Lucene search
K

19982 matches found

Debian CVE
Debian CVE
added 2026/05/08 2:21 p.m.6 views

CVE-2026-43423

Removed by vendor...

5.2AI score0.00091EPSS
Exploits0
NVD
NVD
added 2026/05/08 2:16 p.m.12 views

CVE-2026-43343

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fsubset: Fix unbalanced refcnt in gethfree gethalloc increments the reference count, but gethfree fails to decrement it. This prevents the configuration of attributes via configfs after unlinking the function...

5.5CVSS0.00114EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2026/05/08 2:16 p.m.8 views

CVE-2026-43343

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fsubset: Fix unbalanced refcnt in gethfree gethalloc increments the reference count, but gethfree fails to decrement it. This prevents the configuration of attributes via configfs after unlinking the function...

5.5CVSS5.7AI score0.00114EPSS
Exploits0References10
CVE
CVE
added 2026/05/08 1:37 p.m.18 views

CVE-2026-43343

CVE-2026-43343 affects the Linux kernel USB gadget f_subset code. The vulnerability stems from an unbalanced reference count: geth_alloc() increments the refcount, but geth_free() does not decrement it, which can block configuration of attributes via configfs after unlinking the function. The con...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References8Affected Software1
Debian CVE
Debian CVE
added 2026/05/08 1:37 p.m.7 views

CVE-2026-43343

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fsubset: Fix unbalanced refcnt in gethfree gethalloc increments the reference count, but gethfree fails to decrement it. This prevents the configuration of attributes via configfs after unlinking the function...

5.5CVSS5.7AI score0.00114EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/05/08 1:37 p.m.7 views

CVE-2026-43342

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: frndis: Protect RNDIS options with mutex The class/subclass/protocol options are suspectible to race conditions as they can be accessed concurrently through configfs. Use existing mutex to protect these options. This...

4.7CVSS5.8AI score0.00086EPSS
Exploits0
Cvelist
Cvelist
added 2026/05/07 8:5 a.m.52 views

CVE-2025-1978 Remote Code Execution Vulnerability in Hitachi Storage Navigator and the maintenance console

Remote Code Execution Vulnerability in Hitachi Storage Navigator and the maintenance console in Hitachi Virtual Storage Platform G130, G150, G350, G370, G700, G900, F350, F370, F700, F900, Hitachi Virtual Storage Platform E390, E590, E790, E990, E1090, E390H, E590H, E790H, E1090H, Hitachi Virtual...

8.3CVSS0.00547EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/05/01 9:2 p.m.8 views

CVE-2026-31725

A flaw was found in the Linux kernel's usb: gadget: fecm component. When a USB gadget function unbinds, the associated netdevice may not be properly de-parented from the destroyed gadget device. This can lead to dangling symbolic links in the /sys/class/net/ directory, potentially causing issues...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/05/01 8:53 p.m.6 views

CVE-2026-31723

A flaw was found in the Linux kernel's usb: gadget: fsubset component. This vulnerability arises from an issue in how network device resources are managed during the unbinding of a USB gadget function. When the parent device is destroyed, the associated network device may persist, creating...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2026/05/01 2:14 p.m.5 views

CVE-2026-31723

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fsubset: Fix netdevice lifecycle with devicemove The netdevice is allocated during function instance creation and registered during the bind phase with the gadget device as its sysfs parent. When the function unbinds...

5.5CVSS5.7AI score0.00122EPSS
Exploits0
CVE
CVE
added 2026/05/01 2:14 p.m.17 views

CVE-2026-31723

The CVE-2026-31723 issue affects the Linux kernel’s usb: gadget: f_subset component, where net_device resources are allocated during function instance creation and registered under the gadget device. On unbind, the parent device can be destroyed while the net_device remains, creating dangling sys...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References4Affected Software1
Debian CVE
Debian CVE
added 2026/05/01 2:14 p.m.4 views

CVE-2026-31721

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fhid: move list and spinlock inits from bind to alloc There was an issue when you did the following: - setup and bind an hid gadget - open /dev/hidg0 - use the resulting fd in EPOLLCTLADD - unbind the UDC - bind the...

5.5CVSS5.5AI score0.00123EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/05/01 2:14 p.m.5 views

CVE-2026-31720

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fuac1legacy: validate control request size faudiocomplete copies req-length bytes into a 4-byte stack variable: u32 data = 0; memcpy&data, req-buf, req-length; req-length is derived from the host-controlled USB reque...

7.8CVSS5.7AI score0.00129EPSS
Exploits0
CNNVD
CNNVD
added 2026/05/01 12:0 a.m.10 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from improper lifecycle management of netdevice in frndis, potentially leading to suspended sysfs...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/26 2:30 a.m.8 views

EUVD-2026-25690

A flaw has been found in MaxSite CMS up to 109.3. This vulnerability affects unknown code of the component downcount Plugin. This manipulation of the argument ffile/fprefix causes cross site scripting. The attack may be initiated remotely. The exploit has been published and may be used. Upgrading...

4.8CVSS3.1AI score0.00269EPSS
Exploits0References7
EUVD
EUVD
added 2026/04/26 12:30 a.m.8 views

EUVD-2026-25685

A weakness has been identified in MaxSite CMS up to 109.3. Affected by this vulnerability is an unknown functionality of the file /admin/pluginantispam of the component Antispam Plugin. Executing a manipulation of the argument floggingfile can lead to cross site scripting. It is possible to launc...

4.8CVSS3.2AI score0.00269EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2026/04/25 1:37 a.m.7 views

SUSE CVE-2026-31616

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fphonet: fix skb frags overflow in pnrxcomplete A broken/bored/mean USB host can overflow the skbsharedinfo-frags array on a Linux gadget exposing a Phonet function by sending an unbounded sequence of full-page OUT...

6.1CVSS5.4AI score0.00125EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/04/24 12:0 a.m.9 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the usb gadget fhid driver repeatedly initializing the cdev device during rebinding operations,...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References1
NVD
NVD
added 2026/04/22 12:16 a.m.11 views

CVE-2026-41144

F´ F Prime is a framework that enables development and deployment of spaceflight and other embedded software applications. Prior to version 4.2.0, the bounds check byteOffset + dataSize fileSize uses U32 addition that wraps around on overflow. An attacker-crafted DataPacket with...

9.8CVSS0.00428EPSS
Exploits0References2
EUVD
EUVD
added 2026/04/21 11:58 p.m.6 views

EUVD-2026-24577

F´ F Prime is a framework that enables development and deployment of spaceflight and other embedded software applications. Prior to version 4.2.0, the bounds check byteOffset + dataSize fileSize uses U32 addition that wraps around on overflow. An attacker-crafted DataPacket with...

6.7AI score0.00428EPSS
Exploits0References2
Rows per page
Query Builder