Astra Linux - уязвимость в linux-6.1

In the Linux kernel, the following vulnerability has been resolved: USB: core: Fixed a deadlock in the “disable” sysfs attribute. The show and store callback routines for the “disable” sysfs attribute in port.c acquire the device lock for the port’s parent hub. This can cause problems if another...

CVE-2025-40939

A vulnerability has been identified in SIMATIC CN 4100 All versions V4.0.1. The affected device contains a USB port which allows unauthenticated connections. This could allow an attacker with physical access to the device to trigger reboot that could cause denial of service condition...

EUVD-2015-1984

Malware in sbrugna...

EUVD-2022-37692

Malicious code in bioql PyPI...

EUVD-2023-32663

Malicious code in bioql PyPI...

EUVD-2024-30529

Malicious code in bioql PyPI...

Siemens SIPROTEC 5 Compact 7SX800 (CP050) Local USB Port Network Packet Bandwidth Limit Improperly Vulnerability

The SIPROTEC 5 Compact 7SX800 CP050 offers a range of integrated protection, control, measurement and automation functions for substations and other applications. The Siemens SIPROTEC 5 Compact 7SX800 CP050 suffers from an improper bandwidth limitation of network packets on the local USB port...

CVE-2022-34743

The AT commands of the USB port have an out-of-bounds read vulnerability. Successful exploitation of this vulnerability may affect system availability...

CVE-2024-32742

A vulnerability has been identified in SIMATIC CN 4100 All versions V3.0. The affected device contains an unrestricted USB port. An attacker with local access to the device could potentially misuse the port for booting another operating system and gain complete read/write access to the filesystem...

CVE-2024-40975

CVE-2024-40975 affects the Linux kernel in platform/x86/x86-android-tablets code. The issue arises when a device is unregistered while consumers still hold references, with the regulator subsystem given as a concrete example. If a regulator is unregistered prematurely, a WARN() can be triggered (...

IBM FlashSystem 5300 Authentication Error Vulnerability

The IBM FlashSystem 5300 is an IBM storage enterprise system from International Business Machines IBM that stores data on flash memory. The IBM FlashSystem 5300 suffers from an authentication error vulnerability that could be exploited by an attacker to cause loss of access to data using a USB po...

CVE-2024-39723

IBM FlashSystem 5300 USB ports may be usable even if the port has been disabled by the administrator. A user with physical access to the system could use the USB port to cause loss of access to data. IBM X-Force ID: 295935...

CVE-2024-39723

CVE-2024-39723 affects IBM FlashSystem 5300 USB ports that may remain usable even when disabled by the administrator. The IBM Security Bulletin (D72039A541262C5C7DD8004D30EA7974A224B2DC3E698501A93E18885B4C3EE4) confirms that a user with physical access can use a USB port to cause loss of access t...

Security Bulletin: Disabled USB port vulnerability affects IBM FlashSystem 5300

Summary IBM FlashSystem 5300 USB ports may be usable even if the port has been disabled by the administrator. A user with physical access to the system could use the USB port to cause loss of access to data. Vulnerability Details CVEID:CVE-2024-39723 DESCRIPTION: IBM FlashSystem 5300 USB ports ma...

[SECURITY] Fedora 39 Update: rust-yubibomb-0.2.14-3.fc39

Don't you love when you accidentally tap your Yubikey when you have your IRC client in focus and you send 987947 into Libera? Want to be able to have that experience without having to reach all the way over to your laptop's USB port? Now you can!...

[SECURITY] Fedora 39 Update: rust-ybaas-0.0.17-3.fc39

Don't you love when you accidentally tap your Yubikey when you have your IRC client in focus and you send 987947 into Libera? Want to be able to have that experience without having to reach all the way over to your laptop's USB port? Don't want the complexity of installing and using the yubibomb...

DEBIAN-CVE-2024-36896

In the Linux kernel, the following vulnerability has been resolved: USB: core: Fix access violation during port device removal Testing with KASAN and syzkaller revealed a bug in port.c:disablestore: usbhubtostructhub can return NULL if the hub that the port belongs to is concurrently removed, but...

Fedora: Security Advisory for rust-ybaas (FEDORA-2024-ce2936b568)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Unspecified Vulnerability in Siemens SIMATIC CN 4100

The Siemens SIMATIC CN 4100 is a communication node from Siemens, Germany. A security vulnerability exists in the Siemens SIMATIC CN 4100 because the affected device contains an unrestricted USB port. An attacker can exploit the vulnerability to potentially misuse the port to boot another operati...

CVE-2024-32742

A vulnerability has been identified in SIMATIC CN 4100 All versions V3.0. The affected device contains an unrestricted USB port. An attacker with local access to the device could potentially misuse the port for booting another operating system and gain complete read/write access to the filesystem...