Every CVE whose affected-product data names Mesa3d Mesa, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (8)
CVE-2026-40393 — CVSS 8.1 (high): In Mesa before 25.3.6 and 26 before 26.0.1, out-of-bounds memory access can occur in WebGPU because the amount of to-be-allocated data…
CVE-2023-45931 — CVSS 7.5 (high): Mesa 23.0.4 was discovered to contain a NULL pointer dereference in check_xshm() for the has_error state. NOTE: this is disputed because…
CVE-2013-1872 — CVSS 6.8 (medium): The Intel drivers in Mesa 8.0.x and 9.0.x allow context-dependent attackers to cause a denial of service (reachable assertion and crash)…
CVE-2013-1993 — CVSS 6.8 (medium): Multiple integer overflows in X.org libGLX in Mesa 9.1.1 and earlier allow X servers to trigger allocation of insufficient memory and a…
CVE-2023-45913 — CVSS 6.2 (medium): Mesa v23.0.4 was discovered to contain a NULL pointer dereference via the function dri2GetGlxDrawableFromXDrawableId(). This vulnerability…
CVE-2023-45919 — CVSS 5.3 (medium): Mesa 23.0.4 was discovered to contain a buffer over-read in glXQueryServerString(). NOTE: this is disputed because there are no common…
CVE-2019-5068 — CVSS 4.4 (medium): An exploitable shared memory permissions vulnerability exists in the functionality of X11 Mesa 3D Graphics Library 19.1.2. An attacker can…
CVE-2023-45922 — CVSS 4.3 (medium): glx_pbuffer.c in Mesa 23.0.4 was discovered to contain a segmentation violation when calling __glXGetDrawableAttribute(). NOTE: this is…