16174 matches found
CVE-2026-6947
DWM-222W USB Wi-Fi Adapter developed by D-Link has a Brute-Force Protection Bypass vulnerability, allowing unauthenticated adjacent network attackers to bypass login attempt limits to perform brute-force attacks to gain control over the device...
CVE-2026-6947
The CVE-2026-6947 entry concerns the D-Link DWM-222W USB Wi‑Fi Adapter, where a Brute-Force Protection Bypass allows unauthenticated adjacent-network attackers to bypass login attempt limits and perform brute-force actions to gain control of the device. Affected component: login protection mechan...
Linux kernel 安全漏洞
The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the usbip driver’s function usbippackretsubmit, which does not validate the numberofpackets value...
Linux kernel 安全漏洞
The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the rt2x00usb driver. In this driver, the USB anchor’s lifecycle is bound to the parent device...
Linux kernel 安全漏洞
The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the usb gadget fhid driver repeatedly initializing the cdev device during rebinding operations,...
PT-2026-34901
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The cp2615 driver uses the USB device serial string as the i2c adapter name without verifying that the string exists. This can lead to a NULL-pointer dereference, which occurs when the...
PT-2026-35024
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the rt2x00usb driver where device managed resources are tied to the parent USB device instead of the USB interface. This can lead to memory leaks when drivers are...
Ubuntu Pro Realtime 24.04 LTS : Linux kernel (Raspberry Pi Real-time) vulnerabilities (USN-8204-1)
"The remote Ubuntu Pro Realtime 24.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-8204-1 advisory. Josh Eads, Kristoffer Janke, Eduardo Vela Nava, Tavis Ormandy, and Matteo Rizzo discovered that some AMD Zen processors did not properly...
PT-2026-34968
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the USB gadget Phonet function where a USB host can cause an overflow of the skb shared info-frags array. This occurs when the host sends an unbounded sequence of...
PT-2026-34969
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the ncm unwrap ntb function where the block len read from the host-supplied NTB header lacks a lower bound check. When block len is smaller than opts-ndp size, the...
PT-2026-34967
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The renesas usb3 gadget driver fails to validate the endpoint index provided by the host in the wIndex variable within the 'GET STATUS' and 'SET/CLEAR FEATURE' standard request handlers...
PT-2026-34930
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A race condition exists in the as102 usb driver. When the as102 usb probe function encounters an error after successfully calling usb register dev, it may call usb deregister dev and...
PT-2026-34975
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A malicious USB device claiming to be a CDC Phonet modem can cause an overflow of the skb shared info-frags array in the rx complete function by sending an unbounded sequence of full-pag...
PT-2026-34959
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A heap out-of-bounds write exists in the USB/IP client. The function usbip pack ret submit unconditionally overwrites the number of packets variable from the network PDU. A malicious...
CVE-2025-13763 Libopensc: opensc: multiple uses of uninitialized variable
Multiple uses of uninitialized variables were found in libopensc that may lead to information disclosure or application crash. An attack requires a crafted USB device or smart card that would present the system with specially crafted responses to the APDUs...
USN-8180-4 linux-azure-fips vulnerabilities
Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - Block layer subsystem; - Drivers core; - Bluetooth drivers; - DMA engine subsystem; - GPU...
USN-8180-3: Linux kernel vulnerabilities
Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - Block layer subsystem; - Drivers core; - Bluetooth drivers; - DMA engine subsystem; - GPU...
USN-8179-3: Linux kernel vulnerabilities
Josh Eads, Kristoffer Janke, Eduardo Vela Nava, Tavis Ormandy, and Matteo Rizzo discovered that some AMD Zen processors did not properly verify the signature of CPU microcode. This flaw is known as EntrySign. A privileged attacker could possibly use this issue to cause load malicious CPU microcod...
freerdp: FreeRDP has a heap-buffer-overflow in urb_select_interface
A heap buffer overflow has been discovered in FreeRDP. The URBDRC client uses server-supplied interface numbers as array indices without bounds checks, causing an out-of-bounds read in libusbudevselectinterface...
OpenSC 安全漏洞
OpenSC is an open-source smart card tool and middleware developed by OpenSC. There is a security vulnerability in OpenSC, which stems from the use of uninitialized variables multiple times, potentially leading to information leaks or application crashes. The attack requires a specially crafted US...