VEX records
Browse vendor VEX statements available in this Vulnerability-Lookup instance and pivot to the related vulnerability.
221679 VEX records
API response| Vulnerability | Source | Title | Product status | Imported | Links |
|---|---|---|---|---|---|
| CVE-2026-22998 | redhat_vex | kernel: nvme-tcp: fix NULL pointer dereferences in nvmet_tcp_build_pdu_iovec | fixed: 762 known affected: 22 known not affected: 42 | 2026-07-12T02:31:50+00:00 | Vulnerability · Source |
| CVE-2025-14422 | redhat_vex | gimp: GIMP: Remote Code Execution via PNM file parsing integer overflow | fixed: 591 known affected: 6 | 2026-07-12T02:17:37+00:00 | Vulnerability · Source |
| CVE-2025-14425 | redhat_vex | gimp: GIMP: Remote Code Execution via JP2 file parsing heap-based buffer overflow | fixed: 144 known affected: 6 known not affected: 23 | 2026-07-12T02:17:37+00:00 | Vulnerability · Source |
| CVE-2025-47905 | redhat_vex | varnish: request smuggling attacks | fixed: 200 | 2026-07-12T02:17:33+00:00 | Vulnerability · Source |
| CVE-2026-23139 | redhat_vex | kernel: netfilter: nf_conncount: update last_gc only when GC has been performed | fixed: 307 known affected: 76 known not affected: 198 | 2026-07-12T02:12:20+00:00 | Vulnerability · Source |
| CVE-2026-23010 | redhat_vex | kernel: Linux kernel: Use-after-free in IPv6 address deletion may lead to a denial of service | fixed: 309 known not affected: 198 | 2026-07-12T02:12:15+00:00 | Vulnerability · Source |
| CVE-2025-40269 | redhat_vex | kernel: Linux kernel ALSA USB audio driver: Buffer overflow leading to information disclosure and denial of service | fixed: 2286 known affected: 47 known not affected: 17 | 2026-07-12T02:02:18+00:00 | Vulnerability · Source |
| CVE-2025-20012 | redhat_vex | microcode_ctl: From CVEorg collector | fixed: 30 known affected: 2 known not affected: 1 | 2026-07-12T01:57:30+00:00 | Vulnerability · Source |
| CVE-2026-23231 | redhat_vex | kernel: kernel: Privilege escalation or denial of service via use-after-free in nf_tables_addchain() | fixed: 2416 known affected: 22 known not affected: 14 | 2026-07-12T01:57:18+00:00 | Vulnerability · Source |
| CVE-2025-6547 | redhat_vex | pbkdf2: pbkdf2 silently returns static keys | fixed: 21 known affected: 17 known not affected: 254 | 2026-07-12T01:56:50+00:00 | Vulnerability · Source |
| CVE-2025-3158 | redhat_vex | assimp: Open Asset Import Library Assimp LWO File LWOAnimation.cpp UpdateAnimRangeSetup heap-based overflow | fixed: 160 | 2026-07-12T01:32:13+00:00 | Vulnerability · Source |
| CVE-2023-5367 | redhat_vex | xorg-x11-server: Out-of-bounds write in XIChangeDeviceProperty/RRChangeOutputProperty | fixed: 742 known affected: 9 | 2026-07-12T01:27:19+00:00 | Vulnerability · Source |
| CVE-2025-3159 | redhat_vex | assimp: Open Asset Import Library Assimp ASE File ASEParser.cpp ParseLV4MeshBonesVertices heap-based overflow | fixed: 160 | 2026-07-12T01:07:20+00:00 | Vulnerability · Source |
| CVE-2025-5244 | redhat_vex | binutils: GNU Binutils ld elflink.c elf_gc_sweep memory corruption | fixed: 47 known affected: 49 known not affected: 24 | 2026-07-12T00:57:40+00:00 | Vulnerability · Source |
| CVE-2024-8508 | redhat_vex | unbound: Unbounded name compression could lead to Denial of Service | fixed: 301 known affected: 10 known not affected: 158 | 2026-07-12T00:43:25+00:00 | Vulnerability · Source |
| CVE-2025-8715 | redhat_vex | postgresql: PostgreSQL executes arbitrary code in restore operation | fixed: 2801 known affected: 11 known not affected: 13 | 2026-07-12T00:32:03+00:00 | Vulnerability · Source |
| CVE-2025-22871 | redhat_vex | net/http: Request smuggling due to acceptance of invalid chunked data in net/http | fixed: 6754 known affected: 62 known not affected: 4564 | 2026-07-11T23:52:32+00:00 | Vulnerability · Source |
| CVE-2024-11029 | redhat_vex | freeipa: Administrative user data leaked through systemd journal | fixed: 52 known not affected: 65 | 2026-07-11T23:36:26+00:00 | Vulnerability · Source |
| CVE-2025-9390 | redhat_vex | vim: vim xxd xxd.c main buffer overflow | known affected: 13 known not affected: 20 | 2026-07-11T23:34:41+00:00 | Vulnerability · Source |
| CVE-2024-56171 | redhat_vex | libxml2: Use-After-Free in libxml2 | fixed: 617 known affected: 5 known not affected: 3737 | 2026-07-11T23:31:54+00:00 | Vulnerability · Source |
| CVE-2025-24928 | redhat_vex | libxml2: Stack-based buffer overflow in xmlSnprintfElements of libxml2 | fixed: 617 known affected: 5 known not affected: 3715 | 2026-07-11T23:26:50+00:00 | Vulnerability · Source |
| CVE-2025-11277 | redhat_vex | assimp: Open Asset Import Library Assimp Q3DLoader.cpp InternReadFile heap-based overflow | fixed: 299 | 2026-07-11T22:59:05+00:00 | Vulnerability · Source |
| CVE-2025-10158 | redhat_vex | rsync: Rsync: Out of bounds array access via negative index | fixed: 75 known affected: 4 known not affected: 35 | 2026-07-11T22:58:59+00:00 | Vulnerability · Source |
| CVE-2025-14423 | redhat_vex | gimp: GIMP: Remote Code Execution via stack-based buffer overflow in LBM file parsing | fixed: 24 known affected: 6 known not affected: 23 | 2026-07-11T22:58:08+00:00 | Vulnerability · Source |
| CVE-2026-23001 | redhat_vex | kernel: macvlan: fix possible UAF in macvlan_forward_source() | fixed: 2190 known affected: 22 known not affected: 42 | 2026-07-11T22:37:40+00:00 | Vulnerability · Source |
| CVE-2025-38116 | redhat_vex | kernel: wifi: ath12k: fix uaf in ath12k_core_init() | fixed: 612 known affected: 22 known not affected: 90 | 2026-07-11T22:37:35+00:00 | Vulnerability · Source |
| CVE-2026-23171 | redhat_vex | kernel: Linux kernel: Use-after-free in bonding module can cause system crash or arbitrary code execution | fixed: 1704 known affected: 22 known not affected: 90 | 2026-07-11T22:31:47+00:00 | Vulnerability · Source |
| CVE-2025-47947 | redhat_vex | modsecurity: ModSecurity Has Possible DoS Vulnerability | fixed: 225 known not affected: 3 | 2026-07-11T22:31:41+00:00 | Vulnerability · Source |
| CVE-2024-36350 | redhat_vex | kernel: information leak via transient execution vulnerability in some AMD processors | fixed: 935 known affected: 136 | 2026-07-11T22:27:22+00:00 | Vulnerability · Source |
| CVE-2025-62231 | redhat_vex | xorg: xmayland: Value overflow in XkbSetCompatMap() | fixed: 1309 known affected: 9 | 2026-07-11T22:24:09+00:00 | Vulnerability · Source |
| CVE-2025-62229 | redhat_vex | xorg: xmayland: Use-after-free in XPresentNotify structure creation | fixed: 1309 known affected: 9 | 2026-07-11T22:24:08+00:00 | Vulnerability · Source |
| CVE-2025-62230 | redhat_vex | xorg: xwayland: Use-after-free in Xkb client resource removal | fixed: 1309 known affected: 9 | 2026-07-11T22:22:34+00:00 | Vulnerability · Source |
| CVE-2025-8714 | redhat_vex | postgresql: PostgreSQL code execution in restore operation | fixed: 2876 known affected: 11 | 2026-07-11T22:22:31+00:00 | Vulnerability · Source |
| CVE-2025-8851 | redhat_vex | libtiff: LibTIFF Stack-based buffer overflow | known affected: 26 | 2026-07-11T22:22:29+00:00 | Vulnerability · Source |
| CVE-2025-24855 | redhat_vex | libxslt: Use-After-Free in libxslt numbers.c | fixed: 330 known affected: 4 known not affected: 2425 | 2026-07-11T22:22:26+00:00 | Vulnerability · Source |
| CVE-2025-13499 | redhat_vex | wireshark: Access of Uninitialized Pointer in Wireshark | fixed: 259 known affected: 8 known not affected: 4 | 2026-07-11T22:15:17+00:00 | Vulnerability · Source |
| CVE-2025-3887 | redhat_vex | gstreamer1-plugins-bad-free: mingw-gstreamer1-plugins-bad-free: GStreamer H265 Codec Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability | fixed: 238 known affected: 3 known not affected: 4 | 2026-07-11T22:07:31+00:00 | Vulnerability · Source |
| CVE-2025-54574 | redhat_vex | squid-cache: Squid Buffer Overflow | fixed: 218 known affected: 4 known not affected: 2 | 2026-07-11T22:06:42+00:00 | Vulnerability · Source |
| CVE-2024-36357 | redhat_vex | kernel: transient execution vulnerability in some AMD processors | fixed: 935 known affected: 136 | 2026-07-11T22:02:52+00:00 | Vulnerability · Source |
| CVE-2024-7347 | redhat_vex | nginx: specially crafted MP4 file may cause denial of service | fixed: 632 known affected: 21 known not affected: 11 | 2026-07-11T22:02:36+00:00 | Vulnerability · Source |
| CVE-2025-46817 | redhat_vex | redis: Lua library commands may lead to integer overflow and potential RCE | fixed: 286 known not affected: 147 | 2026-07-11T22:02:29+00:00 | Vulnerability · Source |
| CVE-2024-55549 | redhat_vex | libxslt: Use-After-Free in libxslt (xsltGetInheritedNsList) | fixed: 351 known affected: 4 known not affected: 2425 | 2026-07-11T22:02:22+00:00 | Vulnerability · Source |
| CVE-2025-61915 | redhat_vex | CUPS: Local denial-of-service via cupsd.conf update and related issues | fixed: 14 known affected: 15 known not affected: 262 | 2026-07-11T21:58:23+00:00 | Vulnerability · Source |
| CVE-2025-9817 | redhat_vex | Wireshark: NULL Pointer Dereference in Wireshark | fixed: 74 known affected: 4 known not affected: 12 | 2026-07-11T21:58:22+00:00 | Vulnerability · Source |
| CVE-2025-53906 | redhat_vex | vim: Vim path traversal | fixed: 422 known affected: 13 known not affected: 4 | 2026-07-11T21:58:09+00:00 | Vulnerability · Source |
| CVE-2025-54349 | redhat_vex | iperf3: iperf Heap Buffer Overflow | fixed: 190 known not affected: 3 | 2026-07-11T21:58:05+00:00 | Vulnerability · Source |
| CVE-2025-11561 | redhat_vex | sssd: SSSD default Kerberos configuration allows privilege escalation on AD-joined Linux systems | fixed: 4895 known affected: 31 known not affected: 24 | 2026-07-11T21:57:37+00:00 | Vulnerability · Source |
| CVE-2025-7493 | redhat_vex | FreeIPA: idm: Privilege escalation from host to domain admin in FreeIPA | fixed: 1318 known affected: 7 | 2026-07-11T21:52:19+00:00 | Vulnerability · Source |
| CVE-2025-53905 | redhat_vex | vim: Vim path traversial | fixed: 422 known affected: 13 known not affected: 4 | 2026-07-11T21:47:12+00:00 | Vulnerability · Source |
| CVE-2025-40779 | redhat_vex | kea: Kea crash upon interaction between specific client options and subnet selection | fixed: 90 | 2026-07-11T21:47:10+00:00 | Vulnerability · Source |