VEX records
Browse vendor VEX statements available in this Vulnerability-Lookup instance and pivot to the related vulnerability.
221785 VEX records
API response| Vulnerability | Source | Title | Product status | Imported | Links |
|---|---|---|---|---|---|
| CVE-2026-53315 | redhat_vex | kernel: drm/amd/ras: Fix NULL deref in ras_core_get_utc_second_timestamp() | known not affected: 274 | 2026-07-06T20:44:32+00:00 | Vulnerability · Source |
| CVE-2026-53313 | redhat_vex | kernel: drm/amd/display: Avoid NULL dereference in dc_dmub_srv error paths | known not affected: 274 | 2026-07-06T20:44:29+00:00 | Vulnerability · Source |
| CVE-2026-53306 | redhat_vex | kernel: tty: hvc_iucv: fix off-by-one in number of supported devices | known affected: 260 known not affected: 14 | 2026-07-06T20:44:24+00:00 | Vulnerability · Source |
| CVE-2026-53325 | redhat_vex | kernel: agp/amd64: Fix broken error propagation in agp_amd64_probe() | known affected: 42 known not affected: 232 | 2026-07-06T20:30:18+00:00 | Vulnerability · Source |
| CVE-2026-53324 | redhat_vex | kernel: net: mana: Use pci_name() for debugfs directory naming | known affected: 184 known not affected: 90 | 2026-07-06T20:30:17+00:00 | Vulnerability · Source |
| CVE-2026-53168 | redhat_vex | kernel: fuse: reject fuse_notify() pagecache ops on directories | known affected: 232 known not affected: 42 | 2026-07-06T20:30:04+00:00 | Vulnerability · Source |
| CVE-2026-53167 | redhat_vex | kernel: fuse: limit FUSE_NOTIFY_RETRIEVE to uptodate folios | known affected: 274 | 2026-07-06T20:29:56+00:00 | Vulnerability · Source |
| CVE-2026-53323 | redhat_vex | kernel: net: dsa: remove redundant netdev_lock_ops() from conduit ethtool ops | known not affected: 274 | 2026-07-06T20:29:52+00:00 | Vulnerability · Source |
| CVE-2026-53321 | redhat_vex | kernel: io_uring/napi: cap busy_poll_to 10 msec | known affected: 184 known not affected: 90 | 2026-07-06T20:29:51+00:00 | Vulnerability · Source |
| CVE-2026-53318 | redhat_vex | kernel: wifi: mt76: mt7925: prevent NULL pointer dereference in mt7925_tx_check_aggr() | known affected: 184 known not affected: 90 | 2026-07-06T20:29:46+00:00 | Vulnerability · Source |
| CVE-2026-59089 | redhat_vex | gimp: GIMP: Denial of service via integer overflow in PlayStation TIM loader | known affected: 32 | 2026-07-06T20:16:09+00:00 | Vulnerability · Source |
| CVE-2026-13769 | redhat_vex | aws-cli: AWS CLI: Information disclosure via overly permissive file permissions | known affected: 2 | 2026-07-06T19:52:03+00:00 | Vulnerability · Source |
| CVE-2026-14758 | redhat_vex | radare2: radare2: Denial of Service via integer overflow in hexpairs parser | known not affected: 1 | 2026-07-06T19:38:31+00:00 | Vulnerability · Source |
| CVE-2026-14761 | redhat_vex | radare2: Radare2: Denial of service via integer overflow in string manipulation functions | known not affected: 1 | 2026-07-06T19:38:30+00:00 | Vulnerability · Source |
| CVE-2026-14786 | redhat_vex | radare2: Radare2: Denial of Service via integer overflow | known not affected: 1 | 2026-07-06T19:38:29+00:00 | Vulnerability · Source |
| CVE-2026-14787 | redhat_vex | radare2: radare2: Denial of service via integer overflow in print command handler | known not affected: 1 | 2026-07-06T19:38:29+00:00 | Vulnerability · Source |
| CVE-2026-14789 | redhat_vex | radare2: radare2: Denial of Service via stack-based buffer overflow in Memory64ListStream Parser | known not affected: 1 | 2026-07-06T19:38:28+00:00 | Vulnerability · Source |
| CVE-2026-53177 | redhat_vex | kernel: bnxt_en: Fix NULL pointer dereference | known affected: 260 known not affected: 14 | 2026-07-06T19:38:27+00:00 | Vulnerability · Source |
| CVE-2026-53149 | redhat_vex | kernel: thunderbolt: Bound root directory content to block size | known not affected: 274 | 2026-07-06T19:38:07+00:00 | Vulnerability · Source |
| CVE-2026-53150 | redhat_vex | kernel: thunderbolt: Reject zero-length property entries in validator | known not affected: 274 | 2026-07-06T19:37:47+00:00 | Vulnerability · Source |
| CVE-2026-54235 | redhat_vex | vllm: vLLM: Denial of Service due to improper floating-point validation | fixed: 3 known affected: 18 known not affected: 4 | 2026-07-06T19:36:03+00:00 | Vulnerability · Source |
| CVE-2026-31669 | redhat_vex | kernel: mptcp: fix slab-use-after-free in __inet_lookup_established | fixed: 1980 known affected: 22 known not affected: 42 | 2026-07-06T19:35:23+00:00 | Vulnerability · Source |
| CVE-2026-22990 | redhat_vex | kernel: libceph: replace overzealous BUG_ON in osdmap_apply_incremental() | fixed: 1364 known affected: 126 known not affected: 14 | 2026-07-06T19:35:15+00:00 | Vulnerability · Source |
| CVE-2026-22984 | redhat_vex | kernel: libceph: prevent potential out-of-bounds reads in handle_auth_done() | fixed: 1364 known affected: 98 known not affected: 42 | 2026-07-06T19:35:13+00:00 | Vulnerability · Source |
| CVE-2025-71116 | redhat_vex | kernel: libceph: make decode_pool() more resilient against corrupted osdmaps | fixed: 1364 known affected: 126 known not affected: 14 | 2026-07-06T19:35:11+00:00 | Vulnerability · Source |
| CVE-2023-24539 | redhat_vex | golang: html/template: improper sanitization of CSS values | fixed: 1653 known affected: 48 known not affected: 1106 under investigation: 1 | 2026-07-06T19:22:22+00:00 | Vulnerability · Source |
| CVE-2026-41523 | redhat_vex | vllm: vLLM: Arbitrary code execution via malicious HuggingFace model | fixed: 3 known affected: 11 known not affected: 11 | 2026-07-06T19:09:48+00:00 | Vulnerability · Source |
| CVE-2026-34982 | redhat_vex | vim: arbitrary command execution via modeline sandbox bypass | fixed: 641 known affected: 13 known not affected: 111 | 2026-07-06T19:09:46+00:00 | Vulnerability · Source |
| CVE-2026-34756 | redhat_vex | vllm: vLLM: Denial of Service via excessively large 'n' parameter in OpenAI-compatible API | fixed: 3 known affected: 18 | 2026-07-06T19:09:42+00:00 | Vulnerability · Source |
| CVE-2026-34755 | redhat_vex | vLLM: vLLM: Denial of Service due to excessive video frame processing | fixed: 3 known affected: 18 | 2026-07-06T19:09:39+00:00 | Vulnerability · Source |
| CVE-2026-26740 | redhat_vex | giflib: giflib: Denial of Service via buffer overflow in EGifGCBToExtension | fixed: 294 known affected: 3 known not affected: 240 | 2026-07-06T19:09:26+00:00 | Vulnerability · Source |
| CVE-2026-45852 | redhat_vex | kernel: RDMA/rxe: Fix double free in rxe_srq_from_init | fixed: 1256 known affected: 33 known not affected: 90 | 2026-07-06T19:04:14+00:00 | Vulnerability · Source |
| CVE-2026-43329 | redhat_vex | kernel: netfilter: flowtable: strictly check for maximum number of actions | fixed: 1980 known affected: 23 known not affected: 43 | 2026-07-06T19:04:05+00:00 | Vulnerability · Source |
| CVE-2026-53156 | redhat_vex | kernel: nvmem: core: fix use-after-free bugs in error paths | known affected: 184 known not affected: 90 | 2026-07-06T17:14:18+00:00 | Vulnerability · Source |
| CVE-2026-57204 | redhat_vex | pypdf: pypdf: Denial of Service via crafted PDF with missing stream length | known affected: 11 | 2026-07-06T16:47:31+00:00 | Vulnerability · Source |
| CVE-2026-50734 | redhat_vex | Apache ActiveMQ Client: Apache ActiveMQ: Apache ActiveMQ All: Apache ActiveMQ: Denial of Service via crafted WireFormatInfo frame | known affected: 90 known not affected: 31 | 2026-07-06T16:46:49+00:00 | Vulnerability · Source |
| CVE-2026-38969 | redhat_vex | webrick: rubygem-webrick: WEBrick: Request smuggling via re-parsing of Content-Length header | fixed: 4 known affected: 8 | 2026-07-06T16:32:04+00:00 | Vulnerability · Source |
| CVE-2026-53441 | redhat_vex | jenkins: Jenkins: Stored Cross-Site Scripting (XSS) via unescaped user-provided description | known affected: 1 | 2026-07-06T16:32:02+00:00 | Vulnerability · Source |
| CVE-2026-53129 | redhat_vex | kernel: fs/mbcache: cancel shrink work before destroying the cache | known affected: 246 known not affected: 28 | 2026-07-06T15:59:42+00:00 | Vulnerability · Source |
| CVE-2026-56132 | redhat_vex | expat: libexpat: Arbitrary Code Execution via Heap-based Buffer Overflow | fixed: 3 known affected: 22 under investigation: 8 | 2026-07-06T15:24:28+00:00 | Vulnerability · Source |
| CVE-2026-56412 | redhat_vex | libexpat: libexpat: Use-after-free vulnerability due to improper handling of XML CDATA sections | known affected: 22 | 2026-07-06T15:24:24+00:00 | Vulnerability · Source |
| CVE-2026-50219 | redhat_vex | expat: libexpat: Use-after-free vulnerability due to improper handler call depth tracking | fixed: 3 known affected: 22 | 2026-07-06T15:24:21+00:00 | Vulnerability · Source |
| CVE-2025-54518 | redhat_vex | kernel: xen: AMD Zen 2 Processors: Privilege escalation via improper CPU cache isolation | known affected: 261 known not affected: 16 | 2026-07-06T15:23:32+00:00 | Vulnerability · Source |
| CVE-2026-53140 | redhat_vex | kernel: drm/v3d: Fix vaddr leak when indirect CSD has zeroed workgroups | known not affected: 274 | 2026-07-06T15:14:10+00:00 | Vulnerability · Source |
| CVE-2026-55180 | redhat_vex | pnpm: pacquet: pnpm and pacquet: Information disclosure of environment secrets via improper environment variable expansion | known affected: 4 | 2026-07-06T15:10:18+00:00 | Vulnerability · Source |
| CVE-2026-50573 | redhat_vex | pnpm: pnpm: Package integrity check bypass allows installation of malicious content | known affected: 4 | 2026-07-06T15:10:17+00:00 | Vulnerability · Source |
| CVE-2026-43133 | redhat_vex | kernel: KVM: nSVM: Always use vmcb01 in VMLOAD/VMSAVE emulation | known affected: 233 known not affected: 43 | 2026-07-06T15:09:18+00:00 | Vulnerability · Source |
| CVE-2026-50020 | redhat_vex | netty-codec-http: Netty: Data manipulation via request-boundary confusion in HttpObjectDecoder | fixed: 2 known affected: 45 known not affected: 9 | 2026-07-06T15:07:45+00:00 | Vulnerability · Source |
| CVE-2026-50017 | redhat_vex | pnpm: pnpm: Information disclosure of authentication credentials via malicious .npmrc file | known affected: 4 | 2026-07-06T15:07:38+00:00 | Vulnerability · Source |
| CVE-2026-50014 | redhat_vex | pnpm: pnpm: Arbitrary Code Execution via Malicious Lockfile | known affected: 4 | 2026-07-06T15:07:36+00:00 | Vulnerability · Source |