Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

16174 matches found

EUVD
EUVDadded 2026/05/01 2:14 p.m.4 views

EUVD-2026-26536

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fsubset: Fix netdevice lifecycle with devicemove The netdevice is allocated during function instance creation and registered during the bind phase with the gadget device as its sysfs parent. When the function unbinds...

5.8AI score0.00122EPSS
Exploits0References4
ATTACKERKB
ATTACKERKBadded 2026/05/01 2:14 p.m.1 views

CVE-2026-31723

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fsubset: Fix netdevice lifecycle with devicemove The netdevice is allocated during function instance creation and registered during the bind phase with the gadget device as its sysfs parent. When the function unbinds...

5.7AI score0.00122EPSS
Exploits0References5Affected Software1
Debian CVE
Debian CVEadded 2026/05/01 2:14 p.m.3 views

CVE-2026-31723

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fsubset: Fix netdevice lifecycle with devicemove The netdevice is allocated during function instance creation and registered during the bind phase with the gadget device as its sysfs parent. When the function unbinds...

5.5CVSS5.7AI score0.00122EPSS
Exploits0
Cvelist
Cvelistadded 2026/05/01 2:14 p.m.23 views

CVE-2026-31721 usb: gadget: f_hid: move list and spinlock inits from bind to alloc

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fhid: move list and spinlock inits from bind to alloc There was an issue when you did the following: - setup and bind an hid gadget - open /dev/hidg0 - use the resulting fd in EPOLLCTLADD - unbind the UDC - bind the...

0.00123EPSS
Exploits0References8
ATTACKERKB
ATTACKERKBadded 2026/05/01 2:14 p.m.1 views

CVE-2026-31721

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fhid: move list and spinlock inits from bind to alloc There was an issue when you did the following: - setup and bind an hid gadget - open /dev/hidg0 - use the resulting fd in EPOLLCTLADD - unbind the UDC - bind the...

5.5AI score0.00123EPSS
Exploits0References9Affected Software1
CVE
CVEadded 2026/05/01 2:14 p.m.15 views

CVE-2026-31721

CVE-2026-31721 affects the Linux kernel USB gadget subsystem, specifically the f_hid driver. The issue arises from initializing wait queues (poll_wait) with init_waitqueue_head inside hidg_bind, which re-initializes queues that may still contain items when the HID gadget is bound/unbound and epol...

5.5CVSS5.5AI score0.00123EPSS
Exploits0References8Affected Software1
Debian CVE
Debian CVEadded 2026/05/01 2:14 p.m.2 views

CVE-2026-31721

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fhid: move list and spinlock inits from bind to alloc There was an issue when you did the following: - setup and bind an hid gadget - open /dev/hidg0 - use the resulting fd in EPOLLCTLADD - unbind the UDC - bind the...

5.5CVSS5.5AI score0.00123EPSS
Exploits0
Cvelist
Cvelistadded 2026/05/01 2:14 p.m.28 views

CVE-2026-31720 usb: gadget: f_uac1_legacy: validate control request size

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fuac1legacy: validate control request size faudiocomplete copies req-length bytes into a 4-byte stack variable: u32 data = 0; memcpy&data, req-buf, req-length; req-length is derived from the host-controlled USB reque...

0.00129EPSS
Exploits0References8
ATTACKERKB
ATTACKERKBadded 2026/05/01 2:14 p.m.0 views

CVE-2026-31720

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fuac1legacy: validate control request size faudiocomplete copies req-length bytes into a 4-byte stack variable: u32 data = 0; memcpy, req-buf, req-length; req-length is derived from the host-controlled USB request...

5.7AI score0.00129EPSS
Exploits0References9Affected Software1
EUVD
EUVDadded 2026/05/01 2:14 p.m.8 views

EUVD-2026-26533

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fuac1legacy: validate control request size faudiocomplete copies req-length bytes into a 4-byte stack variable: u32 data = 0; memcpy&data, req-buf, req-length; req-length is derived from the host-controlled USB reque...

5.8AI score0.00129EPSS
Exploits0References8
CVE
CVEadded 2026/05/01 2:14 p.m.7 views

CVE-2026-31720

CVE-2026-31720 : In the Linux kernel, the USB gadget path f_uac1_legacy incorrectly handles control request length. Specifically, f_audio_complete() copies req->length bytes into a 4-byte stack variable (data) via memcpy, with req->length derived from host-controlled USB requests. This can ...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References8Affected Software1
Debian CVE
Debian CVEadded 2026/05/01 2:14 p.m.3 views

CVE-2026-31720

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fuac1legacy: validate control request size faudiocomplete copies req-length bytes into a 4-byte stack variable: u32 data = 0; memcpy&data, req-buf, req-length; req-length is derived from the host-controlled USB reque...

7.8CVSS5.7AI score0.00129EPSS
Exploits0
CVE
CVEadded 2026/05/01 1:56 p.m.13 views

CVE-2026-31701

In CVE-2026-31701, the Linux kernel ALSA caiaq driver (USB audio) stored a pointer to the parent usb_device without a reference. The snd_usb_caiaq_card_free() path can run after the USB device is disconnected, dereferencing freed memory (use-after-free). The fix is to take a reference on the USB ...

5.5CVSS5.8AI score0.00117EPSS
Exploits0References8Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/05/01 1:56 p.m.3 views

CVE-2026-31701

In the Linux kernel, the following vulnerability has been resolved: ALSA: caiaq: take a reference on the USB device in createcard The caiaq driver stores a pointer to the parent USB device in cdev-chip.dev but never takes a reference on it. The card's privatefree callback, sndusbcaiaqcardfree, ca...

5.5CVSS5.7AI score0.00117EPSS
Exploits0References6Affected Software1
Debian CVE
Debian CVEadded 2026/05/01 1:56 p.m.6 views

CVE-2026-31701

In the Linux kernel, the following vulnerability has been resolved: ALSA: caiaq: take a reference on the USB device in createcard The caiaq driver stores a pointer to the parent USB device in cdev-chip.dev but never takes a reference on it. The card's privatefree callback, sndusbcaiaqcardfree, ca...

5.5CVSS5.7AI score0.00117EPSS
Exploits0
OSV
OSVadded 2026/05/01 1:12 p.m.8 views

CLSA-2026-1777614769 kernel: Fix of 13 CVEs

crypto: algifaead - Fix minimum RX size check for decryption - crypto: afalg - Fix page reassignment overflow in afalgpulltsgl - crypto: authencesn - Fix src offset when decrypting in-place - crypto: authencesn - Do not place hiseq at end of dst for out-of-place decryption - crypto: authenc - use...

7.8CVSS7.4AI score0.00258EPSS
Exploits0References1
OSV
OSVadded 2026/05/01 12:8 p.m.8 views

CLSA-2026-1777637310 Fix of 13 CVEs

CVE-2026-31431 - crypto: authencesn - reject too-short AAD assoclen8 to match ESP/ESN spec CVE-2026-31431 - crypto: scatterwalk - Backport memcpysglist CVE-2026-31431 - crypto: authencesn - Do not place hiseq at end of dst for out-of-place decryption CVE-2026-31431 - crypto: authencesn - Fix src...

7.8CVSS7.1AI score0.94016EPSS
Exploits227References1
SUSE Linux
SUSE Linuxadded 2026/05/01 8:37 a.m.8 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 12 SP5 kernel was updated to fix various security issues The following security issues were fixed: CVE-2024-26584: net/tls: return ENOTSUPP on tlsinit bsc1220186. CVE-2025-38234: sched/rt: Fix race in pushrttask bsc1246057. CVE-2025-39759: btrfs: qgroup: fix race between...

8.2CVSS6.8AI score0.00341EPSS
Exploits2References72
Positive Technologies
Positive Technologiesadded 2026/05/01 12:0 a.m.4 views

PT-2026-36362

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: u ether: Fix NULL pointer deref in eth get drvinfo Commit ec35c1969650 "usb: gadget: f ncm: Fix net device lifecycle with device move" reparents the gadget device to /sys/devices/virtual during unbind, clearing the...

5.8AI score0.00123EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 2026/05/01 12:0 a.m.5 views

PT-2026-36393

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A use-after-free error exists in the usbtmc release function. This occurs because pending anchored URBs USB Request Blocks are not properly flushed or killed, which can lead to memory...

9.8CVSS5.9AI score0.00409EPSS
Exploits0References240
Rows per page
Query Builder