VEX records

Browse vendor VEX statements available in this Vulnerability-Lookup instance and pivot to the related vulnerability.

Reset

221769 VEX records

API response
Vulnerability Source Title Product status Imported Links
CVE-2025-64720 redhat_vex libpng: LIBPNG buffer overflow fixed: 3648 known affected: 25 known not affected: 27 2026-07-08T14:46:25+00:00 Vulnerability · Source
CVE-2026-53325 microsoft_vex agp/amd64: Fix broken error propagation in agp_amd64_probe() fixed: 1 known affected: 1 2026-07-08T14:43:54+00:00 Vulnerability · Source
CVE-2026-52909 microsoft_vex ip6_vti: set netns_immutable on the fallback device. fixed: 1 known affected: 1 2026-07-08T14:43:42+00:00 Vulnerability · Source
CVE-2025-58186 redhat_vex golang.org/net/http: Lack of limit when parsing cookies can cause memory exhaustion in net/http fixed: 8 known affected: 73 known not affected: 50 under investigation: 1395 2026-07-08T14:43:00+00:00 Vulnerability · Source
CVE-2026-53163 microsoft_vex locking/rtmutex: Skip remove_waiter() when waiter is not enqueued fixed: 1 known affected: 2 2026-07-08T14:43:00+00:00 Vulnerability · Source
CVE-2025-57812 redhat_vex cups: CUPS-Filters: Information disclosure and data corruption via crafted TIFF image file processing fixed: 4 known affected: 15 2026-07-08T14:42:55+00:00 Vulnerability · Source
CVE-2025-43718 redhat_vex poppler: Poppler stack overflow fixed: 4 known affected: 11 known not affected: 48 2026-07-08T14:42:54+00:00 Vulnerability · Source
CVE-2026-53138 microsoft_vex drm/amd/display: Bound VBIOS record-chain walk loops fixed: 1 known affected: 2 2026-07-08T14:42:49+00:00 Vulnerability · Source
CVE-2026-53157 microsoft_vex net: phonet: free phonet_device after RCU grace period fixed: 1 known affected: 1 under investigation: 1 2026-07-08T14:42:25+00:00 Vulnerability · Source
CVE-2026-52928 microsoft_vex af_unix: Reject SIOCATMARK on non-stream sockets fixed: 1 known affected: 2 2026-07-08T14:42:16+00:00 Vulnerability · Source
CVE-2026-53151 microsoft_vex rxrpc: Fix the ACK parser to extract the SACK table for parsing fixed: 1 known affected: 2 2026-07-08T14:41:57+00:00 Vulnerability · Source
CVE-2025-65018 redhat_vex libpng: LIBPNG heap buffer overflow fixed: 3612 known affected: 8 known not affected: 48 2026-07-08T14:40:57+00:00 Vulnerability · Source
CVE-2026-43186 redhat_vex kernel: ipv6: ioam: fix heap buffer overflow in __ioam6_fill_trace_data() known affected: 90 known not affected: 184 2026-07-08T14:37:19+00:00 Vulnerability · Source
CVE-2026-40215 redhat_vex openvpn: OpenVPN: Server crash or memory leak due to race condition and use-after-free known not affected: 1 2026-07-08T14:32:11+00:00 Vulnerability · Source
CVE-2026-52726 redhat_vex dulwich: Dulwich: Arbitrary code execution via crafted Git submodules known affected: 10 known not affected: 7 2026-07-08T14:21:34+00:00 Vulnerability · Source
CVE-2026-3713 redhat_vex libpng: libpng: Heap-based buffer overflow in pnm2png allows information disclosure and denial of service fixed: 3 known not affected: 264 2026-07-08T14:21:25+00:00 Vulnerability · Source
CVE-2025-9230 redhat_vex openssl: Out-of-bounds read & write in RFC 3211 KEK Unwrap fixed: 632 known affected: 18 known not affected: 250 2026-07-08T14:12:33+00:00 Vulnerability · Source
CVE-2026-3119 redhat_vex bind: BIND: Denial of Service via authenticated TKEY queries fixed: 4 known affected: 9 known not affected: 77 2026-07-08T14:12:29+00:00 Vulnerability · Source
CVE-2026-55655 redhat_vex openssh: Local MITM of X11 forwarding via abstract UNIX socket pre-binding in Red Hat Enterprise Linux OpenSSH client versions fixed: 3 known affected: 40 under investigation: 1 2026-07-08T13:59:46+00:00 Vulnerability · Source
CVE-2026-55654 redhat_vex openssh: Heap out-of-bounds read in Red Hat Enterprise Linux versions of OpenSSH GSSAPI indicator cleanup due to missing NULL sentinel termination fixed: 3 known affected: 40 under investigation: 1 2026-07-08T13:59:46+00:00 Vulnerability · Source
CVE-2026-55653 redhat_vex openssh: Double free in Red Hat Enterprise Linux versions of OpenSSH DH-GEX client path during FIPS known-group validation leads to client-side denial of service fixed: 3 known affected: 41 2026-07-08T13:59:45+00:00 Vulnerability · Source
CVE-2026-3591 redhat_vex bind: BIND: Unauthorized access due to use-after-return vulnerability in DNS query handling fixed: 4 known affected: 9 known not affected: 77 2026-07-08T13:56:07+00:00 Vulnerability · Source
CVE-2025-69720 redhat_vex ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution. fixed: 106 known not affected: 28 2026-07-08T13:51:52+00:00 Vulnerability · Source
CVE-2025-14178 redhat_vex php: heap-based buffer overflow in array_merge() fixed: 4178 known not affected: 83 2026-07-08T13:47:52+00:00 Vulnerability · Source
CVE-2026-1642 redhat_vex nginx: NGINX: Data injection via man-in-the-middle attack on TLS proxied connections fixed: 951 known affected: 1 known not affected: 72 2026-07-08T13:41:54+00:00 Vulnerability · Source
CVE-2026-53236 redhat_vex kernel: tcp: restrict SO_ATTACH_FILTER to priv users known affected: 274 2026-07-08T13:37:06+00:00 Vulnerability · Source
CVE-2026-37460 redhat_vex frr: FRRouting: Denial of Service via crafted BGP UPDATE message known affected: 13 2026-07-08T13:30:35+00:00 Vulnerability · Source
CVE-2026-53238 redhat_vex kernel: netlabel: validate unlabeled address and mask attribute lengths known affected: 274 2026-07-08T13:26:53+00:00 Vulnerability · Source
CVE-2026-53704 redhat_vex gstreamer1-plugins-ugly-free: GStreamer: Out-of-bounds read in RealMedia demuxer FILEINFO metadata parser fixed: 13 known affected: 6 2026-07-08T13:13:59+00:00 Vulnerability · Source
CVE-2026-53703 redhat_vex gstreamer1-plugins-ugly-free: GStreamer: Out-of-bounds read in RealMedia demuxer audio stream header parser fixed: 23 known affected: 4 2026-07-08T13:13:56+00:00 Vulnerability · Source
CVE-2026-53071 redhat_vex kernel: Bluetooth: l2cap: Add missing chan lock in l2cap_ecred_reconf_rsp known affected: 232 known not affected: 42 2026-07-08T13:07:42+00:00 Vulnerability · Source
CVE-2026-11610 redhat_vex 389-ds-base: 389-ds-base: Heap buffer overflow in sasl_io_recv() via padded SASL UNBIND fixed: 486 known affected: 5 known not affected: 1 2026-07-08T13:01:15+00:00 Vulnerability · Source
CVE-2026-56403 redhat_vex libexpat: libexpat: Arbitrary code execution due to integer overflow in storeAtts known affected: 7 under investigation: 21 2026-07-08T12:31:10+00:00 Vulnerability · Source
CVE-2026-2641 redhat_vex ctags: ctags: Denial of Service due to uncontrolled recursion known affected: 1 known not affected: 7 2026-07-08T12:29:30+00:00 Vulnerability · Source
CVE-2025-38073 redhat_vex kernel: block: fix race between set_blocksize and read paths known affected: 232 known not affected: 42 2026-07-08T12:29:24+00:00 Vulnerability · Source
CVE-2022-50377 redhat_vex kernel: ext4: check and assert if marking an no_delete evicting inode dirty fixed: 279 known affected: 112 known not affected: 76 2026-07-08T12:29:22+00:00 Vulnerability · Source
CVE-2025-38096 redhat_vex kernel: Linux Kernel: Denial of Service in iwlwifi due to improper firmware error handling known affected: 260 known not affected: 14 2026-07-08T12:29:17+00:00 Vulnerability · Source
CVE-2026-57062 redhat_vex GnuPG: Incorrect cryptographic message parsing known affected: 16 2026-07-08T12:29:14+00:00 Vulnerability · Source
CVE-2026-14684 redhat_vex org.hdrhistogram/HdrHistogram: HdrHistogram: HdrHistogram: Denial of Service via uncontrolled memory allocation in decodeFromByteBuffer fixed: 7 known affected: 12 2026-07-08T12:29:12+00:00 Vulnerability · Source
CVE-2022-48694 redhat_vex kernel: RDMA/irdma: Fix drain SQ hang with no completion known affected: 198 2026-07-08T12:29:09+00:00 Vulnerability · Source
CVE-2026-57234 redhat_vex nokogiri: Nokogiri: Server-Side Request Forgery (SSRF) and XML External Entity (XXE) via improper enforcement of NONET parse option known not affected: 17 2026-07-08T12:29:08+00:00 Vulnerability · Source
CVE-2022-50740 redhat_vex kernel: Linux kernel: Denial of Service in ath9k Wi-Fi driver due to URB memory leak fixed: 387 known affected: 52 known not affected: 104 2026-07-08T12:28:52+00:00 Vulnerability · Source
CVE-2022-50833 redhat_vex kernel: Bluetooth: use hdev->workqueue when queuing hdev->{cmd,ncmd}_timer works fixed: 201 known affected: 36 known not affected: 152 2026-07-08T12:28:45+00:00 Vulnerability · Source
CVE-2022-50630 redhat_vex kernel: mm: hugetlb: fix UAF in hugetlb_handle_userfault fixed: 267 known affected: 63 known not affected: 125 2026-07-08T12:28:41+00:00 Vulnerability · Source
CVE-2022-50709 redhat_vex kernel: wifi: ath9k: avoid uninit memory read in ath9k_htc_rx_msg() known affected: 198 known not affected: 76 2026-07-08T12:28:40+00:00 Vulnerability · Source
CVE-2023-53629 redhat_vex kernel: fs: dlm: fix use after free in midcomms commit known affected: 122 known not affected: 152 2026-07-08T12:28:39+00:00 Vulnerability · Source
CVE-2022-50217 redhat_vex kernel: Linux kernel (FUSE): Data corruption or Denial of Service due to a race condition during file operations known affected: 42 known not affected: 232 2026-07-08T12:28:36+00:00 Vulnerability · Source
CVE-2022-50829 redhat_vex kernel: wifi: ath9k: hif_usb: Fix use-after-free in ath9k_hif_usb_reg_in_cb() fixed: 387 known affected: 80 known not affected: 76 2026-07-08T12:28:32+00:00 Vulnerability · Source
CVE-2023-53759 redhat_vex kernel: Linux kernel: High impact due to data race in hidraw_open() during concurrent device opening known affected: 122 known not affected: 152 2026-07-08T12:28:30+00:00 Vulnerability · Source
CVE-2023-53788 redhat_vex kernel: ALSA: hda/ca0132: fixup buffer overrun at tuning_ctl_set() known affected: 198 known not affected: 76 2026-07-08T12:28:28+00:00 Vulnerability · Source