CVE Vulnerability Catalog
Translated CVE descriptions from NVD NIST - in English
CISA KEV catalog updated: (v2026.07.13)
Wersja 9.14.0 Responsive File Manager zawiera lukę, która pozwala zdalnemu atakującemu na wykonanie dowolnego kodu poprzez komponent force_download.php.
Wersje Plack::Middleware::Security::Common przed 0.13.1 dla Perla nie blokowały wstrzyknięć nagłówków w ścieżkach żądań. Reguła blokująca wstrzyknięcia nagłówków była nieskuteczna, chyba że były one podwójnie kodowane.
Podatność CVE-2026-47074 dotyczy niewłaściwej walidacji certyfikatów w modułach ex_aws_sns (ExAws.SNS, ExAws.SNS.PublicKeyCache), co umożliwia fałszowanie podpisów. Problem polega na tym, że funkcja 'Elixir.ExAws.SNS':verify_message/1 pobiera certyfikat podpisu z pola SigningCertURL bez weryfikacji, czy URL używa HTTPS oraz czy host odpowiada domenie certyfikatu SNS należącego do AWS.
In the Linux kernel, a vulnerability related to use-after-free on SPI mpc52xx controller registration failure has been fixed. The issue was due to not disabling and freeing interrupts, which could lead to resource leaks.
A vulnerability has been identified in the Linux kernel related to use-after-free in the iris_release_internal_buffers() function. A recent change introduced a regression that may lead to accessing a freed buffer.
A vulnerability has been identified in the Linux kernel within the batman-adv module, concerning the storage of unowned originator pointers in the BAT IV neighbor state. This pointer may no longer refer to a live entry after purge handling, leading to potential data integrity issues.
A vulnerability has been identified in the Linux kernel within the vsock_update_buffer_size() function, allowing the buffer size to exceed the maximum limit. The issue stemmed from an incorrect order of checking minimum and maximum values, potentially violating socket memory boundaries.
A vulnerability has been identified in the Linux kernel related to the HID PlayStation device, allowing for reading data beyond the bounds of the touch_reports array. This issue occurs in the dualshock4_parse_report function, where the number of touch reports may be incorrectly reported by the device.
A vulnerability in the Linux kernel has been resolved that allowed out-of-bounds (OOB) reads when parsing decoder messages in the amdgpu vcn3 module. Boundary checks have been implemented to prevent these reads.
In the Linux kernel's SCTP implementation, the SCTP_SENDALL path in sctp_sendmsg() has a use-after-free or type confusion vulnerability. While iterating the association list, after dropping the socket lock, another thread can migrate or free the next association, and the list cursor is not revalidated, leading to access to freed memory.
A vulnerability related to use-after-free has been fixed in the Linux kernel in the spi: mpc52xx component. The issue occurred in the state machine work scheduled by the interrupt handler, which could lead to unsafe memory access.
A vulnerability in the Linux kernel related to bounds checking in the uvd/vce/vcn code has been resolved, which accesses the IB at predefined offsets.
A race condition was found in the Linux kernel DRM driver in the change_handle function. During handle swap, a single object briefly had two IDR entries, allowing a concurrent gem_close to delete the object and leave a dangling handle, leading to a use-after-free.
A vulnerability related to use-after-free (UAF) in the inactivity timer cleanup path in the HID appletb-kbd driver has been identified in the Linux kernel. Issues occur in two time windows that may lead to accessing freed memory.
A vulnerability has been identified in the Linux kernel within the batman-adv module, concerning improper memory management during the deletion of claims. The issue can lead to a use-after-free situation, potentially resulting in unpredictable system behavior.
A vulnerability has been identified in the Linux kernel related to the use-after-free of the fmt_src object during Macro Blocks Per Frame (MBPF) checks. The issue occurs when multiple instances run in parallel, leading to a race condition between threads.
A vulnerability has been identified in the Linux kernel related to inconsistent plane dimension calculations in the drm_gem_fb_init_with_funcs() function. This flaw leads to incorrect GEM object size validation, potentially resulting in memory access beyond the object's bounds.
A vulnerability has been identified in the Linux kernel's batman-adv module, allowing tp_meter sessions to continue after the netlink request has finished. During the removal of the mesh interface, these sessions are not properly stopped, potentially leading to synchronization issues.
A vulnerability in the Linux kernel related to batman-adv has been resolved, preventing new tp_meter sessions from starting after leaving the BATADV_MESH_ACTIVE state.
A vulnerability in the Linux kernel has been resolved by disallowing all private IOCTLs. IOCTLs are not as safe as one might assume, hence they have been temporarily disabled.

