Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%
Buy Us a Coffee

kernel — Vulnerabilities & Security Advisories 420

All 420 CVE vulnerabilities found in kernel, with AI-generated Chinese analysis, references, and POCs.

This page aggregates known weaknesses associated with the Linux Kernel operating system under the Common Weakness Enumeration taxonomy. It serves as a centralized reference for security researchers and system administrators tracking systemic flaws in this critical infrastructure component. The collection encompasses a wide spectrum of vulnerability types, including buffer overflows, race conditions, privilege escalation flaws, and memory corruption issues. The data spans from the early development stages of the kernel to recent stable releases, providing a comprehensive historical view of security regressions and fixes. This temporal breadth allows users to observe patterns in coding errors and the effectiveness of patch management over decades of software evolution. By utilizing this resource, you can track vendor-specific advisories issued by various Linux distributions and the core kernel maintainers. You can also gain a deeper understanding of specific weakness classes, such as CWE-119 or CWE-125, and see how they manifest within kernel subsystems like the networking stack, file systems, or device drivers. Additionally, the page enables you to look up a particular product’s vulnerability history, helping you assess the security posture of specific kernel versions. This structured approach facilitates better risk assessment and informed decision-making regarding updates and mitigations. The content is strictly technical and devoid of promotional material, focusing solely on factual security data to support rigorous analysis and defense planning.

Vendor: n/a

CVE IDTitleCVSSSeverityPublished
CVE-2025-26604 Possibility to retrieve bot token by malicious module developers in Discord-Bot-Framework-Kernel CWE-200 8.3 High2025-02-18
CVE-2021-35000 OpenBSD Kernel Multicast Routing Uninitialized Memory Information Disclosure Vulnerability CWE-908 5.5 -2024-05-07
CVE-2021-34999 OpenBSD Kernel Multicast Routing Uninitialized Memory Information Disclosure Vulnerability CWE-908 5.5 -2024-05-07
CVE-2021-34981 Linux Kernel Bluetooth CMTP Module Double Free Privilege Escalation Vulnerability CWE-415 6.7 -2024-05-07
CVE-2024-24898 Information Leakage in kernel CWE-200 6.0 Medium2024-04-15
CVE-2024-24891 Information Leakage in kernel CWE-200 6.0 Medium2024-04-15
CVE-2024-1312 Kernel: race condition leads to use after free during vma lock in lock_vma_under_rcu CWE-416 5.1 Medium2024-02-08
CVE-2024-1086 Use-after-free in Linux kernel's netfilter: nf_tables component CWE-416 7.8 High2024-01-31
CVE-2024-1085 Use-after-free in Linux kernel's netfilter: nf_tables component CWE-416 7.8 High2024-01-31
CVE-2023-6200 Kernel: icmpv6 router advertisement packets, aka linux tcp/ip remote code execution vulnerability CWE-362 7.5 High2024-01-28
CVE-2021-33631 Kernel crash in EXT4 filesystem CWE-190 5.5 Medium2024-01-18
CVE-2021-33630 NULL-ptr-deref in network sched CWE-476 5.5 Medium2024-01-18
CVE-2023-6932 Use-after-free in Linux kernel's ipv4: igmp component CWE-416 7.8 High2023-12-19
CVE-2023-6931 Out-of-bounds write in Linux kernel's Performance Events system component CWE-787 7.8 High2023-12-19
CVE-2023-6817 Use-after-free in Linux kernel's netfilter: nf_tables component CWE-416 7.8 High2023-12-18
CVE-2023-6560 Kernel: io_uring out of boundary memory access in __io_uaddr_map() CWE-823 5.5 Medium2023-12-08
CVE-2023-5972 Kernel: the nfta_inner_num and nfta_expr_name netlink attributes accessed without checking its presence in nft_inner.c CWE-476 7.0 High2023-11-23
CVE-2023-6238 Kernel: nvme: memory corruption via unprivileged user passthrough CWE-120 6.7 Medium2023-11-21
CVE-2023-6111 Use-after-free in Linux kernel's netfilter: nf_tables component CWE-416 7.8 High2023-11-14
CVE-2023-6039 Kernel: use-after-free in drivers/net/usb/lan78xx.c in lan78xx_disconnect CWE-416 5.5 Medium2023-11-09
CVE-2023-1194 Use-after-free in parse_lease_state() CWE-416 7.1 High2023-11-03
CVE-2023-1193 Use-after-free in setup_async_work() CWE-416 6.5 Medium2023-11-01
CVE-2023-1192 Use-after-free in smb2_is_status_io_timeout() CWE-416 6.5 Medium2023-11-01
CVE-2023-5717 Out-of-bounds write in Linux kernel's Linux Kernel Performance Events (perf) component CWE-787 7.8 High2023-10-25
CVE-2023-42752 Kernel: integer overflow in igmpv3_newpack leading to exploitable memory access CWE-190 5.5 Medium2023-10-13
CVE-2023-5345 Use-after-free in Linux kernel's fs/smb/client component CWE-416 7.8 High2023-10-03
CVE-2023-5197 Use-after-free in Linux kernel's netfilter: nf_tables component CWE-416 7.8 High2023-09-26
CVE-2023-5158 Possible dos from guest to host invringh_kiov_advance in vhost driver at drivers/vhost/vringh.c CWE-684 6.5 Medium2023-09-25
CVE-2023-4155 Sev-es / sev-snp vmgexit double fetch vulnerability CWE-367 5.3 Medium2023-09-13
CVE-2023-4921 Use-after-free in Linux kernel's net/sched: sch_qfq component CWE-416 7.8 High2023-09-12

All 420 known CVE vulnerabilities affecting kernel with full Chinese analysis, references, and POCs where available.