VEX records
Browse vendor VEX statements available in this Vulnerability-Lookup instance and pivot to the related vulnerability.
221683 VEX records
API response| Vulnerability | Source | Title | Product status | Imported | Links |
|---|---|---|---|---|---|
| CVE-2026-29775 | redhat_vex | freerdp: FreeRDP has a heap-buffer-overflow in bitmap_cache_put via OOB cacheId | fixed: 781 known affected: 5 | 2026-07-12T08:20:58+00:00 | Vulnerability · Source |
| CVE-2026-31883 | redhat_vex | freerdp: FreeRDP: Denial of Service via crafted audio data in RDP | fixed: 781 known affected: 5 | 2026-07-12T08:20:49+00:00 | Vulnerability · Source |
| CVE-2026-23066 | redhat_vex | kernel: Linux kernel: Denial of Service via unsafe requeue in rxrpc_recvmsg | fixed: 1092 known affected: 184 known not affected: 75 | 2026-07-12T07:55:10+00:00 | Vulnerability · Source |
| CVE-2025-5372 | redhat_vex | libssh: Incorrect Return Code Handling in ssh_kdf() in libssh | fixed: 154 known affected: 13 known not affected: 4 | 2026-07-12T05:55:11+00:00 | Vulnerability · Source |
| CVE-2024-32475 | redhat_vex | envoy: abnormal termination when using auto_sni with authority header longer than 255 characters | fixed: 60 known affected: 3 | 2026-07-12T05:35:09+00:00 | Vulnerability · Source |
| CVE-2024-23326 | redhat_vex | envoy: Envoy incorrectly accepts HTTP 200 response for entering upgrade mode | fixed: 32 known affected: 3 | 2026-07-12T05:35:09+00:00 | Vulnerability · Source |
| CVE-2026-26104 | redhat_vex | udisks: Missing Authorization Check Allows Unprivileged Users to Back Up LUKS Headers via udisks D-Bus API | fixed: 146 known not affected: 25 | 2026-07-12T05:05:22+00:00 | Vulnerability · Source |
| CVE-2026-23193 | redhat_vex | kernel: scsi: target: iscsi: Fix use-after-free in iscsit_dec_session_usage_count() | fixed: 2391 known affected: 22 known not affected: 14 | 2026-07-12T02:58:30+00:00 | Vulnerability · Source |
| CVE-2025-8860 | redhat_vex | qemu-kvm: uefi-vars: information disclosure vulnerability in uefi_vars_write callback | known not affected: 116 | 2026-07-12T02:47:49+00:00 | Vulnerability · Source |
| CVE-2025-14424 | redhat_vex | gimp: GIMP: Remote Code Execution via XCF File Parsing Use-After-Free | fixed: 24 known affected: 6 known not affected: 23 | 2026-07-12T02:36:40+00:00 | Vulnerability · Source |
| CVE-2026-22998 | redhat_vex | kernel: nvme-tcp: fix NULL pointer dereferences in nvmet_tcp_build_pdu_iovec | fixed: 762 known affected: 22 known not affected: 42 | 2026-07-12T02:31:50+00:00 | Vulnerability · Source |
| CVE-2025-14422 | redhat_vex | gimp: GIMP: Remote Code Execution via PNM file parsing integer overflow | fixed: 591 known affected: 6 | 2026-07-12T02:17:37+00:00 | Vulnerability · Source |
| CVE-2025-14425 | redhat_vex | gimp: GIMP: Remote Code Execution via JP2 file parsing heap-based buffer overflow | fixed: 144 known affected: 6 known not affected: 23 | 2026-07-12T02:17:37+00:00 | Vulnerability · Source |
| CVE-2025-47905 | redhat_vex | varnish: request smuggling attacks | fixed: 200 | 2026-07-12T02:17:33+00:00 | Vulnerability · Source |
| CVE-2026-23139 | redhat_vex | kernel: netfilter: nf_conncount: update last_gc only when GC has been performed | fixed: 307 known affected: 76 known not affected: 198 | 2026-07-12T02:12:20+00:00 | Vulnerability · Source |
| CVE-2026-23010 | redhat_vex | kernel: Linux kernel: Use-after-free in IPv6 address deletion may lead to a denial of service | fixed: 309 known not affected: 198 | 2026-07-12T02:12:15+00:00 | Vulnerability · Source |
| CVE-2025-40269 | redhat_vex | kernel: Linux kernel ALSA USB audio driver: Buffer overflow leading to information disclosure and denial of service | fixed: 2286 known affected: 47 known not affected: 17 | 2026-07-12T02:02:18+00:00 | Vulnerability · Source |
| CVE-2025-20012 | redhat_vex | microcode_ctl: From CVEorg collector | fixed: 30 known affected: 2 known not affected: 1 | 2026-07-12T01:57:30+00:00 | Vulnerability · Source |
| CVE-2026-23231 | redhat_vex | kernel: kernel: Privilege escalation or denial of service via use-after-free in nf_tables_addchain() | fixed: 2416 known affected: 22 known not affected: 14 | 2026-07-12T01:57:18+00:00 | Vulnerability · Source |
| CVE-2025-6547 | redhat_vex | pbkdf2: pbkdf2 silently returns static keys | fixed: 21 known affected: 17 known not affected: 254 | 2026-07-12T01:56:50+00:00 | Vulnerability · Source |
| CVE-2025-3158 | redhat_vex | assimp: Open Asset Import Library Assimp LWO File LWOAnimation.cpp UpdateAnimRangeSetup heap-based overflow | fixed: 160 | 2026-07-12T01:32:13+00:00 | Vulnerability · Source |
| CVE-2023-5367 | redhat_vex | xorg-x11-server: Out-of-bounds write in XIChangeDeviceProperty/RRChangeOutputProperty | fixed: 742 known affected: 9 | 2026-07-12T01:27:19+00:00 | Vulnerability · Source |
| CVE-2025-3159 | redhat_vex | assimp: Open Asset Import Library Assimp ASE File ASEParser.cpp ParseLV4MeshBonesVertices heap-based overflow | fixed: 160 | 2026-07-12T01:07:20+00:00 | Vulnerability · Source |
| CVE-2025-5244 | redhat_vex | binutils: GNU Binutils ld elflink.c elf_gc_sweep memory corruption | fixed: 47 known affected: 49 known not affected: 24 | 2026-07-12T00:57:40+00:00 | Vulnerability · Source |
| CVE-2024-8508 | redhat_vex | unbound: Unbounded name compression could lead to Denial of Service | fixed: 301 known affected: 10 known not affected: 158 | 2026-07-12T00:43:25+00:00 | Vulnerability · Source |
| CVE-2025-8715 | redhat_vex | postgresql: PostgreSQL executes arbitrary code in restore operation | fixed: 2801 known affected: 11 known not affected: 13 | 2026-07-12T00:32:03+00:00 | Vulnerability · Source |
| CVE-2025-22871 | redhat_vex | net/http: Request smuggling due to acceptance of invalid chunked data in net/http | fixed: 6754 known affected: 62 known not affected: 4564 | 2026-07-11T23:52:32+00:00 | Vulnerability · Source |
| CVE-2024-11029 | redhat_vex | freeipa: Administrative user data leaked through systemd journal | fixed: 52 known not affected: 65 | 2026-07-11T23:36:26+00:00 | Vulnerability · Source |
| CVE-2025-9390 | redhat_vex | vim: vim xxd xxd.c main buffer overflow | known affected: 13 known not affected: 20 | 2026-07-11T23:34:41+00:00 | Vulnerability · Source |
| CVE-2024-56171 | redhat_vex | libxml2: Use-After-Free in libxml2 | fixed: 617 known affected: 5 known not affected: 3737 | 2026-07-11T23:31:54+00:00 | Vulnerability · Source |
| CVE-2025-24928 | redhat_vex | libxml2: Stack-based buffer overflow in xmlSnprintfElements of libxml2 | fixed: 617 known affected: 5 known not affected: 3715 | 2026-07-11T23:26:50+00:00 | Vulnerability · Source |
| CVE-2025-11277 | redhat_vex | assimp: Open Asset Import Library Assimp Q3DLoader.cpp InternReadFile heap-based overflow | fixed: 299 | 2026-07-11T22:59:05+00:00 | Vulnerability · Source |
| CVE-2025-10158 | redhat_vex | rsync: Rsync: Out of bounds array access via negative index | fixed: 75 known affected: 4 known not affected: 35 | 2026-07-11T22:58:59+00:00 | Vulnerability · Source |
| CVE-2025-14423 | redhat_vex | gimp: GIMP: Remote Code Execution via stack-based buffer overflow in LBM file parsing | fixed: 24 known affected: 6 known not affected: 23 | 2026-07-11T22:58:08+00:00 | Vulnerability · Source |
| CVE-2026-23001 | redhat_vex | kernel: macvlan: fix possible UAF in macvlan_forward_source() | fixed: 2190 known affected: 22 known not affected: 42 | 2026-07-11T22:37:40+00:00 | Vulnerability · Source |
| CVE-2025-38116 | redhat_vex | kernel: wifi: ath12k: fix uaf in ath12k_core_init() | fixed: 612 known affected: 22 known not affected: 90 | 2026-07-11T22:37:35+00:00 | Vulnerability · Source |
| CVE-2026-23171 | redhat_vex | kernel: Linux kernel: Use-after-free in bonding module can cause system crash or arbitrary code execution | fixed: 1704 known affected: 22 known not affected: 90 | 2026-07-11T22:31:47+00:00 | Vulnerability · Source |
| CVE-2025-47947 | redhat_vex | modsecurity: ModSecurity Has Possible DoS Vulnerability | fixed: 225 known not affected: 3 | 2026-07-11T22:31:41+00:00 | Vulnerability · Source |
| CVE-2024-36350 | redhat_vex | kernel: information leak via transient execution vulnerability in some AMD processors | fixed: 935 known affected: 136 | 2026-07-11T22:27:22+00:00 | Vulnerability · Source |
| CVE-2025-62231 | redhat_vex | xorg: xmayland: Value overflow in XkbSetCompatMap() | fixed: 1309 known affected: 9 | 2026-07-11T22:24:09+00:00 | Vulnerability · Source |
| CVE-2025-62229 | redhat_vex | xorg: xmayland: Use-after-free in XPresentNotify structure creation | fixed: 1309 known affected: 9 | 2026-07-11T22:24:08+00:00 | Vulnerability · Source |
| CVE-2025-62230 | redhat_vex | xorg: xwayland: Use-after-free in Xkb client resource removal | fixed: 1309 known affected: 9 | 2026-07-11T22:22:34+00:00 | Vulnerability · Source |
| CVE-2025-8714 | redhat_vex | postgresql: PostgreSQL code execution in restore operation | fixed: 2876 known affected: 11 | 2026-07-11T22:22:31+00:00 | Vulnerability · Source |
| CVE-2025-8851 | redhat_vex | libtiff: LibTIFF Stack-based buffer overflow | known affected: 26 | 2026-07-11T22:22:29+00:00 | Vulnerability · Source |
| CVE-2025-24855 | redhat_vex | libxslt: Use-After-Free in libxslt numbers.c | fixed: 330 known affected: 4 known not affected: 2425 | 2026-07-11T22:22:26+00:00 | Vulnerability · Source |
| CVE-2025-13499 | redhat_vex | wireshark: Access of Uninitialized Pointer in Wireshark | fixed: 259 known affected: 8 known not affected: 4 | 2026-07-11T22:15:17+00:00 | Vulnerability · Source |
| CVE-2025-3887 | redhat_vex | gstreamer1-plugins-bad-free: mingw-gstreamer1-plugins-bad-free: GStreamer H265 Codec Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability | fixed: 238 known affected: 3 known not affected: 4 | 2026-07-11T22:07:31+00:00 | Vulnerability · Source |
| CVE-2025-54574 | redhat_vex | squid-cache: Squid Buffer Overflow | fixed: 218 known affected: 4 known not affected: 2 | 2026-07-11T22:06:42+00:00 | Vulnerability · Source |
| CVE-2024-36357 | redhat_vex | kernel: transient execution vulnerability in some AMD processors | fixed: 935 known affected: 136 | 2026-07-11T22:02:52+00:00 | Vulnerability · Source |
| CVE-2024-7347 | redhat_vex | nginx: specially crafted MP4 file may cause denial of service | fixed: 632 known affected: 21 known not affected: 11 | 2026-07-11T22:02:36+00:00 | Vulnerability · Source |