CVE-2026-23240 tls: Fix race condition in tls_sw_cancel_work_tx()

Information published.


CVE-2026-23239 espintcp: Fix race condition in espintcp_close()

Information published.


CVE-2026-23868

Information published.


CVE-2026-25679 Incorrect parsing of IPv6 host literals in net/url

Information published.


Chromium: CVE-2026-3537 Object lifecycle issue in PowerVR

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2021) for more information.


CVE-2026-26148 Microsoft Azure AD SSH Login extension for Linux Elevation of Privilege Vulnerability

Acknowledgement Updated


CVE-2026-24293 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

Acknowledgement added. This is an informational change only.


CVE-2026-3784 wrong proxy connection reuse with credentials

Information published.


CVE-2026-1965 bad reuse of HTTP Negotiate connection

Information published.


CVE-2026-3783 token leak with redirect and netrc

Information published.


This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

AbuseIPDB Contributor Badge