Vulnerability-Lookup

CVE-2026-31664 (GCVE-0-2026-31664)

Vulnerability from cvelistv5 – Published: 2026-04-24 14:45 – Updated: 2026-04-24 14:45

Title

xfrm: clear trailing padding in build_polexpire()

Summary

In the Linux kernel, the following vulnerability has been resolved: xfrm: clear trailing padding in build_polexpire() build_expire() clears the trailing padding bytes of struct xfrm_user_expire after setting the hard field via memset_after(), but the analogous function build_polexpire() does not do this for struct xfrm_user_polexpire. The padding bytes after the __u8 hard field are left uninitialized from the heap allocation, and are then sent to userspace via netlink multicast to XFRMNLGRP_EXPIRE listeners, leaking kernel heap memory contents. Add the missing memset_after() call, matching build_expire().

Severity ?

No CVSS data available.

Assigner

Linux

References

URL

Tags

	https://git.kernel.org/stable/c/ac6985903db047eaf…
	https://git.kernel.org/stable/c/c221ed63a2769a0af…
	https://git.kernel.org/stable/c/eda30846ea54f8ed2…
	https://git.kernel.org/stable/c/b1dfd6b27df35ef4f…
	https://git.kernel.org/stable/c/e1af65c669ebb1666…
	https://git.kernel.org/stable/c/71a98248c63c535ea…

Impacted products

Vendor

Product

Version

Linux

Affected: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 , < ac6985903db047eaff54db929e4bf6b06782788e (git)
Affected: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 , < c221ed63a2769a0af8bd849dfe25740048f34ef4 (git)
Affected: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 , < eda30846ea54f8ed218468e5480c8305ca645e37 (git)
Affected: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 , < b1dfd6b27df35ef4f87825aa5f607378d23ff0f2 (git)
Affected: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 , < e1af65c669ebb1666c54576614c01a7f9ffcfff6 (git)
Affected: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 , < 71a98248c63c535eaa4d4c22f099b68d902006d0 (git)

Linux

Affected: 2.6.12
Unaffected: 0 , < 2.6.12 (semver)
Unaffected: 6.1.169 , ≤ 6.1.* (semver)
Unaffected: 6.6.135 , ≤ 6.6.* (semver)
Unaffected: 6.12.82 , ≤ 6.12.* (semver)
Unaffected: 6.18.23 , ≤ 6.18.* (semver)
Unaffected: 6.19.13 , ≤ 6.19.* (semver)
Unaffected: 7.0 , ≤ * (original_commit_for_fix)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "net/xfrm/xfrm_user.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "ac6985903db047eaff54db929e4bf6b06782788e",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "c221ed63a2769a0af8bd849dfe25740048f34ef4",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "eda30846ea54f8ed218468e5480c8305ca645e37",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "b1dfd6b27df35ef4f87825aa5f607378d23ff0f2",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "e1af65c669ebb1666c54576614c01a7f9ffcfff6",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "71a98248c63c535eaa4d4c22f099b68d902006d0",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "net/xfrm/xfrm_user.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "2.6.12"
            },
            {
              "lessThan": "2.6.12",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.169",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.135",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.12.*",
              "status": "unaffected",
              "version": "6.12.82",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.18.*",
              "status": "unaffected",
              "version": "6.18.23",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.19.*",
              "status": "unaffected",
              "version": "6.19.13",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "7.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.169",
                  "versionStartIncluding": "2.6.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.135",
                  "versionStartIncluding": "2.6.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.12.82",
                  "versionStartIncluding": "2.6.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.18.23",
                  "versionStartIncluding": "2.6.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.19.13",
                  "versionStartIncluding": "2.6.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "7.0",
                  "versionStartIncluding": "2.6.12",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nxfrm: clear trailing padding in build_polexpire()\n\nbuild_expire() clears the trailing padding bytes of struct\nxfrm_user_expire after setting the hard field via memset_after(),\nbut the analogous function build_polexpire() does not do this for\nstruct xfrm_user_polexpire.\n\nThe padding bytes after the __u8 hard field are left\nuninitialized from the heap allocation, and are then sent to\nuserspace via netlink multicast to XFRMNLGRP_EXPIRE listeners,\nleaking kernel heap memory contents.\n\nAdd the missing memset_after() call, matching build_expire()."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-04-24T14:45:13.922Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/ac6985903db047eaff54db929e4bf6b06782788e"
        },
        {
          "url": "https://git.kernel.org/stable/c/c221ed63a2769a0af8bd849dfe25740048f34ef4"
        },
        {
          "url": "https://git.kernel.org/stable/c/eda30846ea54f8ed218468e5480c8305ca645e37"
        },
        {
          "url": "https://git.kernel.org/stable/c/b1dfd6b27df35ef4f87825aa5f607378d23ff0f2"
        },
        {
          "url": "https://git.kernel.org/stable/c/e1af65c669ebb1666c54576614c01a7f9ffcfff6"
        },
        {
          "url": "https://git.kernel.org/stable/c/71a98248c63c535eaa4d4c22f099b68d902006d0"
        }
      ],
      "title": "xfrm: clear trailing padding in build_polexpire()",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2026-31664",
    "datePublished": "2026-04-24T14:45:13.922Z",
    "dateReserved": "2026-03-09T15:48:24.129Z",
    "dateUpdated": "2026-04-24T14:45:13.922Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2026-31664",
      "date": "2026-05-05",
      "epss": "0.00013",
      "percentile": "0.02278"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2026-31664\",\"sourceIdentifier\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"published\":\"2026-04-24T15:16:46.043\",\"lastModified\":\"2026-04-27T19:59:44.497\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In the Linux kernel, the following vulnerability has been resolved:\\n\\nxfrm: clear trailing padding in build_polexpire()\\n\\nbuild_expire() clears the trailing padding bytes of struct\\nxfrm_user_expire after setting the hard field via memset_after(),\\nbut the analogous function build_polexpire() does not do this for\\nstruct xfrm_user_polexpire.\\n\\nThe padding bytes after the __u8 hard field are left\\nuninitialized from the heap allocation, and are then sent to\\nuserspace via netlink multicast to XFRMNLGRP_EXPIRE listeners,\\nleaking kernel heap memory contents.\\n\\nAdd the missing memset_after() call, matching build_expire().\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"2.6.12.1\",\"versionEndExcluding\":\"6.1.169\",\"matchCriteriaId\":\"2FCFBA57-878B-4D11-8528-850CE9FB4CB7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.2\",\"versionEndExcluding\":\"6.6.135\",\"matchCriteriaId\":\"15C1A1B2-14EE-494C-AF3E-D5A7BA640B39\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.7\",\"versionEndExcluding\":\"6.12.82\",\"matchCriteriaId\":\"02904CAE-71D2-45B3-9EC3-F6A9D18B6307\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.13\",\"versionEndExcluding\":\"6.18.23\",\"matchCriteriaId\":\"E9E09FDD-9EE3-4A56-92E2-2B30AFD0072F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.19\",\"versionEndExcluding\":\"6.19.13\",\"matchCriteriaId\":\"1490EF9B-9080-481C-8D22-1306AAE664E4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.12:-:*:*:*:*:*:*\",\"matchCriteriaId\":\"6F62EECE-8FB1-4D57-85D8-CB9E23CF313C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.12:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"4F76C298-81DC-43E4-8FC9-DC005A2116EF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.12:rc3:*:*:*:*:*:*\",\"matchCriteriaId\":\"0AB349B2-3F78-4197-882B-90ADB3BF645A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.12:rc4:*:*:*:*:*:*\",\"matchCriteriaId\":\"6AC88830-A9BC-4607-B572-A4B502FC9FD0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.12:rc5:*:*:*:*:*:*\",\"matchCriteriaId\":\"476CB3A5-D022-4F13-AAEF-CB6A5785516A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:7.0:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"F253B622-8837-4245-BCE5-A7BF8FC76A16\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:7.0:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"4AE85AD8-4641-4E7C-A2F4-305E2CD9EE64\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:7.0:rc3:*:*:*:*:*:*\",\"matchCriteriaId\":\"F666C8D8-6538-46D4-B318-87610DE64C34\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:7.0:rc4:*:*:*:*:*:*\",\"matchCriteriaId\":\"02259FDA-961B-47BC-AE7F-93D7EC6E90C2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:7.0:rc5:*:*:*:*:*:*\",\"matchCriteriaId\":\"58A9FEFF-C040-420D-8F0A-BFDAAA1DF258\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:7.0:rc6:*:*:*:*:*:*\",\"matchCriteriaId\":\"1D2315C0-D46F-4F85-9754-F9E5E11374A6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:7.0:rc7:*:*:*:*:*:*\",\"matchCriteriaId\":\"512EE3A8-A590-4501-9A94-5D4B268D6138\"}]}]}],\"references\":[{\"url\":\"https://git.kernel.org/stable/c/71a98248c63c535eaa4d4c22f099b68d902006d0\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/ac6985903db047eaff54db929e4bf6b06782788e\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/b1dfd6b27df35ef4f87825aa5f607378d23ff0f2\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/c221ed63a2769a0af8bd849dfe25740048f34ef4\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/e1af65c669ebb1666c54576614c01a7f9ffcfff6\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/eda30846ea54f8ed218468e5480c8305ca645e37\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]}]}}"
  }
}

MSRC_CVE-2026-31664

Vulnerability from csaf_microsoft - Published: 2026-04-02 00:00 - Updated: 2026-05-01 14:44

Summary

xfrm: clear trailing padding in build_polexpire()

Notes

Additional Resources: To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle

Disclaimer: The information provided in the Microsoft Knowledge Base is provided \"as is\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.

CVE-2026-31664

None Available There is no fix available for this vulnerability as of now

Vendor Fix 0:6.6.137.1-1.azl3:Security Update:https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade https://learn.microsoft.com/en-us/azure/azure-lin…

References

URL

GHSA-5FVV-6WPC-9MR7

Vulnerability from github – Published: 2026-04-24 15:32 – Updated: 2026-04-27 21:30

Details

In the Linux kernel, the following vulnerability has been resolved:

xfrm: clear trailing padding in build_polexpire()

build_expire() clears the trailing padding bytes of struct xfrm_user_expire after setting the hard field via memset_after(), but the analogous function build_polexpire() does not do this for struct xfrm_user_polexpire.

The padding bytes after the __u8 hard field are left uninitialized from the heap allocation, and are then sent to userspace via netlink multicast to XFRMNLGRP_EXPIRE listeners, leaking kernel heap memory contents.

Add the missing memset_after() call, matching build_expire().

Severity ?

5.5 (Medium)


                  
                    CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2026-31664"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2026-04-24T15:16:46Z",
    "severity": "MODERATE"
  },
  "details": "In the Linux kernel, the following vulnerability has been resolved:\n\nxfrm: clear trailing padding in build_polexpire()\n\nbuild_expire() clears the trailing padding bytes of struct\nxfrm_user_expire after setting the hard field via memset_after(),\nbut the analogous function build_polexpire() does not do this for\nstruct xfrm_user_polexpire.\n\nThe padding bytes after the __u8 hard field are left\nuninitialized from the heap allocation, and are then sent to\nuserspace via netlink multicast to XFRMNLGRP_EXPIRE listeners,\nleaking kernel heap memory contents.\n\nAdd the missing memset_after() call, matching build_expire().",
  "id": "GHSA-5fvv-6wpc-9mr7",
  "modified": "2026-04-27T21:30:50Z",
  "published": "2026-04-24T15:32:37Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-31664"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/71a98248c63c535eaa4d4c22f099b68d902006d0"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/ac6985903db047eaff54db929e4bf6b06782788e"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/b1dfd6b27df35ef4f87825aa5f607378d23ff0f2"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/c221ed63a2769a0af8bd849dfe25740048f34ef4"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/e1af65c669ebb1666c54576614c01a7f9ffcfff6"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/eda30846ea54f8ed218468e5480c8305ca645e37"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
      "type": "CVSS_V3"
    }
  ]
}

FKIE_CVE-2026-31664

Vulnerability from fkie_nvd - Published: 2026-04-24 15:16 - Updated: 2026-04-27 19:59

Severity ?

5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Summary

References

URL	Tags
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/71a98248c63c535eaa4d4c22f099b68d902006d0	Patch
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/ac6985903db047eaff54db929e4bf6b06782788e	Patch
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/b1dfd6b27df35ef4f87825aa5f607378d23ff0f2	Patch
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/c221ed63a2769a0af8bd849dfe25740048f34ef4	Patch
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/e1af65c669ebb1666c54576614c01a7f9ffcfff6	Patch
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/eda30846ea54f8ed218468e5480c8305ca645e37	Patch

Impacted products

Vendor	Product	Version
linux	linux_kernel	*
linux	linux_kernel	*
linux	linux_kernel	*
linux	linux_kernel	*
linux	linux_kernel	*
linux	linux_kernel	2.6.12
linux	linux_kernel	2.6.12
linux	linux_kernel	2.6.12
linux	linux_kernel	2.6.12
linux	linux_kernel	2.6.12
linux	linux_kernel	7.0
linux	linux_kernel	7.0
linux	linux_kernel	7.0
linux	linux_kernel	7.0
linux	linux_kernel	7.0
linux	linux_kernel	7.0
linux	linux_kernel	7.0

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "2FCFBA57-878B-4D11-8528-850CE9FB4CB7",
              "versionEndExcluding": "6.1.169",
              "versionStartIncluding": "2.6.12.1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "15C1A1B2-14EE-494C-AF3E-D5A7BA640B39",
              "versionEndExcluding": "6.6.135",
              "versionStartIncluding": "6.2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "02904CAE-71D2-45B3-9EC3-F6A9D18B6307",
              "versionEndExcluding": "6.12.82",
              "versionStartIncluding": "6.7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "E9E09FDD-9EE3-4A56-92E2-2B30AFD0072F",
              "versionEndExcluding": "6.18.23",
              "versionStartIncluding": "6.13",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "1490EF9B-9080-481C-8D22-1306AAE664E4",
              "versionEndExcluding": "6.19.13",
              "versionStartIncluding": "6.19",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.12:-:*:*:*:*:*:*",
              "matchCriteriaId": "6F62EECE-8FB1-4D57-85D8-CB9E23CF313C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.12:rc2:*:*:*:*:*:*",
              "matchCriteriaId": "4F76C298-81DC-43E4-8FC9-DC005A2116EF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.12:rc3:*:*:*:*:*:*",
              "matchCriteriaId": "0AB349B2-3F78-4197-882B-90ADB3BF645A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.12:rc4:*:*:*:*:*:*",
              "matchCriteriaId": "6AC88830-A9BC-4607-B572-A4B502FC9FD0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.12:rc5:*:*:*:*:*:*",
              "matchCriteriaId": "476CB3A5-D022-4F13-AAEF-CB6A5785516A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:7.0:rc1:*:*:*:*:*:*",
              "matchCriteriaId": "F253B622-8837-4245-BCE5-A7BF8FC76A16",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:7.0:rc2:*:*:*:*:*:*",
              "matchCriteriaId": "4AE85AD8-4641-4E7C-A2F4-305E2CD9EE64",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:7.0:rc3:*:*:*:*:*:*",
              "matchCriteriaId": "F666C8D8-6538-46D4-B318-87610DE64C34",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:7.0:rc4:*:*:*:*:*:*",
              "matchCriteriaId": "02259FDA-961B-47BC-AE7F-93D7EC6E90C2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:7.0:rc5:*:*:*:*:*:*",
              "matchCriteriaId": "58A9FEFF-C040-420D-8F0A-BFDAAA1DF258",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:7.0:rc6:*:*:*:*:*:*",
              "matchCriteriaId": "1D2315C0-D46F-4F85-9754-F9E5E11374A6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:7.0:rc7:*:*:*:*:*:*",
              "matchCriteriaId": "512EE3A8-A590-4501-9A94-5D4B268D6138",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nxfrm: clear trailing padding in build_polexpire()\n\nbuild_expire() clears the trailing padding bytes of struct\nxfrm_user_expire after setting the hard field via memset_after(),\nbut the analogous function build_polexpire() does not do this for\nstruct xfrm_user_polexpire.\n\nThe padding bytes after the __u8 hard field are left\nuninitialized from the heap allocation, and are then sent to\nuserspace via netlink multicast to XFRMNLGRP_EXPIRE listeners,\nleaking kernel heap memory contents.\n\nAdd the missing memset_after() call, matching build_expire()."
    }
  ],
  "id": "CVE-2026-31664",
  "lastModified": "2026-04-27T19:59:44.497",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 5.5,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 3.6,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2026-04-24T15:16:46.043",
  "references": [
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/71a98248c63c535eaa4d4c22f099b68d902006d0"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/ac6985903db047eaff54db929e4bf6b06782788e"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/b1dfd6b27df35ef4f87825aa5f607378d23ff0f2"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/c221ed63a2769a0af8bd849dfe25740048f34ef4"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/e1af65c669ebb1666c54576614c01a7f9ffcfff6"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/eda30846ea54f8ed218468e5480c8305ca645e37"
    }
  ],
  "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-noinfo"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

CERTFR-2026-AVI-0526

Vulnerability from certfr_avis - Published: 2026-05-04 - Updated: 2026-05-04

De multiples vulnérabilités ont été découvertes dans les produits Microsoft. Elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur.

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Impacted products

	Vendor	Product	Description
	Microsoft	N/A	azl3 kernel versions antérieures à 6.6.137.1-1

References

Title

Publication Time

Tags

Bulletin de sécurité Microsoft CVE-2026-31629	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31639	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31694	2026-05-02	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31662	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31651	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31661	2026-04-29	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31671	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31656	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31595	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31700	2026-05-02	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31430	2026-04-22	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31599	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31685	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31607	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31659	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31673	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31612	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31638	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31532	2026-04-24	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31625	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31586	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31649	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31676	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31684	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31657	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31431	2026-04-23	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31585	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31611	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31637	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31689	2026-04-29	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31624	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31615	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31627	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31642	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31704	2026-05-02	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31668	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31508	2026-04-30	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31578	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31696	2026-05-02	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31587	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31577	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31711	2026-05-02	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31626	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31670	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31583	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31618	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31708	2026-05-02	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31588	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31658	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31705	2026-05-02	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31669	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31623	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31622	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31603	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31594	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31721	2026-05-02	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31660	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31628	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-43033	2026-05-02	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31619	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31648	2026-04-29	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31698	2026-05-02	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31655	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31699	2026-05-02	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31634	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31665	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31605	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31597	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31697	2026-05-02	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31664	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31702	2026-05-02	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31590	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31596	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31681	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31533	2026-05-01	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31610	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31667	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31604	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31672	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31646	2026-04-26	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "azl3 kernel versions ant\u00e9rieures \u00e0 6.6.137.1-1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": "",
  "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
  "cves": [
    {
      "name": "CVE-2026-31623",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31623"
    },
    {
      "name": "CVE-2026-31619",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31619"
    },
    {
      "name": "CVE-2026-31658",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31658"
    },
    {
      "name": "CVE-2026-31618",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31618"
    },
    {
      "name": "CVE-2026-31578",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31578"
    },
    {
      "name": "CVE-2026-31696",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31696"
    },
    {
      "name": "CVE-2026-31704",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31704"
    },
    {
      "name": "CVE-2026-31685",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31685"
    },
    {
      "name": "CVE-2026-31656",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31656"
    },
    {
      "name": "CVE-2026-31698",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31698"
    },
    {
      "name": "CVE-2026-31664",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31664"
    },
    {
      "name": "CVE-2026-31597",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31597"
    },
    {
      "name": "CVE-2026-31586",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31586"
    },
    {
      "name": "CVE-2026-31721",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31721"
    },
    {
      "name": "CVE-2026-31655",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31655"
    },
    {
      "name": "CVE-2026-31711",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31711"
    },
    {
      "name": "CVE-2026-31611",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31611"
    },
    {
      "name": "CVE-2026-31431",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31431"
    },
    {
      "name": "CVE-2026-31599",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31599"
    },
    {
      "name": "CVE-2026-31668",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31668"
    },
    {
      "name": "CVE-2026-31583",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31583"
    },
    {
      "name": "CVE-2026-31605",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31605"
    },
    {
      "name": "CVE-2026-31681",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31681"
    },
    {
      "name": "CVE-2026-43033",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-43033"
    },
    {
      "name": "CVE-2026-31622",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31622"
    },
    {
      "name": "CVE-2026-31595",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31595"
    },
    {
      "name": "CVE-2026-31642",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31642"
    },
    {
      "name": "CVE-2026-31659",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31659"
    },
    {
      "name": "CVE-2026-31638",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31638"
    },
    {
      "name": "CVE-2026-31588",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31588"
    },
    {
      "name": "CVE-2026-31689",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31689"
    },
    {
      "name": "CVE-2026-31697",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31697"
    },
    {
      "name": "CVE-2026-31670",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31670"
    },
    {
      "name": "CVE-2026-31533",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31533"
    },
    {
      "name": "CVE-2026-31615",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31615"
    },
    {
      "name": "CVE-2026-31594",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31594"
    },
    {
      "name": "CVE-2026-31661",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31661"
    },
    {
      "name": "CVE-2026-31705",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31705"
    },
    {
      "name": "CVE-2026-31684",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31684"
    },
    {
      "name": "CVE-2026-31625",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31625"
    },
    {
      "name": "CVE-2026-31669",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31669"
    },
    {
      "name": "CVE-2026-31671",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31671"
    },
    {
      "name": "CVE-2026-31694",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31694"
    },
    {
      "name": "CVE-2026-31699",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31699"
    },
    {
      "name": "CVE-2026-31628",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31628"
    },
    {
      "name": "CVE-2026-31662",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31662"
    },
    {
      "name": "CVE-2026-31627",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31627"
    },
    {
      "name": "CVE-2026-31665",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31665"
    },
    {
      "name": "CVE-2026-31672",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31672"
    },
    {
      "name": "CVE-2026-31626",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31626"
    },
    {
      "name": "CVE-2026-31634",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31634"
    },
    {
      "name": "CVE-2026-31610",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31610"
    },
    {
      "name": "CVE-2026-31648",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31648"
    },
    {
      "name": "CVE-2026-31660",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31660"
    },
    {
      "name": "CVE-2026-31607",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31607"
    },
    {
      "name": "CVE-2026-31637",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31637"
    },
    {
      "name": "CVE-2026-31612",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31612"
    },
    {
      "name": "CVE-2026-31590",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31590"
    },
    {
      "name": "CVE-2026-31604",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31604"
    },
    {
      "name": "CVE-2026-31532",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31532"
    },
    {
      "name": "CVE-2026-31430",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31430"
    },
    {
      "name": "CVE-2026-31596",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31596"
    },
    {
      "name": "CVE-2026-31676",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31676"
    },
    {
      "name": "CVE-2026-31603",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31603"
    },
    {
      "name": "CVE-2026-31649",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31649"
    },
    {
      "name": "CVE-2026-31577",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31577"
    },
    {
      "name": "CVE-2026-31702",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31702"
    },
    {
      "name": "CVE-2026-31587",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31587"
    },
    {
      "name": "CVE-2026-31708",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31708"
    },
    {
      "name": "CVE-2026-31651",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31651"
    },
    {
      "name": "CVE-2026-31657",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31657"
    },
    {
      "name": "CVE-2026-31624",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31624"
    },
    {
      "name": "CVE-2026-31585",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31585"
    },
    {
      "name": "CVE-2026-31646",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31646"
    },
    {
      "name": "CVE-2026-31700",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31700"
    },
    {
      "name": "CVE-2026-31639",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31639"
    },
    {
      "name": "CVE-2026-31508",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31508"
    },
    {
      "name": "CVE-2026-31629",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31629"
    },
    {
      "name": "CVE-2026-31673",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31673"
    },
    {
      "name": "CVE-2026-31667",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31667"
    }
  ],
  "initial_release_date": "2026-05-04T00:00:00",
  "last_revision_date": "2026-05-04T00:00:00",
  "links": [],
  "reference": "CERTFR-2026-AVI-0526",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2026-05-04T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Microsoft. Elles permettent \u00e0 un attaquant de provoquer un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur.",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Microsoft",
  "vendor_advisories": [
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31629",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31629"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31639",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31639"
    },
    {
      "published_at": "2026-05-02",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31694",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31694"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31662",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31662"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31651",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31651"
    },
    {
      "published_at": "2026-04-29",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31661",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31661"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31671",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31671"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31656",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31656"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31595",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31595"
    },
    {
      "published_at": "2026-05-02",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31700",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31700"
    },
    {
      "published_at": "2026-04-22",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31430",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31430"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31599",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31599"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31685",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31685"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31607",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31607"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31659",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31659"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31673",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31673"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31612",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31612"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31638",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31638"
    },
    {
      "published_at": "2026-04-24",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31532",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31532"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31625",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31625"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31586",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31586"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31649",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31649"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31676",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31676"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31684",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31684"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31657",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31657"
    },
    {
      "published_at": "2026-04-23",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31431",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31431"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31585",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31585"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31611",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31611"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31637",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31637"
    },
    {
      "published_at": "2026-04-29",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31689",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31689"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31624",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31624"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31615",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31615"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31627",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31627"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31642",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31642"
    },
    {
      "published_at": "2026-05-02",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31704",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31704"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31668",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31668"
    },
    {
      "published_at": "2026-04-30",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31508",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31508"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31578",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31578"
    },
    {
      "published_at": "2026-05-02",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31696",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31696"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31587",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31587"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31577",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31577"
    },
    {
      "published_at": "2026-05-02",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31711",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31711"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31626",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31626"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31670",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31670"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31583",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31583"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31618",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31618"
    },
    {
      "published_at": "2026-05-02",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31708",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31708"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31588",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31588"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31658",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31658"
    },
    {
      "published_at": "2026-05-02",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31705",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31705"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31669",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31669"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31623",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31623"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31622",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31622"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31603",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31603"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31594",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31594"
    },
    {
      "published_at": "2026-05-02",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31721",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31721"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31660",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31660"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31628",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31628"
    },
    {
      "published_at": "2026-05-02",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-43033",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-43033"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31619",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31619"
    },
    {
      "published_at": "2026-04-29",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31648",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31648"
    },
    {
      "published_at": "2026-05-02",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31698",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31698"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31655",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31655"
    },
    {
      "published_at": "2026-05-02",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31699",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31699"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31634",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31634"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31665",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31665"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31605",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31605"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31597",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31597"
    },
    {
      "published_at": "2026-05-02",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31697",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31697"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31664",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31664"
    },
    {
      "published_at": "2026-05-02",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31702",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31702"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31590",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31590"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31596",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31596"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31681",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31681"
    },
    {
      "published_at": "2026-05-01",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31533",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31533"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31610",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31610"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31667",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31667"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31604",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31604"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31672",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31672"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31646",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31646"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2026-31664 (GCVE-0-2026-31664)

MSRC_CVE-2026-31664

GHSA-5FVV-6WPC-9MR7

FKIE_CVE-2026-31664

CERTFR-2026-AVI-0526

Solutions

Tags

Sightings

Nomenclature