VEX records

Browse vendor VEX statements available in this Vulnerability-Lookup instance and pivot to the related vulnerability.

Reset

221784 VEX records

API response
Vulnerability Source Title Product status Imported Links
CVE-2026-23208 redhat_vex kernel: ALSA: usb-audio: Prevent excessive number of frames known affected: 274 2026-07-08T12:23:09+00:00 Vulnerability · Source
CVE-2026-23124 redhat_vex kernel: Linux kernel: Data race in IPv6 neighbor discovery leads to limited availability known affected: 90 known not affected: 184 2026-07-08T12:23:05+00:00 Vulnerability · Source
CVE-2025-38140 redhat_vex kernel: Linux kernel: Local denial of service in device mapper known affected: 226 known not affected: 48 2026-07-08T12:23:04+00:00 Vulnerability · Source
CVE-2025-38113 redhat_vex kernel: ACPI: CPPC: Fix NULL pointer dereference when nosmp is used known affected: 260 known not affected: 14 2026-07-08T12:23:01+00:00 Vulnerability · Source
CVE-2025-38117 redhat_vex kernel: Bluetooth: MGMT: Protect mgmt_pending list with its own lock known affected: 274 2026-07-08T12:23:00+00:00 Vulnerability · Source
CVE-2025-38157 redhat_vex kernel: Linux kernel's ath9k_htc Wi-Fi driver: Denial of Service or information disclosure via malicious USB device input known affected: 274 2026-07-08T12:22:57+00:00 Vulnerability · Source
CVE-2025-38149 redhat_vex kernel: net: phy: clear phydev->devlink when the link is deleted known affected: 226 known not affected: 48 2026-07-08T12:22:55+00:00 Vulnerability · Source
CVE-2025-40204 redhat_vex kernel: sctp: Fix MAC comparison to be constant-time known affected: 274 2026-07-08T12:22:50+00:00 Vulnerability · Source
CVE-2026-31508 redhat_vex kernel: net: openvswitch: Avoid releasing netdev before teardown completes fixed: 841 known affected: 112 known not affected: 76 2026-07-08T12:22:48+00:00 Vulnerability · Source
CVE-2023-54269 redhat_vex kernel: SUNRPC: double free xprt_ctxt while still in use fixed: 395 known affected: 52 known not affected: 104 2026-07-08T12:22:44+00:00 Vulnerability · Source
CVE-2026-23455 redhat_vex kernel: netfilter: nf_conntrack_h323: check for zero length in DecodeQ931() fixed: 1766 known affected: 47 2026-07-08T12:22:37+00:00 Vulnerability · Source
CVE-2023-54300 redhat_vex kernel: wifi: ath9k: avoid referencing uninit memory in ath9k_wmi_ctrl_rx fixed: 387 known affected: 80 known not affected: 76 2026-07-08T12:22:27+00:00 Vulnerability · Source
CVE-2026-23146 redhat_vex kernel: Linux kernel: Denial of Service in Bluetooth HCI UART driver via null pointer dereference fixed: 612 known affected: 36 known not affected: 76 2026-07-08T12:22:23+00:00 Vulnerability · Source
CVE-2026-46166 redhat_vex kernel: wifi: mac80211: use safe list iteration in radar detect work fixed: 1224 known affected: 22 known not affected: 90 2026-07-08T12:22:06+00:00 Vulnerability · Source
CVE-2026-23270 redhat_vex kernel: Linux kernel: Use-after-free in traffic control (act_ct) may lead to denial of service or privilege escalation fixed: 2538 known affected: 36 known not affected: 28 2026-07-08T12:19:54+00:00 Vulnerability · Source
CVE-2026-23127 redhat_vex kernel: Linux kernel: Privilege escalation or denial of service in perf subsystem known affected: 14 known not affected: 260 2026-07-08T12:19:45+00:00 Vulnerability · Source
CVE-2023-54271 redhat_vex kernel: Linux kernel: Denial of Service via NULL pointer dereference in blk-cgroup fixed: 280 known affected: 84 known not affected: 112 2026-07-08T12:19:44+00:00 Vulnerability · Source
CVE-2023-54226 redhat_vex kernel: af_unix: Fix data races around sk->sk_shutdown known affected: 198 known not affected: 76 2026-07-08T12:19:43+00:00 Vulnerability · Source
CVE-2025-68312 redhat_vex kernel: usbnet: Prevents free active kevent known affected: 198 known not affected: 76 2026-07-08T12:19:40+00:00 Vulnerability · Source
CVE-2026-23209 redhat_vex kernel: macvlan: fix error recovery in macvlan_common_newlink() fixed: 2311 known affected: 36 known not affected: 28 2026-07-08T12:19:30+00:00 Vulnerability · Source
CVE-2023-54243 redhat_vex kernel: netfilter: ebtables: fix table blob use-after-free known affected: 198 known not affected: 76 2026-07-08T12:19:29+00:00 Vulnerability · Source
CVE-2026-31685 redhat_vex kernel: netfilter: ip6t_eui64: reject invalid MAC header for all packets fixed: 2073 known affected: 47 2026-07-08T12:19:20+00:00 Vulnerability · Source
CVE-2026-43116 redhat_vex kernel: netfilter: ctnetlink: ensure safe access to master conntrack fixed: 1830 known affected: 112 2026-07-08T12:19:00+00:00 Vulnerability · Source
CVE-2026-31786 redhat_vex kernel: Buffer overflow in drivers/xen/sys-hypervisor.c fixed: 762 known affected: 64 2026-07-08T12:18:56+00:00 Vulnerability · Source
CVE-2026-13122 redhat_vex openvpn: From CVEorg collector known not affected: 1 2026-07-08T11:39:19+00:00 Vulnerability · Source
CVE-2026-13698 redhat_vex openvpn: From CVEorg collector known not affected: 1 2026-07-08T11:39:09+00:00 Vulnerability · Source
CVE-2026-46155 redhat_vex kernel: smb/client: fix out-of-bounds read in smb2_compound_op() fixed: 612 known affected: 22 known not affected: 90 2026-07-08T11:39:00+00:00 Vulnerability · Source
CVE-2026-46259 redhat_vex kernel: procfs: fix missing RCU protection when reading real_parent in do_task_stat() fixed: 762 known affected: 64 2026-07-08T11:39:00+00:00 Vulnerability · Source
CVE-2026-43276 redhat_vex kernel: net: mana: Fix double destroy_workqueue on service rescan PCI path fixed: 612 known affected: 22 known not affected: 90 2026-07-08T11:38:55+00:00 Vulnerability · Source
CVE-2026-43341 redhat_vex kernel: net/ipv6: ioam6: prevent schema length wraparound in trace fill fixed: 616 known not affected: 198 2026-07-08T11:38:55+00:00 Vulnerability · Source
CVE-2026-33006 redhat_vex httpd: mod_auth_digest: timing attack allows a bypass of digest authentication fixed: 79 known affected: 42 2026-07-08T11:37:38+00:00 Vulnerability · Source
CVE-2026-24072 redhat_vex Apache HTTP Server: mod_rewrite: Apache HTTP Server: Privilege Escalation via .htaccess file manipulation fixed: 79 known affected: 55 2026-07-08T11:37:37+00:00 Vulnerability · Source
CVE-2026-40047 redhat_vex camel-docling: Apache Camel Docling: CLI argument injection and path traversal known affected: 2 2026-07-08T11:29:24+00:00 Vulnerability · Source
CVE-2026-15041 redhat_vex 389-ds-base: 389-ds-base: Non-constant-time comparison in PBKDF2-SHA256 password verification known affected: 29 known not affected: 4 2026-07-08T11:06:55+00:00 Vulnerability · Source
CVE-2026-59710 redhat_vex showdown: Showdown: Stored Cross-Site Scripting via unescaped table header ID attributes in markdown known affected: 26 2026-07-08T11:01:35+00:00 Vulnerability · Source
CVE-2025-29786 redhat_vex github.com/expr-lang/expr: Memory Exhaustion in Expr Parser with Unrestricted Input fixed: 71 known affected: 13 known not affected: 49 2026-07-08T11:01:21+00:00 Vulnerability · Source
CVE-2026-55153 redhat_vex com.mchange/mchange-commons-java: mchange-commons-java: Remote code execution via JNDI injection known affected: 4 known not affected: 7 2026-07-08T10:40:48+00:00 Vulnerability · Source
CVE-2026-40938 redhat_vex github.com/tektoncd/pipeline: Tekton Pipelines: Arbitrary code execution and secret exfiltration via malicious git commands fixed: 65 known affected: 27 known not affected: 205 2026-07-08T09:46:25+00:00 Vulnerability · Source
CVE-2026-53434 redhat_vex tomcat: Apache Tomcat: Error condition not handled when configuring CRLs fixed: 4 known affected: 80 2026-07-08T09:42:21+00:00 Vulnerability · Source
CVE-2026-53404 redhat_vex Apache Tomcat: Apache Tomcat: Incorrect control flow in rewrite valve allows unexpected rule processing fixed: 4 known affected: 80 2026-07-08T09:42:12+00:00 Vulnerability · Source
CVE-2026-55276 redhat_vex tomcat: Apache Tomcat: Misleading security logs due to incorrect control flow fixed: 4 known affected: 80 2026-07-08T09:37:14+00:00 Vulnerability · Source
CVE-2024-27316 redhat_vex httpd: CONTINUATION frames DoS fixed: 693 known affected: 47 known not affected: 82 2026-07-08T08:58:12+00:00 Vulnerability · Source
CVE-2026-11837 redhat_vex ansible-collection-ansible-posix: ansible.posix authorized_key: local privilege escalation via symlink-following chown known affected: 3 known not affected: 3 2026-07-08T08:36:18+00:00 Vulnerability · Source
CVE-2026-56139 redhat_vex org.apache.camel/camel-undertow: Apache Camel Undertow: Information disclosure via error messages containing sensitive data known affected: 2 2026-07-08T08:26:45+00:00 Vulnerability · Source
CVE-2026-55688 redhat_vex async-http-client: AsyncHttpClient: Cookie injection allows planting cookies for unrelated domains under investigation: 2 2026-07-08T08:21:38+00:00 Vulnerability · Source
CVE-2026-54264 redhat_vex @angular/service-worker: @angular/service-worker: Information Disclosure via unstripped sensitive headers on cross-origin redirects known not affected: 1 2026-07-08T08:16:47+00:00 Vulnerability · Source
CVE-2026-50184 redhat_vex @angular/service-worker: @angular/service-worker: Security flaw leads to session leaks and cached private data known not affected: 1 2026-07-08T08:16:40+00:00 Vulnerability · Source
CVE-2026-34085 redhat_vex fontconfig: Fontconfig: Security flaw allows arbitrary code execution or system crash fixed: 4 known affected: 5 known not affected: 13 2026-07-08T08:16:33+00:00 Vulnerability · Source
CVE-2026-46625 redhat_vex js-cookie: JavaScript Cookie: Cookie attribute manipulation via prototype pollution fixed: 12 known affected: 14 known not affected: 54 under investigation: 33 2026-07-08T08:12:26+00:00 Vulnerability · Source
CVE-2026-9165 redhat_vex stackrox: stackrox: Unbounded GraphQL query depth allows authenticated denial of service fixed: 12 known not affected: 127 2026-07-08T08:11:51+00:00 Vulnerability · Source