CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 2026/05/27 8:9 p.m.•5 views

CVE-2026-46073

A flaw was found in the Linux kernel's hwmon subsystem, specifically within the powerz driver. When a signal interrupt occurs during the waitforcompletioninterruptibletimeout function, the system fails to properly abort the USB Request Block URB. This oversight can lead to the kernel attempting t...

5.8AI score0.00023EPSS

CVE•added 2026/05/27 12:58 p.m.•11 views

CVE-2026-46074

CVE-2026-46074 (Linux kernel, spi: ch341) : A fix addresses memory leaks and use-after-free during probe failures for the ch341 SPI driver. The workaround involves properly deregistering the controller, disabling pins, and killing/freeing the RX URB on failures to mirror disconnect. An explicit U...

5.8AI score0.00023EPSS

CVE•added 2026/05/27 12:58 p.m.•10 views

CVE-2026-46073

CVE-2026-46073 concerns the Linux kernel hwmon (powerz) driver. The vulnerability arises because wait_for_completion_interruptible_timeout() can return -ERESTARTSYS on signal interruption, and the original code may skip usb_kill_urb() when handling this negative/zero return, leading to reads from...

5.8AI score0.00023EPSS

AstraLinux•added 2026/05/20 5:53 a.m.•7 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: can: gsusb: gsusbreceivebulkcallback: An error occurred in usbsubmiturb, causing the URB to be unanchored before it is processed by gsusbreceivebulkcallback. In commit 7352e1d5932a “can: gsusb: gsusbreceivebulkcallback: fix URB...

5.5CVSS5.7AI score0.00023EPSS

Exploits0References1

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: Wifi: rtl818x – Kill URBs before clearing the txstatusqueue. In rtl8187stop, the call to usbkillanchoredurbs is moved before clearing the btxstatusqueue. This change prevents callbacks from using already freed skb if the anchor...

5.5CVSS5.7AI score0.00024EPSS

Exploits0References2

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в linux-5.10, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: Input: pegasus-notetaker – fixed potential out-of-bounds access issues. In the pegasusnotetaker driver, the pegasusprobe function allocates the URB transfer buffer using the wMaxPacketSize value from the endpoint descriptor. An...

5.4AI score0.00037EPSS

Exploits0References1

SUSE CVE•added 2026/05/13 3:34 a.m.•7 views

SUSE CVE-2026-43425

In the Linux kernel, the following vulnerability has been resolved: usb: image: mdc800: kill download URB on timeout mdc800deviceread submits downloadurb and waits for completion. If the timeout fires and the device has not responded, the function returns without killing the URB, leaving it activ...

5.8AI score0.00017EPSS

Exploits0References3

NVD•added 2026/05/08 3:16 p.m.•3 views

CVE-2026-43425

5.5CVSS0.00017EPSS

CNNVD•added 2026/05/08 12:0 a.m.•7 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the usb image mdc800 driver failing to terminate downloadurb when it is in a hyper-threaded state...

Tenable Nessus•added 2026/05/08 12:0 a.m.•2 views

Exploits0References1

Linux Distros Unpatched Vulnerability : CVE-2026-43425

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - usb: image: mdc800: kill download URB on timeout mdc800deviceread submits downloadurb and waits for completion. If the timeout fires and the device has not...

SUSE CVE•added 2026/05/07 2:17 a.m.•5 views

Exploits0References3

SUSE CVE-2026-43223

In the Linux kernel, the following vulnerability has been resolved: media: pvrusb2: fix URB leak in pvr2sendrequestex When pvr2sendrequestex submits a write URB successfully but fails to submit the read URB e.g. returns -ENOMEM, it returns immediately without waiting for the write URB to complete...

SUSE CVE•added 2026/05/07 2:16 a.m.•5 views

Exploits0References3

SUSE CVE-2026-43255

In the Linux kernel, the following vulnerability has been resolved: wifi: libertas: fix WARNING in usbtxblock The function usbtxblock submits cardp-txurb without ensuring that any previous transmission on this URB has completed. If a second call occurs while the URB is still active e.g. during...

4.7CVSS5.8AI score0.00017EPSS

EUVD•added 2026/05/06 12:30 p.m.•3 views

EUVD-2026-27786

5.8AI score0.00017EPSS

Exploits0References9

EUVD•added 2026/05/06 12:30 p.m.•1 views

EUVD-2026-27740

In the Linux kernel, the following vulnerability has been resolved: net: usb: kaweth: remove TX queue manipulation in kawethsetrxmode kawethsetrxmode, the ndosetrxmode callback, calls netifstopqueue and netifwakequeue. These are TX queue flow control functions unrelated to RX multicast...

5.7AI score0.00017EPSS

Exploits0References9

ATTACKERKB•added 2026/05/06 11:28 a.m.•3 views

CVE-2026-43255

5.7AI score0.00017EPSS

Exploits0References9Affected Software1

Cvelist•added 2026/05/06 11:28 a.m.•26 views

CVE-2026-43255 wifi: libertas: fix WARNING in usb_tx_block

0.00017EPSS

Debian CVE•added 2026/05/06 11:28 a.m.•4 views

CVE-2026-43223

5.5CVSS5.7AI score0.00017EPSS

Exploits0

CVE•added 2026/05/06 11:28 a.m.•5 views

CVE-2026-43223

CVE-2026-43223 concerns the Linux kernel media driver pvrusb2. The issue arises when pvr2_send_request_ex() submits a write URB and, if the subsequent read URB submission fails (e.g., due to -ENOMEM), returns early without waiting for the write to complete. Because the same URB structure is reuse...

Exploits0References8Affected Software1

Cvelist•added 2026/05/06 11:28 a.m.•26 views

CVE-2026-43223 media: pvrusb2: fix URB leak in pvr2_send_request_ex

0.00017EPSS