mvs

3 exploits Active since Jun 2026
CVE-2026-57589 WRITEUP HIGH WRITEUP
OpenBSD < 7.9 - Use After Free
sys/kern/sysv_sem.c in OpenBSD through 7.9 has a use-after-free allowing local privilege escalation to root. This is a context switch use-after-free after tsleep in sys_semget().
CVSS 7.4
CVE-2026-56099 WRITEUP MEDIUM WRITEUP
OpenBSD mpls_do_error Kernel Stack Memory Disclosure via MPLS Input
OpenBSD before commit 6a23123 (2026-06-18) contains an out-of-bounds read vulnerability in the mpls_do_error function within sys/netmpls/mpls_input.c that allows remote attackers to disclose kernel stack memory by sending crafted MPLS frames with 16 labels and no Bottom-of-Stack bit set.
CVSS 5.3
CVE-2026-55706 WRITEUP MEDIUM WRITEUP
OpenBSD - Improper Validation of Specified Quantity in Input
sppp_pap_input in sys/net/if_spppsubr.c in OpenBSD before 076e2b1 allows authentication bypass via certain zero values for lengths.
CVSS 5.8