Vulnerabilidades explotables hoy
349,195en la vista actual
Score único combinando CVSS, membresía KEV y EPSS. Cada CVE con su ficha propia — timeline desde publicación hasta explotación activa.
En catálogo KEV1,644
Nuevos KEV · 24H0
Exploit Today ≥ 701,579
Distribución · última ventana
- Crítico1,298
- Alto4,252
- Medio3,575
- Bajo277
Ventana
Severidad
Filtros
CVECVSSEPSSKEVRExplotTítuloVis.
CVE-2025-47365—0.2%
——0——CVE-2025-20803—0.2%
——0——CVE-2024-32919—0.2%
——0——CVE-2023-42637—0.2%
——0——CVE-2023-38458—0.2%
——0——CVE-2023-38459—0.2%
——0——CVE-2023-42636—0.2%
——0——CVE-2026-43529—0.2%
——0——CVE-2024-49842—0.2%
——0——CVE-2017-13316—0.2%
——0——CVE-2023-38444—0.2%
——0——CVE-2025-48576—0.2%
——0——CVE-2023-38443—0.2%
——0——CVE-2025-48603—0.2%
——0——CVE-2026-11035—0.2%
——0——CVE-2026-41976—0.2%
——0——CVE-2025-58314—0.2%
——0——CVE-2023-38452—0.2%
——0——CVE-2025-48538—0.2%
——0——CVE-2023-38451—0.2%
——0——CVE-2025-36906—0.2%
——0——CVE-2024-32922—0.2%
——0——CVE-2023-42632—0.2%
——0——CVE-2024-39435—0.2%
——0——CVE-2025-59614—0.2%
——0——CVE-2025-36900—0.2%
——0——CVE-2023-38450—0.2%
——0——CVE-2025-48627—0.2%
——0——CVE-2026-24921—0.2%
——0——CVE-2026-41984—0.2%
——0——CVE-2023-40649—0.2%
——0——CVE-2026-41962—0.1%
——0——CVE-2026-41973—0.2%
——0——CVE-2026-34859—0.2%
——0——CVE-2025-20636—0.2%
——0——CVE-2024-14024—0.2%
——0——CVE-2026-20427—0.2%
——0——CVE-2023-40637—0.2%
——0——CVE-2025-66324—0.2%
——0——CVE-2026-530084.7 MED0.2%
——0In the Linux kernel, the following vulnerability has been resolved:
ice: fix race condition in TX timestamp ring cleanup
Fix a race condition between ice_free_tx_tstamp_ring() and ice_tx_map()
that can cause a NULL pointer dereference.
ice_free_tx_tstamp_ring currently clears the ICE_TX_FLAGS_TXTIME flag
after NULLing the tstamp_ring. This could allow a concurrent ice_tx_map
call on another CPU to dereference the tstamp_ring, which could lead to
a NULL pointer dereference.
CPU A:ice_free_tx_tstamp_ring() | CPU B:ice_tx_map()
--------------------------------|---------------------------------
tx_ring->tstamp_ring = NULL |
| ice_is_txtime_cfg() -> true
| tstamp_ring = tx_ring->tstamp_ring
| tstamp_ring->count // NULL deref!
flags &= ~ICE_TX_FLAGS_TXTIME |
Fix by:
1. Reordering ice_free_tx_tstamp_ring() to clear the flag before
NULLing the pointer, with smp_wmb() to ensure proper ordering.
2. Adding smp_rmb() in ice_tx_map() after the flag check to order the
flag read before the pointer read, using READ_ONCE() for the
pointer, and adding a NULL check as a safety net.
3. Converting tx_ring->flags from u8 to DECLARE_BITMAP() and using
atomic bitops (set_bit(), clear_bit(), test_bit()) for all flag
operations throughout the driver:
- ICE_TX_RING_FLAGS_XDP
- ICE_TX_RING_FLAGS_VLAN_L2TAG1
- ICE_TX_RING_FLAGS_VLAN_L2TAG2
- ICE_TX_RING_FLAGS_TXTIME3d