Posts of last 24 hours

CVE-2026-52966 | Linux Kernel up to 6.18.32/7.0.9 drm drm_prime.c dmabufs privilege escalation (Nessus ID 323533 / WID-SEC-2026-2077)
A vulnerability classified as critical was found in Linux Kernel up to 6.18.32/7.0.9. Affected by this vulnerability is an unknown functionality of the file drivers/gpu/drm/drm_prime.c of the component drm. The manipulation of the argument dmabufs results in privilege escalation. This vulnerability is identified as CVE-2026-52966. The attack can only be performed from the local network. There is not any exploit available. Upgrading the affected component is advised.
https://vuldb.com/vuln/373297
CVE-2026-53168 | Linux Kernel up to 7.0.12 fuse fuse_notify information disclosure (Nessus ID 323531 / WID-SEC-2026-2077)
A vulnerability labeled as critical has been found in Linux Kernel up to 7.0.12. The affected element is the function fuse_notify of the component fuse. The manipulation results in information disclosure. This vulnerability was named CVE-2026-53168. The attack needs to be approached within the local network. There is no available exploit. The affected component should be upgraded.
https://vuldb.com/vuln/373699
CVE-2026-53306 | Linux Kernel up to 7.0.9 tty hvc_iucv_table[] off-by-one (Nessus ID 323532)
A vulnerability was found in Linux Kernel up to 7.0.9. It has been declared as critical. This vulnerability affects unknown code of the component tty. Such manipulation of the argument hvc_iucv_table[] leads to off-by-one. This vulnerability is documented as CVE-2026-53306. The attack requires being on the local network. There is not any exploit available. It is recommended to upgrade the affected component.
https://vuldb.com/vuln/374367
CVE-2026-53031 | Linux Kernel up to 6.12.90/6.18.32/7.0.9 bpf arena_alloc_pages allocation of resources (Nessus ID 323534 / WID-SEC-2026-2077)
A vulnerability has been found in Linux Kernel up to 6.12.90/6.18.32/7.0.9 and classified as critical. This affects the function arena_alloc_pages of the component bpf. Performing a manipulation results in allocation of resources. This vulnerability is known as CVE-2026-53031. Access to the local network is required for this attack. No exploit is available. The affected component should be upgraded.
https://vuldb.com/vuln/373426
CVE-2026-53169 | Linux Kernel up to 7.0.12 accel denial of service (Nessus ID 323535 / WID-SEC-2026-2077)
A vulnerability marked as critical has been reported in Linux Kernel up to 7.0.12. The impacted element is an unknown function of the component accel. This manipulation causes denial of service. The identification of this vulnerability is CVE-2026-53169. The attack needs to be done within the local network. There is no exploit available. It is suggested to upgrade the affected component.
https://vuldb.com/vuln/373700
CVE-2026-58058 | Nmap up to 7.99 libnetutil/netutil.cc integer underflow (EUVD-2026-39978 / Nessus ID 323536)
A vulnerability was found in Nmap up to 7.99. It has been classified as critical. Affected is an unknown function of the file libnetutil/netutil.cc. Performing a manipulation results in integer underflow. This vulnerability is known as CVE-2026-58058. Remote exploitation of the attack is possible. Furthermore, an exploit is available. Upgrading the affected component is recommended.
https://vuldb.com/vuln/374506
CVE-2026-53196 | Linux Kernel up to 7.0.12 USB get_manuf_info Size heap-based overflow (Nessus ID 323538 / WID-SEC-2026-2077)
A vulnerability was found in Linux Kernel up to 7.0.12 and classified as critical. The affected element is the function get_manuf_info of the component USB. Executing a manipulation of the argument Size can lead to heap-based buffer overflow. This vulnerability is registered as CVE-2026-53196. The attack requires access to the local network. No exploit is available. It is suggested to upgrade the affected component.
https://vuldb.com/vuln/373721
CVE-2026-53205 | Linux Kernel up to 6.12.93/6.18.35/7.0.12 accel out-of-bounds (Nessus ID 323537 / WID-SEC-2026-2077)
A vulnerability was found in Linux Kernel up to 6.12.93/6.18.35/7.0.12. It has been declared as critical. This impacts an unknown function of the component accel. Such manipulation leads to out-of-bounds read. This vulnerability is listed as CVE-2026-53205. The attack must be carried out from within the local network. There is no available exploit. It is recommended to upgrade the affected component.
https://vuldb.com/vuln/373779
CVE-2026-53217 | Linux Kernel up to 7.0.12 net dma_sync_single_range_for_cpu improper synchronization (Nessus ID 323539 / WID-SEC-2026-2077)
A vulnerability classified as critical was found in Linux Kernel up to 7.0.12. This vulnerability affects the function dma_sync_single_range_for_cpu of the component net. Such manipulation leads to improper synchronization. This vulnerability is uniquely identified as CVE-2026-53217. The attack can only be initiated within the local network. No exploit exists. Upgrading the affected component is advised.
https://vuldb.com/vuln/373773
CVE-2026-42387 | PowerDNS Recursor up to 5.2.10/5.3.7/5.4.2 Zone ZoneToCache denial of service (Nessus ID 323540)
A vulnerability classified as problematic was found in PowerDNS Recursor up to 5.2.10/5.3.7/5.4.2. Affected is the function ZoneToCache of the component Zone Handler. Such manipulation leads to denial of service. This vulnerability is documented as CVE-2026-42387. The attack can be executed remotely. There is not any exploit available. Upgrading the affected component is advised.
https://vuldb.com/vuln/373857

Managed ad