CVE-2026-31761
In the Linux kernel, the following vulnerability has been resolved: iio: gyro: mpu3050: Move iio_device_register() to correct location iio
CVSS
7.8
High
EPSS
0.1%
p1
KEV
—
Exploit Today
0
0-100
Published: May 1, 2026 · Last modified: Jul 14, 2026 · CWE-362
0.1%EPSS · 30 days0.1%
2026-06-302026-07-16
In the Linux kernel, the following vulnerability has been resolved: iio: gyro: mpu3050: Move iio_device_register() to correct location iio_device_register() should be at the end of the probe function to prevent race conditions. Place iio_device_register() at the end of the probe function and place iio_device_unregister() accordingly.
- git.kernel.orghttps://git.kernel.org/stable/c/051ca43b0e0e4b66bfd349cd53ccf231ad1d69b7
- git.kernel.orghttps://git.kernel.org/stable/c/22487ef85f6dd9499ddf49b85a08afc50a3f1992
- git.kernel.orghttps://git.kernel.org/stable/c/2a4537653d200fda2a8516083459f8ff6194f8fc
- git.kernel.orghttps://git.kernel.org/stable/c/4c05799449108fb0e0a6bd30e65fffc71e60db4d
- git.kernel.orghttps://git.kernel.org/stable/c/59a317f8215674c8330817770497301bfb2c1b99
- git.kernel.orghttps://git.kernel.org/stable/c/92f18aa86302fe83e0726a1191015f427d4ff056
- git.kernel.orghttps://git.kernel.org/stable/c/caec338f91469f0a70b68165185afa3abc994545
- git.kernel.orghttps://git.kernel.org/stable/c/cc3de12a5612ee25df7fb549cb7b3e4cc8bfaf9c
- cert-portal.siemens.comhttps://cert-portal.siemens.com/productcert/html/ssa-019113.html
- cert-portal.siemens.comhttps://cert-portal.siemens.com/productcert/html/ssa-082556.html
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2022-250908.1 HIG95.4%
——29Printix Secure Cloud Print Management through 1.3.1106.0 creates a temporary temp.ini file in a directory with insecure permissions, leading to privilege escalation because of a race condition.8dCVE-2026-506677.8 HIG80.1%
——24Concurrent execution using shared resource with improper synchronization ('race condition') in Windows NTFS allows an authorized attacker to elevate privileges locally.22hCVE-2026-59477.5 HIG69.1%
——21Undefined behavior may result due to a race condition leading to a use-after-free violation. If BIND receives an incoming DNS message signed with SIG(0), it begins work to validate that signature. If, during that validation, the "recursive-clients" limit is reached (as would occur during a query flood), and that same DNS message is discarded per the limit, there is a brief window of time while the SIG(0) validation may attempt to read the now-discarded DNS message.
This issue affects BIND 9 versions 9.20.0 through 9.20.22, 9.21.0 through 9.21.21, and 9.20.9-S1 through 9.20.22-S1.
BIND 9 versions 9.18.28 through 9.18.49 and 9.18.28-S1 through 9.18.49-S1 are NOT affected.2dCVE-2026-561889.8 CRI58.8%
——18Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Server Network driver allows an unauthorized attacker to execute code over a network.2dCVE-2026-503698.8 HIG47.1%
——14Use after free in Windows Remote Desktop Services allows an authorized attacker to elevate privileges over a network.2dCVE-2026-566495.9 MED46.6%
——14Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Network File System allows an unauthorized attacker to execute code over a network.2d