Lucene search
K

236 matches found

Vulnrichment
Vulnrichment
added 2026/01/12 5:8 p.m.4 views

CVE-2025-68622 Espressif ESP-IDF USB Host UVC Class Driver has a stack buffer overflow in UVC descriptor printing

Espressif ESP-IDF USB Host UVC Class Driver allows video streaming from USB cameras. Prior to 2.4.0, a vulnerability in the esp-usb UVC host implementation allows a malicious USB Video Class UVC device to trigger a stack buffer overflow during configuration-descriptor parsing. When UVC...

6.8CVSS6.6AI score0.00212EPSS
Exploits0References3
OSV
OSV
added 2026/01/12 5:8 p.m.5 views

CVE-2025-68622 Espressif ESP-IDF USB Host UVC Class Driver has a stack buffer overflow in UVC descriptor printing

Espressif ESP-IDF USB Host UVC Class Driver allows video streaming from USB cameras. Prior to 2.4.0, a vulnerability in the esp-usb UVC host implementation allows a malicious USB Video Class UVC device to trigger a stack buffer overflow during configuration-descriptor parsing. When UVC...

6.8CVSS6.9AI score0.00212EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/01/12 12:0 a.m.5 views

PT-2026-2284

Name of the Vulnerable Software and Affected Versions Espressif ESP-IDF versions prior to 1.1.0 Description The USB Host HID Human Interface Device Driver in ESP-IDF allows access to HID devices. A flaw exists in the usb class request get descriptor function where it frees and reallocates hid...

6.8CVSS6.2AI score0.00183EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2025/12/31 12:0 a.m.3 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-993069)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993069 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: host: ohci-ppc-of: Fix refcount leak bug In ohcihcdppcofprobe, offindcompatiblenode will...

5.5CVSS6.2AI score0.00164EPSS
Exploits0References4
EUVD
EUVD
added 2025/12/30 3:30 p.m.6 views

EUVD-2022-55889

In the Linux kernel, the following vulnerability has been resolved: xhci: dbc: Fix memory leak in xhciallocdbc If DbC is already in use, then the allocated memory for the xhcidbc struct doesn't get freed before returning NULL, which leads to a memleak...

5.9AI score0.00206EPSS
Exploits0References5
OSV
OSV
added 2025/12/30 1:15 p.m.13 views

UBUNTU-CVE-2022-50809

In the Linux kernel, the following vulnerability has been resolved: xhci: dbc: Fix memory leak in xhciallocdbc If DbC is already in use, then the allocated memory for the xhcidbc struct doesn't get freed before returning NULL, which leads to a memleak...

5.7AI score0.00206EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2025/12/30 12:0 a.m.3 views

PT-2025-53927

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak exists in the xhci alloc dbc function when Dynamic Backtrace Collection DbC is already in use. Specifically, if DbC is in use, the memory allocated for the xhci dbc struct ...

7.8CVSS6.3AI score0.00462EPSS
Exploits2References894
NVD
NVD
added 2025/12/24 11:15 a.m.4 views

CVE-2023-53986

In the Linux kernel, the following vulnerability has been resolved: mips: bmips: BCM6358: disable RAC flush for TP1 RAC flush causes kernel panics on BCM6358 with EHCI/OHCI when booting from TP1: 3.881739 usb 1-1: new high-speed USB device number 2 using ehci-platform 3.895011 Reserved instructio...

0.00173EPSS
Exploits0References6
OSV
OSV
added 2025/12/24 11:15 a.m.2 views

UBUNTU-CVE-2023-53986

In the Linux kernel, the following vulnerability has been resolved: mips: bmips: BCM6358: disable RAC flush for TP1 RAC flush causes kernel panics on BCM6358 with EHCI/OHCI when booting from TP1: 3.881739 usb 1-1: new high-speed USB device number 2 using ehci-platform 3.895011 Reserved instructio...

5.9AI score0.00173EPSS
Exploits0References8
OSV
OSV
added 2025/11/21 10:52 a.m.20 views

CLSA-2025-1763722365 kernel: Fix of 62 CVEs

wifi: mwifiex: Fix OOB and integer underflow when rx packets CVE-2023-53226 CVE-2023-53226 - wifi: mac80211: check S1G action frame size CVE-2023-53257 CVE-2023-53257 - wifi: cfg80211: fix use-after-free in cmpbss CVE-2025-39864 CVE-2025-39864 - partitions: mac: fix handling of bogus partition...

8CVSS6.7AI score0.00369EPSS
Exploits4References1
RedhatCVE
RedhatCVE
added 2025/11/13 1:37 p.m.4 views

CVE-2025-40116

In the Linux kernel, the following vulnerability has been resolved: usb: host: max3421-hcd: Fix error pointer dereference in probe cleanup The kthreadrun function returns error pointers so the max3421hcd-spithread pointer can be either error pointers or NULL. Check for both before dereferencing i...

5.9AI score0.00188EPSS
Exploits0References4
OSV
OSV
added 2025/11/12 11:15 a.m.9 views

UBUNTU-CVE-2025-40116

In the Linux kernel, the following vulnerability has been resolved: usb: host: max3421-hcd: Fix error pointer dereference in probe cleanup The kthreadrun function returns error pointers so the max3421hcd-spithread pointer can be either error pointers or NULL. Check for both before dereferencing i...

5.7AI score0.00188EPSS
Exploits0References40
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.4 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989376)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989376 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: host: ohci-tmio: check return value after calling platformgetresource It will cause...

5.5CVSS5.9AI score0.00227EPSS
Exploits0References4
Microsoft CVE
Microsoft CVE
added 2025/10/22 1:2 a.m.6 views

usb: dwc3: host: Stop setting the ACPI companion

...

5.5CVSS7AI score0.00245EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/10/21 12:0 a.m.3 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987636)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987636 advisory. In the Linux kernel, the following vulnerability has been resolved: drivers: usb: host: Fix deadlock in oxubussuspend There is a deadlock in oxubussuspend, which is...

5.5CVSS5.9AI score0.00196EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/10/18 5:45 a.m.3 views

CVE-2025-55097

In USBX before 6.4.3, the USB support module for Eclipse Foundation ThreadX, there was a potential out of bound read issue in uxhostclassaudiostreamingsamplingget when parsing a descriptor of an USB streaming device...

6.1CVSS6.8AI score0.00245EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/17 5:40 a.m.3 views

CVE-2025-55100 Potential out-of-bounds read in _ux_host_class_audio10_sam_parse_func()

In USBX before 6.4.3, the USB support module for Eclipse Foundation ThreadX, there was a potential out of bound read issue in uxhostclassaudio10samparsefunc when parsing a list of sampling frequencies...

2.4CVSS6.5AI score0.00513EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/17 5:35 a.m.6 views

EUVD-2025-34867

In USBX before 6.4.3, the USB support module for Eclipse Foundation ThreadX, there was a potential out of bound read issue in uxhostclassaudiostreamingsamplingget when parsing a descriptor of an USB streaming device...

2.4CVSS6.3AI score0.00245EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2025/10/07 11:49 p.m.2 views

SUSE CVE-2022-50544

In the Linux kernel, the following vulnerability has been resolved: usb: host: xhci: Fix potential memory leak in xhciallocstreaminfo xhciallocstreaminfo allocates stream context array for streaminfo -streamctxarray with xhciallocstreamctx. When some error occurs, streaminfo-streamctxarray is not...

5.5CVSS6.4AI score0.0015EPSS
Exploits0References10
NVD
NVD
added 2025/10/07 4:15 p.m.4 views

CVE-2022-50544

In the Linux kernel, the following vulnerability has been resolved: usb: host: xhci: Fix potential memory leak in xhciallocstreaminfo xhciallocstreaminfo allocates stream context array for streaminfo -streamctxarray with xhciallocstreamctx. When some error occurs, streaminfo-streamctxarray is not...

5.5CVSS0.0015EPSS
Exploits0References9
Rows per page
Query Builder