CVEs classified under CWE-825, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (30)
CVE-2026-53006 — CVSS 9.8 (critical): In the Linux kernel, the following vulnerability has been resolved: ipv6: fix possible UAF in icmpv6_rcv() Caching saddr and daddr before…
CVE-2026-52924 — CVSS 9.8 (critical): In the Linux kernel, the following vulnerability has been resolved: sctp: purge outqueue on stale COOKIE-ECHO handling sctp_stream_update()…
CVE-2025-49794 — CVSS 9.1 (critical): A use-after-free vulnerability was found in libxml2. This issue occurs when parsing XPath elements under certain circumstances when the XML…
CVE-2026-52952 — CVSS 8.8 (high): In the Linux kernel, the following vulnerability has been resolved: iommu: Fix WARN_ON in __iommu_group_set_domain_nofail() due to reset In…
CVE-2026-53085 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bpf: fix mm lifecycle in open-coded task_vma iterator The open-coded…
CVE-2026-53033 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Take state lock for af_unix iter When a BPF iterator…
CVE-2026-52976 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/xe: Fix error cleanup in xe_exec_queue_create_ioctl() Two error…
CVE-2026-52973 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: futex: Drop CLONE_THREAD requirement for private default hash alloc…
CVE-2026-52950 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/xe/dma-buf: fix UAF with retry loop Retry doesn't work here, since…
CVE-2026-52923 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ipc: limit next_id allocation to the valid ID range The…
CVE-2026-46176 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix error path fall-through in mlx5_ib_dev_res_srq_init()…
CVE-2026-34001 — CVSS 7.8 (high): A flaw was found in the X.Org X server. This use-after-free vulnerability occurs in the XSYNC fence triggering logic, specifically within…
CVE-2026-8854 — CVSS 7.5 (high): IBM HTTP Server 8.5, and 9.0 is vulnerable to denial of service via the optional module mod_mem_cache.
CVE-2025-49795 — CVSS 7.5 (high): A NULL pointer dereference vulnerability was found in libxml2 when processing XPath XML expressions. This flaw allows an attacker to craft…
CVE-2023-20212 — CVSS 7.5 (high): A vulnerability in the AutoIt module of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition…
CVE-2023-48694 — CVSS 6.8 (medium): Azure RTOS USBX is a USB host, device, and on-the-go (OTG) embedded stack, that is fully integrated with Azure RTOS ThreadX. An attacker…
CVE-2026-5165 — CVSS 6.7 (medium): A flaw was found in virtio-win, specifically within the VirtIO Block (BLK) device. When the device undergoes a reset, it fails to properly…
CVE-2024-45105 — CVSS 6.7 (medium): An internal product security audit discovered a UEFI SMM (System Management Mode) callout vulnerability in some ThinkSystem servers that…
CVE-2026-42014 — CVSS 6.6 (medium): A flaw was found in GnuTLS. The `gnutls_pkcs11_token_set_pin` function, used for changing the Security Officer PIN, can lead to a…
CVE-2026-2436 — CVSS 6.5 (medium): A flaw was found in libsoup's SoupServer. A remote attacker could exploit a use-after-free vulnerability where the `soup_server_disconnect()…
CVE-2025-30653 — CVSS 6.5 (medium): An Expired Pointer Dereference vulnerability in Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an…
CVE-2026-12610 — CVSS 6.4 (medium): A flaw was found in sssd. When authenticating with a YubiKey, the SSSD PAM responder can crash due to a use-after-free vulnerability, where…
CVE-2024-28889 — CVSS 5.9 (medium): When an SSL profile with alert timeout is configured with a non-default value on a virtual server, undisclosed traffic along with…
CVE-2025-10911 — CVSS 5.5 (medium): A use-after-free vulnerability was found in libxslt while parsing xsl nodes that may lead to the dereference of expired pointers and…
CVE-2025-61664 — CVSS 4.9 (medium): A vulnerability in the GRUB2 bootloader has been identified in the normal module. This flaw, a memory Use After Free issue, occurs because…
CVE-2025-61663 — CVSS 4.9 (medium): A vulnerability has been identified in the GRUB2 bootloader's normal command that poses an immediate Denial of Service (DoS) risk. This…
CVE-2025-54771 — CVSS 4.9 (medium): A use-after-free vulnerability has been identified in the GNU GRUB (Grand Unified Bootloader). The flaw occurs because the file-closing…
CVE-2025-54770 — CVSS 4.9 (medium): A vulnerability has been identified in the GRUB2 bootloader's network module that poses an immediate Denial of Service (DoS) risk. This…
CVE-2026-35094 — CVSS 3.3 (low): A flaw was found in libinput. An attacker capable of deploying a Lua plugin file in specific system directories can exploit a dangling…