Lucene search
+L

77 matches found

NVD
NVD
added yesterday7 views

CVE-2026-60140

An out-of-bounds read vulnerability in the Productivity Suite allows a local attacker to trigger kernel memory corruption by sending a crafted IOCTL request. This can lead to exposing sensitive information or causing the affected product to become unstable or unavailable...

6.9CVSS
Exploits0References3
EUVD
EUVD
added yesterday5 views

EUVD-2026-45035

An out-of-bounds read vulnerability in the Productivity Suite allows a local attacker to trigger kernel memory corruption by sending a crafted IOCTL request. This could lead to limited information disclosure or disruption of the affected product...

6.9CVSS6.1AI score
Exploits0References3
Cvelist
Cvelist
added yesterday24 views

CVE-2026-57896 AutomationDirect Productivity Suite Out-of-bounds Read

An out-of-bounds read vulnerability in the Productivity Suite allows a local attacker to trigger kernel memory corruption by sending a crafted IOCTL request. This could lead to limited information disclosure or disruption of the affected product...

6.9CVSS
Exploits0References3
CVE
CVE
added yesterday3 views

CVE-2026-60140

The CVE-2026-60140 entry concerns AutomationDirect Productivity Suite with an out-of-bounds read in IOCTL handling that can allow a local attacker to trigger kernel memory corruption, exposing sensitive information and potentially making the product unstable or unavailable. The advisory notes a l...

6.9CVSS6.1AI score
Exploits0References3
CVE
CVE
added 2026/05/27 12:58 p.m.33 views

CVE-2026-46091

CVE-2026-46091 : Linux kernel vulnerability in the igorplugusb driver where a USB control request may be subject to DMA, violating DMA coherency rules. The resolution requires allocating the affected structure separately to enforce coherency. Public records identify the issue across multiple dist...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2026/05/27 12:58 p.m.46 views

CVE-2026-46091 media: rc: igorplugusb: heed coherency rules

In the Linux kernel, the following vulnerability has been resolved: media: rc: igorplugusb: heed coherency rules In a control request, the USB request structure can be subject to DMA on some HCs. Hence it must obey the rules for DMA coherency. Allocate it separately...

0.00122EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/05/27 12:0 a.m.24 views

PT-2026-43959

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified openSUSE Tumbleweed versions prior to kernel-devel-7.0.11-1.1 Description A DMA coherency issue exists in the igorplugusb driver within the media subsystem. In a control request, the USB request...

5.5CVSS5.9AI score0.00122EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2026/05/06 1:43 a.m.15 views

SUSE CVE-2026-31720

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fuac1legacy: validate control request size faudiocomplete copies req-length bytes into a 4-byte stack variable: u32 data = 0; memcpy&data, req-buf, req-length; req-length is derived from the host-controlled USB reque...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References4
NVD
NVD
added 2026/05/04 5:16 p.m.15 views

CVE-2025-47408

Memory corruption when another driver calls an IOCTL with invalid input/output buffer...

7.8CVSS0.00075EPSS
Exploits0References1
NVD
NVD
added 2026/05/01 3:16 p.m.4 views

CVE-2026-31720

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fuac1legacy: validate control request size faudiocomplete copies req-length bytes into a 4-byte stack variable: u32 data = 0; memcpy&data, req-buf, req-length; req-length is derived from the host-controlled USB reque...

7.8CVSS0.00129EPSS
Exploits0References8
CVE
CVE
added 2026/05/01 2:14 p.m.16 views

CVE-2026-31720

CVE-2026-31720 : In the Linux kernel, the USB gadget path f_uac1_legacy incorrectly handles control request length. Specifically, f_audio_complete() copies req->length bytes into a 4-byte stack variable (data) via memcpy, with req->length derived from host-controlled USB requests. This can ...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References8Affected Software1
EUVD
EUVD
added 2026/05/01 2:14 p.m.15 views

EUVD-2026-26533

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fuac1legacy: validate control request size faudiocomplete copies req-length bytes into a 4-byte stack variable: u32 data = 0; memcpy&data, req-buf, req-length; req-length is derived from the host-controlled USB reque...

5.8AI score0.00129EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2026/05/01 2:14 p.m.3 views

CVE-2026-31720

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fuac1legacy: validate control request size faudiocomplete copies req-length bytes into a 4-byte stack variable: u32 data = 0; memcpy, req-buf, req-length; req-length is derived from the host-controlled USB request...

5.7AI score0.00129EPSS
Exploits0References9Affected Software1
Debian CVE
Debian CVE
added 2026/05/01 2:14 p.m.5 views

CVE-2026-31720

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fuac1legacy: validate control request size faudiocomplete copies req-length bytes into a 4-byte stack variable: u32 data = 0; memcpy&data, req-buf, req-length; req-length is derived from the host-controlled USB reque...

7.8CVSS5.7AI score0.00129EPSS
Exploits0
Cvelist
Cvelist
added 2026/05/01 2:14 p.m.38 views

CVE-2026-31720 usb: gadget: f_uac1_legacy: validate control request size

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fuac1legacy: validate control request size faudiocomplete copies req-length bytes into a 4-byte stack variable: u32 data = 0; memcpy&data, req-buf, req-length; req-length is derived from the host-controlled USB reque...

0.00129EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/05/01 12:0 a.m.10 views

PT-2026-36355

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A stack out-of-bounds write exists in the f audio complete function. The issue occurs because the function copies req-length bytes into a 4-byte stack variable using memcpy. Since...

7.8CVSS5.5AI score0.00129EPSS
Exploits0References18
Cvelist
Cvelist
added 2026/04/09 12:0 a.m.22 views

CVE-2026-29923

The pstrip64.sys driver in EnTech Taiwan PowerStrip =3.90.736 allows local users to escalate privileges to SYSTEM via a crafted IOCTL request enabling unprivileged users to map arbitrary physical memory into their address space and modify critical kernel structures...

0.00107EPSS
Exploits1References2
CNNVD
CNNVD
added 2026/04/09 12:0 a.m.8 views

EnTech Taiwan PowerStrip 安全漏洞

EnTech Taiwan PowerStrip is a display adjustment and graphics card parameter optimization control software developed by EnTech Taiwan. Versions of EnTech Taiwan PowerStrip 3.90.736 and earlier contain security vulnerabilities. These vulnerabilities stem from the pstrip64.sys driver, which allows...

7.8CVSS5.9AI score0.00107EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2026/04/07 5:3 p.m.3 views

CVE-2026-21376

Memory Corruption when accessing an output buffer without validating its size during IOCTL processing in a camera sensor driver...

7.8CVSS6AI score0.00096EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/12 2:0 a.m.8 views

EUVD-2025-208607

An Incorrect Permission Assignment vulnerability exists in the ASUS Business System Control Interface driver. This vulnerability can be triggered by an unprivileged local user sending a specially crafted IOCTL request, potentially leading to unauthorized access to sensitive hardware resources and...

6.8CVSS5.8AI score0.00099EPSS
Exploits0References1
Rows per page
Query Builder