VEX records

Browse vendor VEX statements available in this Vulnerability-Lookup instance and pivot to the related vulnerability.

Reset

221769 VEX records

API response
Vulnerability Source Title Product status Imported Links
CVE-2026-28379 redhat_vex grafana: Grafana Live: Denial of Service due to a race condition known affected: 24 known not affected: 3 2026-07-07T22:05:51+00:00 Vulnerability · Source
CVE-2026-28376 redhat_vex grafana: Grafana Live: Denial of Service due to unbounded memory allocation via push endpoint known affected: 25 known not affected: 2 2026-07-07T22:05:50+00:00 Vulnerability · Source
CVE-2026-28374 redhat_vex grafana: Grafana: Unauthorized annotation deletion by editor users known affected: 25 known not affected: 2 2026-07-07T22:05:47+00:00 Vulnerability · Source
CVE-2026-33380 redhat_vex grafana: Grafana: Information disclosure via SQL Expressions vulnerability known affected: 3 known not affected: 24 2026-07-07T22:05:45+00:00 Vulnerability · Source
CVE-2025-41115 redhat_vex grafana: Incorrect Privilege Assignment known not affected: 23 2026-07-07T22:05:33+00:00 Vulnerability · Source
CVE-2026-23136 redhat_vex kernel: Linux kernel: Denial of Service in libceph OSD client due to unreset sparse-read state fixed: 1218 known affected: 98 known not affected: 90 2026-07-07T21:55:15+00:00 Vulnerability · Source
CVE-2026-53154 redhat_vex kernel: mm/hugetlb: restore reservation on error in hugetlb folio copy paths known affected: 198 known not affected: 76 2026-07-07T20:35:46+00:00 Vulnerability · Source
CVE-2026-43198 redhat_vex kernel: tcp: fix potential race in tcp_v6_syn_recv_sock() fixed: 2073 known affected: 33 under investigation: 14 2026-07-07T20:03:20+00:00 Vulnerability · Source
CVE-2026-43450 redhat_vex kernel: netfilter: nfnetlink_cthelper: fix OOB read in nfnl_cthelper_dump_table() fixed: 150 known affected: 212 known not affected: 14 2026-07-07T20:03:20+00:00 Vulnerability · Source
CVE-2025-10263 redhat_vex kernel: Arm Processors: Privilege escalation or information disclosure via writes to higher exception level resources fixed: 762 known affected: 24 known not affected: 43 2026-07-07T20:03:20+00:00 Vulnerability · Source
CVE-2026-32871 redhat_vex fastmcp: FastMCP: Authenticated Server-Side Request Forgery via path traversal in OpenAPI path parameters fixed: 1 known not affected: 19 2026-07-07T19:26:07+00:00 Vulnerability · Source
CVE-2025-69872 redhat_vex python-diskcache: python-diskcache: Arbitrary code execution via insecure pickle deserialization fixed: 5 known affected: 4 known not affected: 243 2026-07-07T19:26:07+00:00 Vulnerability · Source
CVE-2025-69196 redhat_vex fastmcp: FastMCP: Improper token issuance due to incorrect resource parameter handling fixed: 1 known not affected: 20 2026-07-07T19:26:07+00:00 Vulnerability · Source
CVE-2022-30065 redhat_vex busybox: A use-after-free in Busybox's awk applet leads to denial of service known affected: 3 2026-07-07T19:25:35+00:00 Vulnerability · Source
CVE-2021-30004 redhat_vex wpa_supplicant: mishandled AlgorithmIdentifier parameters may lead to forging attacks known not affected: 8 2026-07-07T19:25:29+00:00 Vulnerability · Source
CVE-2026-12866 redhat_vex expr-eval: expr-eval: Code Execution via crafted expressions in toJSFunction() API known affected: 4 2026-07-07T19:06:08+00:00 Vulnerability · Source
CVE-2026-53157 redhat_vex kernel: net: phonet: free phonet_device after RCU grace period known affected: 14 known not affected: 260 2026-07-07T19:06:06+00:00 Vulnerability · Source
CVE-2026-55892 redhat_vex vim: Vim: Denial of Service via crafted spell file fixed: 4 known affected: 33 2026-07-07T18:58:06+00:00 Vulnerability · Source
CVE-2026-53163 redhat_vex kernel: locking/rtmutex: Skip remove_waiter() when waiter is not enqueued known affected: 232 known not affected: 42 2026-07-07T18:57:53+00:00 Vulnerability · Source
CVE-2026-53164 redhat_vex kernel: iommu/dma: Do not try to iommu_map a 0 length region in swiotlb known affected: 184 known not affected: 90 2026-07-07T18:57:52+00:00 Vulnerability · Source
CVE-2026-25749 redhat_vex vim: Vim: Arbitrary code execution via 'helpfile' option processing fixed: 649 known affected: 6 known not affected: 164 2026-07-07T18:57:39+00:00 Vulnerability · Source
CVE-2026-53009 redhat_vex kernel: ice: fix double-free of tx_buf skb known affected: 260 known not affected: 14 2026-07-07T18:57:39+00:00 Vulnerability · Source
CVE-2026-14363 redhat_vex Cargo: Mediawiki Cargo Extension: SQL Injection vulnerability known not affected: 1 2026-07-07T18:46:04+00:00 Vulnerability · Source
CVE-2026-43114 redhat_vex kernel: netfilter: nft_set_pipapo_avx2: don't return non-matching entry on expiry known affected: 185 known not affected: 91 2026-07-07T18:33:08+00:00 Vulnerability · Source
CVE-2026-44902 redhat_vex opentelemetry-js: opentelemetry/exporter-prometheus: opentelemetry-js: Denial of Service via malformed HTTP request known affected: 2 known not affected: 5 2026-07-07T18:32:27+00:00 Vulnerability · Source
CVE-2026-48614 redhat_vex Plesk: Plesk: Privilege escalation via improper authorization in XML API known not affected: 1 2026-07-07T17:22:37+00:00 Vulnerability · Source
CVE-2026-53134 redhat_vex kernel: netfilter: nft_fib: fix stale stack leak via the OIFNAME register known affected: 232 known not affected: 42 2026-07-07T17:06:07+00:00 Vulnerability · Source
CVE-2024-47081 redhat_vex requests: Requests vulnerable to .netrc credentials leak via malicious URLs fixed: 643 known affected: 119 known not affected: 48 2026-07-07T17:05:58+00:00 Vulnerability · Source
CVE-2026-53141 redhat_vex kernel: drm/v3d: Fix global performance monitor reference counting known not affected: 274 2026-07-07T16:56:38+00:00 Vulnerability · Source
CVE-2026-53142 redhat_vex kernel: drm/xe/display: fix oops in suspend/shutdown without display known affected: 184 known not affected: 90 2026-07-07T16:56:34+00:00 Vulnerability · Source
CVE-2026-53144 redhat_vex kernel: drm/amdkfd: fix NULL dereference in get_queue_ids() known not affected: 274 2026-07-07T16:45:39+00:00 Vulnerability · Source
CVE-2026-14935 redhat_vex gstreamer: gstreamer: webrtcbin accepts remote SDP without a=fingerprint due to inverted presence check known affected: 24 2026-07-07T16:24:23+00:00 Vulnerability · Source
CVE-2026-58371 redhat_vex github.com/seaweedfs/seaweedfs: SeaweedFS: Information disclosure via unvalidated JSONP callback parameter known affected: 1 2026-07-07T16:24:22+00:00 Vulnerability · Source
CVE-2024-3884 redhat_vex undertow: OutOfMemory when parsing form data encoding with application/x-www-form-urlencoded fixed: 212 known affected: 5 known not affected: 2698 under investigation: 14 2026-07-07T15:54:08+00:00 Vulnerability · Source
CVE-2026-24260 redhat_vex NVIDIA Container Toolkit: NVIDIA Container Toolkit: Privilege escalation and code execution via race condition known not affected: 2 2026-07-07T15:51:11+00:00 Vulnerability · Source
CVE-2026-13311 redhat_vex shell-quote: shell-quote/parse: shell-quote: Denial of Service due to inefficient input parsing known affected: 57 known not affected: 24 2026-07-07T15:41:49+00:00 Vulnerability · Source
CVE-2026-54316 redhat_vex claude-code: Claude Code: Out-of-Band Data Exfiltration via Pre-Approved HuggingFace Domain in WebFetch known affected: 1 2026-07-07T15:37:40+00:00 Vulnerability · Source
CVE-2026-35397 redhat_vex jupyter-server: Jupyter Server: Unauthorized File Access via Path Traversal Vulnerability known affected: 14 known not affected: 2 2026-07-07T15:31:38+00:00 Vulnerability · Source
CVE-2026-44727 redhat_vex jupyter-server: Jupyter Server: Remote Code Execution via stored Cross-Site Scripting in nbconvert handlers known affected: 14 known not affected: 2 2026-07-07T15:31:02+00:00 Vulnerability · Source
CVE-2026-14620 redhat_vex webpack-dev-server: webpack-dev-server: Arbitrary file opening and denial of service via exposed developer endpoints known affected: 80 2026-07-07T15:29:46+00:00 Vulnerability · Source
CVE-2018-10902 redhat_vex kernel: MIDI driver race condition leads to a double-free fixed: 554 known affected: 1 known not affected: 41 2026-07-07T15:28:16+00:00 Vulnerability · Source
CVE-2026-38970 redhat_vex github.com/pdfcpu/pdfcpu: pdfcpu: Denial of Service via uncontrolled recursion in PDF parsing known not affected: 1 2026-07-07T15:17:54+00:00 Vulnerability · Source
CVE-2026-14534 redhat_vex fickling: python: fickling: Arbitrary code execution due to incomplete denylist in deserialization known affected: 5 2026-07-07T15:16:29+00:00 Vulnerability · Source
CVE-2026-54886 redhat_vex erlang: Erlang OTP ssh: Denial of Service via infinite loop in SFTP channel known affected: 41 2026-07-07T15:12:28+00:00 Vulnerability · Source
CVE-2026-41642 redhat_vex github.com/osrg/gobgp: golang: GoBGP: Denial of Service via malformed BGP UPDATE message known not affected: 1 2026-07-07T15:10:48+00:00 Vulnerability · Source
CVE-2026-42285 redhat_vex github.com/osrg/gobgp: golang: GoBGP: Denial of Service due to specially crafted BGP UPDATE message known not affected: 1 2026-07-07T15:10:07+00:00 Vulnerability · Source
CVE-2026-44628 redhat_vex DCMTK: DCMTK: Denial of Service via crafted query known not affected: 1 2026-07-07T15:08:50+00:00 Vulnerability · Source
CVE-2026-54891 redhat_vex erlang: Erlang SSL: Unauthenticated data injection during TLS handshake known affected: 41 2026-07-07T15:06:33+00:00 Vulnerability · Source
CVE-2026-55952 redhat_vex erlang: Erlang/OTP: Denial of Service in TLS 1.3 session ticket handling known affected: 41 2026-07-07T15:00:42+00:00 Vulnerability · Source
CVE-2026-14742 redhat_vex langgraph: Langgraph: Information Disclosure via Weak Hash in Task Result Cache known affected: 7 2026-07-07T14:40:01+00:00 Vulnerability · Source