
| CVE-2025-38117 | redhat_vex | kernel: Bluetooth: MGMT: Protect mgmt_pending list with its own lock | known affected: 274 | 2026-07-08T12:23:00+00:00 | Vulnerability · Source |
| CVE-2025-38157 | redhat_vex | kernel: Linux kernel's ath9k_htc Wi-Fi driver: Denial of Service or information disclosure via malicious USB device input | known affected: 274 | 2026-07-08T12:22:57+00:00 | Vulnerability · Source |
| CVE-2025-38149 | redhat_vex | kernel: net: phy: clear phydev->devlink when the link is deleted | known affected: 226 known not affected: 48 | 2026-07-08T12:22:55+00:00 | Vulnerability · Source |
| CVE-2025-40204 | redhat_vex | kernel: sctp: Fix MAC comparison to be constant-time | known affected: 274 | 2026-07-08T12:22:50+00:00 | Vulnerability · Source |
| CVE-2026-31508 | redhat_vex | kernel: net: openvswitch: Avoid releasing netdev before teardown completes | fixed: 841 known affected: 112 known not affected: 76 | 2026-07-08T12:22:48+00:00 | Vulnerability · Source |
| CVE-2023-54269 | redhat_vex | kernel: SUNRPC: double free xprt_ctxt while still in use | fixed: 395 known affected: 52 known not affected: 104 | 2026-07-08T12:22:44+00:00 | Vulnerability · Source |
| CVE-2023-54300 | redhat_vex | kernel: wifi: ath9k: avoid referencing uninit memory in ath9k_wmi_ctrl_rx | fixed: 387 known affected: 80 known not affected: 76 | 2026-07-08T12:22:27+00:00 | Vulnerability · Source |
| CVE-2026-23146 | redhat_vex | kernel: Linux kernel: Denial of Service in Bluetooth HCI UART driver via null pointer dereference | fixed: 612 known affected: 36 known not affected: 76 | 2026-07-08T12:22:23+00:00 | Vulnerability · Source |
| CVE-2026-46166 | redhat_vex | kernel: wifi: mac80211: use safe list iteration in radar detect work | fixed: 1224 known affected: 22 known not affected: 90 | 2026-07-08T12:22:06+00:00 | Vulnerability · Source |
| CVE-2026-23270 | redhat_vex | kernel: Linux kernel: Use-after-free in traffic control (act_ct) may lead to denial of service or privilege escalation | fixed: 2538 known affected: 36 known not affected: 28 | 2026-07-08T12:19:54+00:00 | Vulnerability · Source |
| CVE-2026-23127 | redhat_vex | kernel: Linux kernel: Privilege escalation or denial of service in perf subsystem | known affected: 14 known not affected: 260 | 2026-07-08T12:19:45+00:00 | Vulnerability · Source |
| CVE-2023-54271 | redhat_vex | kernel: Linux kernel: Denial of Service via NULL pointer dereference in blk-cgroup | fixed: 280 known affected: 84 known not affected: 112 | 2026-07-08T12:19:44+00:00 | Vulnerability · Source |
| CVE-2023-54226 | redhat_vex | kernel: af_unix: Fix data races around sk->sk_shutdown | known affected: 198 known not affected: 76 | 2026-07-08T12:19:43+00:00 | Vulnerability · Source |
| CVE-2025-68312 | redhat_vex | kernel: usbnet: Prevents free active kevent | known affected: 198 known not affected: 76 | 2026-07-08T12:19:40+00:00 | Vulnerability · Source |
| CVE-2026-23209 | redhat_vex | kernel: macvlan: fix error recovery in macvlan_common_newlink() | fixed: 2311 known affected: 36 known not affected: 28 | 2026-07-08T12:19:30+00:00 | Vulnerability · Source |
| CVE-2023-54243 | redhat_vex | kernel: netfilter: ebtables: fix table blob use-after-free | known affected: 198 known not affected: 76 | 2026-07-08T12:19:29+00:00 | Vulnerability · Source |
| CVE-2026-43116 | redhat_vex | kernel: netfilter: ctnetlink: ensure safe access to master conntrack | fixed: 1830 known affected: 112 | 2026-07-08T12:19:00+00:00 | Vulnerability · Source |
| CVE-2026-31786 | redhat_vex | kernel: Buffer overflow in drivers/xen/sys-hypervisor.c | fixed: 762 known affected: 64 | 2026-07-08T12:18:56+00:00 | Vulnerability · Source |
| CVE-2026-13122 | redhat_vex | openvpn: From CVEorg collector | known not affected: 1 | 2026-07-08T11:39:19+00:00 | Vulnerability · Source |
| CVE-2026-13698 | redhat_vex | openvpn: From CVEorg collector | known not affected: 1 | 2026-07-08T11:39:09+00:00 | Vulnerability · Source |
| CVE-2026-46259 | redhat_vex | kernel: procfs: fix missing RCU protection when reading real_parent in do_task_stat() | fixed: 762 known affected: 64 | 2026-07-08T11:39:00+00:00 | Vulnerability · Source |
| CVE-2026-46155 | redhat_vex | kernel: smb/client: fix out-of-bounds read in smb2_compound_op() | fixed: 612 known affected: 22 known not affected: 90 | 2026-07-08T11:39:00+00:00 | Vulnerability · Source |
| CVE-2026-43341 | redhat_vex | kernel: net/ipv6: ioam6: prevent schema length wraparound in trace fill | fixed: 616 known not affected: 198 | 2026-07-08T11:38:55+00:00 | Vulnerability · Source |
| CVE-2026-43276 | redhat_vex | kernel: net: mana: Fix double destroy_workqueue on service rescan PCI path | fixed: 612 known affected: 22 known not affected: 90 | 2026-07-08T11:38:55+00:00 | Vulnerability · Source |
| CVE-2026-33006 | redhat_vex | httpd: mod_auth_digest: timing attack allows a bypass of digest authentication | fixed: 79 known affected: 42 | 2026-07-08T11:37:38+00:00 | Vulnerability · Source |
| CVE-2026-24072 | redhat_vex | Apache HTTP Server: mod_rewrite: Apache HTTP Server: Privilege Escalation via .htaccess file manipulation | fixed: 79 known affected: 55 | 2026-07-08T11:37:37+00:00 | Vulnerability · Source |
| CVE-2026-40047 | redhat_vex | camel-docling: Apache Camel Docling: CLI argument injection and path traversal | known affected: 2 | 2026-07-08T11:29:24+00:00 | Vulnerability · Source |
| CVE-2026-15041 | redhat_vex | 389-ds-base: 389-ds-base: Non-constant-time comparison in PBKDF2-SHA256 password verification | known affected: 29 known not affected: 4 | 2026-07-08T11:06:55+00:00 | Vulnerability · Source |
| CVE-2026-59710 | redhat_vex | showdown: Showdown: Stored Cross-Site Scripting via unescaped table header ID attributes in markdown | known affected: 26 | 2026-07-08T11:01:35+00:00 | Vulnerability · Source |
| CVE-2025-29786 | redhat_vex | github.com/expr-lang/expr: Memory Exhaustion in Expr Parser with Unrestricted Input | fixed: 71 known affected: 13 known not affected: 49 | 2026-07-08T11:01:21+00:00 | Vulnerability · Source |
| CVE-2026-55153 | redhat_vex | com.mchange/mchange-commons-java: mchange-commons-java: Remote code execution via JNDI injection | known affected: 4 known not affected: 7 | 2026-07-08T10:40:48+00:00 | Vulnerability · Source |