VEX records

Browse vendor VEX statements available in this Vulnerability-Lookup instance and pivot to the related vulnerability.

Reset

222278 VEX records

API response
Vulnerability Source Title Product status Imported Links
CVE-2026-54265 redhat_vex @angular/compiler: Angular: Two-Way Property Binding Sanitization Bypass (XSS) known affected: 2 known not affected: 49 2026-07-02T21:31:45+00:00 Vulnerability · Source
CVE-2026-53227 redhat_vex kernel: net: openvswitch: fix possible kfree_skb of ERR_PTR known affected: 274 2026-07-02T21:31:43+00:00 Vulnerability · Source
CVE-2026-53220 redhat_vex kernel: netfilter: revalidate bridge ports known affected: 274 2026-07-02T21:31:40+00:00 Vulnerability · Source
CVE-2026-53219 redhat_vex kernel: netfilter: x_tables: avoid leaking percpu counter pointers known affected: 274 2026-07-02T21:31:36+00:00 Vulnerability · Source
CVE-2026-53218 redhat_vex kernel: netfilter: nft_exthdr: fix register tracking for F_PRESENT flag known affected: 232 known not affected: 42 2026-07-02T21:31:34+00:00 Vulnerability · Source
CVE-2026-53211 redhat_vex kernel: netfilter: nft_meta_bridge: fix stale stack leak via IIFHWADDR register known affected: 76 known not affected: 198 2026-07-02T21:31:30+00:00 Vulnerability · Source
CVE-2026-53208 redhat_vex kernel: Bluetooth: L2CAP: reject BR/EDR signaling packets over MTUsig known affected: 260 known not affected: 14 2026-07-02T21:31:29+00:00 Vulnerability · Source
CVE-2026-53206 redhat_vex kernel: accel/ivpu: Add bounds check for firmware runtime memory known affected: 108 known not affected: 166 2026-07-02T21:31:24+00:00 Vulnerability · Source
CVE-2026-47784 redhat_vex memcached: Memcached: Information disclosure via timing side channel fixed: 4 known affected: 14 2026-07-02T21:31:20+00:00 Vulnerability · Source
CVE-2026-46137 redhat_vex kernel: mptcp: pm: ADD_ADDR rtx: fix potential data-race known affected: 232 known not affected: 42 2026-07-02T21:31:14+00:00 Vulnerability · Source
CVE-2026-46037 redhat_vex kernel: ipv4: icmp: validate reply type before using icmp_pointers fixed: 4 known affected: 198 known not affected: 76 2026-07-02T21:31:12+00:00 Vulnerability · Source
CVE-2026-46107 redhat_vex kernel: dm-thin: fix metadata refcount underflow known affected: 274 2026-07-02T21:31:10+00:00 Vulnerability · Source
CVE-2026-46024 redhat_vex kernel: libceph: Prevent potential null-ptr-deref in ceph_handle_auth_reply() known affected: 260 known not affected: 14 2026-07-02T21:31:05+00:00 Vulnerability · Source
CVE-2026-46027 redhat_vex kernel: net/smc: avoid early lgr access in smc_clc_wait_msg known affected: 260 known not affected: 14 2026-07-02T21:31:02+00:00 Vulnerability · Source
CVE-2026-45988 redhat_vex kernel: rxrpc: Fix re-decryption of RESPONSE packets known affected: 184 known not affected: 90 2026-07-02T21:30:57+00:00 Vulnerability · Source
CVE-2026-45944 redhat_vex kernel: iommu/vt-d: Clear Present bit before tearing down context entry known affected: 232 known not affected: 42 2026-07-02T21:30:56+00:00 Vulnerability · Source
CVE-2026-45857 redhat_vex kernel: scsi: csiostor: Fix dereference of null pointer rn known affected: 260 known not affected: 14 2026-07-02T21:30:51+00:00 Vulnerability · Source
CVE-2026-45843 redhat_vex kernel: slip: bound decode() reads against the compressed packet length known affected: 260 known not affected: 14 2026-07-02T21:30:46+00:00 Vulnerability · Source
CVE-2026-45838 redhat_vex kernel: bpf: fix end-of-list detection in cgroup_storage_get_next_key() known affected: 232 known not affected: 42 2026-07-02T21:30:41+00:00 Vulnerability · Source
CVE-2026-45232 redhat_vex rsync: Rsync: Denial of Service via malformed HTTP proxy response known affected: 16 2026-07-02T21:30:39+00:00 Vulnerability · Source
CVE-2026-44572 redhat_vex next.js: Next.js: Denial of Service due to improper handling of x-nextjs-data header with redirects known affected: 22 2026-07-02T21:30:36+00:00 Vulnerability · Source
CVE-2026-44576 redhat_vex Next.js: Next.js: Cache poisoning vulnerability in React Server Components known affected: 22 2026-07-02T21:30:34+00:00 Vulnerability · Source
CVE-2026-40528 redhat_vex opensc: OpenSC: Memory corruption via crafted profile configuration file known affected: 8 2026-07-02T21:30:31+00:00 Vulnerability · Source
CVE-2026-40510 redhat_vex opensc: OpenSC: Memory corruption via crafted PIV smart card known affected: 8 2026-07-02T21:30:29+00:00 Vulnerability · Source
CVE-2026-33381 redhat_vex grafana: Grafana: Temporary access control bypass for service account token minting known affected: 27 2026-07-02T21:30:24+00:00 Vulnerability · Source
CVE-2026-28383 redhat_vex grafana: Grafana: Denial of Service via unbounded memory allocation in plugin resources endpoint known affected: 25 known not affected: 2 2026-07-02T21:30:22+00:00 Vulnerability · Source
CVE-2026-28380 redhat_vex grafana: Grafana: Unauthorized snapshot deletion via Broken Access Control in Snapshot API known affected: 27 2026-07-02T21:30:19+00:00 Vulnerability · Source
CVE-2026-9538 redhat_vex perl-Archive-Tar: perl-Archive-Tar: Denial of Service via crafted tar header with large entry size known affected: 10 2026-07-02T21:30:09+00:00 Vulnerability · Source
CVE-2026-10275 redhat_vex opensc: OpenSC: Buffer overflow in pkcs11-tool Key Generation Module known affected: 8 2026-07-02T21:30:09+00:00 Vulnerability · Source
CVE-2026-39956 redhat_vex jq: missing runtime type checks for _strindices lead to crash and limited memory disclosure fixed: 3 known affected: 14 2026-07-02T20:13:13+00:00 Vulnerability · Source
CVE-2026-33947 redhat_vex jq: unbounded Recursion in jv_setpath() / jv_getpath() / delpaths_sorted() fixed: 3 known affected: 14 2026-07-02T20:13:05+00:00 Vulnerability · Source
CVE-2026-32316 redhat_vex jq: jq: Denial of Service or potential arbitrary code execution due to integer overflow and heap-based buffer overflow fixed: 3 known affected: 14 2026-07-02T20:13:04+00:00 Vulnerability · Source
CVE-2026-21727 redhat_vex Grafana: Grafana: Cross-tenant data disclosure and deletion via legacy correlation records known affected: 24 2026-07-02T20:13:04+00:00 Vulnerability · Source
CVE-2026-43496 redhat_vex kernel: net/sched: sch_red: Replace direct dequeue call with peek and qdisc_dequeue_peeked known affected: 274 2026-07-02T19:46:16+00:00 Vulnerability · Source
CVE-2026-43483 redhat_vex kernel: KVM: SVM: Set/clear CR8 write interception when AVIC is (de)activated known affected: 232 known not affected: 42 2026-07-02T19:46:13+00:00 Vulnerability · Source
CVE-2026-43477 redhat_vex kernel: drm/i915/vrr: Configure VRR timings after enabling TRANS_DDI_FUNC_CTL known affected: 184 known not affected: 90 2026-07-02T19:46:11+00:00 Vulnerability · Source
CVE-2026-43194 redhat_vex kernel: net: consume xmit errors of GSO frames known affected: 274 2026-07-02T19:46:07+00:00 Vulnerability · Source
CVE-2026-3633 redhat_vex libsoup: libsoup: Header and HTTP request injection via CRLF injection known affected: 16 2026-07-02T19:46:05+00:00 Vulnerability · Source
CVE-2026-3632 redhat_vex libsoup: libsoup: HTTP Smuggling and Server-Side Request Forgery via Malformed Hostnames known affected: 16 2026-07-02T19:46:02+00:00 Vulnerability · Source
CVE-2026-43314 redhat_vex kernel: dm: remove fake timeout to avoid leak request known affected: 260 known not affected: 14 2026-07-02T19:45:56+00:00 Vulnerability · Source
CVE-2026-43313 redhat_vex kernel: ACPI: processor: Fix NULL-pointer dereference in acpi_processor_errata_piix4() known affected: 260 known not affected: 14 2026-07-02T19:45:53+00:00 Vulnerability · Source
CVE-2026-43311 redhat_vex kernel: soc/tegra: pmc: Fix unsafe generic_handle_irq() call known affected: 184 known not affected: 90 2026-07-02T19:45:51+00:00 Vulnerability · Source
CVE-2026-43259 redhat_vex kernel: phy: fsl-imx8mq-usb: set platform driver data known affected: 184 known not affected: 90 2026-07-02T19:45:48+00:00 Vulnerability · Source
CVE-2026-43092 redhat_vex kernel: xsk: validate MTU against usable frame size on bind known affected: 184 known not affected: 90 2026-07-02T19:45:43+00:00 Vulnerability · Source
CVE-2026-56365 redhat_vex Magick.NET-Q16-AnyCPU: Magick.NET-Q16-HDRI-AnyCPU: Magick.NET-Q16-HDRI-OpenMP-arm64: Magick.NET-Q16-HDRI-arm64: Magick.NET-Q16-HDRI-x64: Magick.NET-Q16-HDRI-x86: Magick.NET-Q16-OpenMP-arm64: Magick.NET-Q16-OpenMP-x64: Magick.NET-Q16-arm64: Magick.NET-Q16-x64: Magick.NET-Q16-x86: Magick.NET-Q16-HDRI-OpenMP-x64: Magick.NET-Q8-AnyCPU: Magick.NET-Q8-OpenMP-arm64: Magick.NET-Q8-OpenMP-x64: Magick.NET-Q8-arm64: Magick.NET-Q8-x64: Magick.NET-Q8-x86: ImageMagick: Denial of Service due to memory leak in PNG encoder when processing MNG images known affected: 14 2026-07-02T19:45:38+00:00 Vulnerability · Source
CVE-2026-43066 redhat_vex kernel: ext4: fix iloc.bh leak in ext4_fc_replay_inode() error paths known affected: 184 known not affected: 90 2026-07-02T19:45:38+00:00 Vulnerability · Source
CVE-2026-46063 redhat_vex kernel: x86/shstk: Prevent deadlock during shstk sigreturn known affected: 184 known not affected: 90 2026-07-02T19:45:34+00:00 Vulnerability · Source
CVE-2026-31668 redhat_vex kernel: seg6: separate dst_cache for input and output paths in seg6 lwtunnel known affected: 184 known not affected: 90 2026-07-02T19:45:33+00:00 Vulnerability · Source
CVE-2026-23261 redhat_vex kernel: nvme-fc: release admin tagset if init fails known affected: 260 known not affected: 14 2026-07-02T19:45:29+00:00 Vulnerability · Source
CVE-2026-22735 redhat_vex org.springframework/spring-webmvc: org.springframework/spring-webflux: Spring MVC and WebFlux: Stream corruption vulnerability when using Server-Sent Events known affected: 36 2026-07-02T19:43:13+00:00 Vulnerability · Source