8426 matches found
USN-8546-1 linux-raspi vulnerabilities
Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - Block layer subsystem; - Cryptographic API; - DMA engine subsystem; - InfiniBand drivers; -...
PHPJabbers Bus Reservation System 1.1 - Cross-Site Scripting
A vulnerability was found in PHP Jabbers Bus Reservation System 1.1 and classified as problematic. Affected by this issue is some unknown functionality of the file /index.php. The manipulation of the argument index/pickupid leads to cross site scripting. The attack may be launched remotely. id:...
KNX Association KNX Protocol Connection Authorization Option 1 Overly Restrictive Account Lockout Mechanism Vulnerability
KNX Association KNX Protocol Connection Authorization Option 1 contains an overly restrictive account lockout mechanism vulnerability that could allow an attacker to purge all devices without additional security options enabled and set a BCU key to lock the device...
CVE-2026-50321
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows USB Driver allows an authorized attacker to elevate privileges locally...
CVE-2026-54996
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows USB Print Driver allows an authorized attacker to elevate privileges locally...
CVE-2026-49806
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows USB Print Driver allows an authorized attacker to elevate privileges locally...
CVE-2026-49802
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows USB Print Driver allows an authorized attacker to elevate privileges locally...
CVE-2026-58528
CVE-2026-58528 describes an out-of-bounds read in the Windows USB Audio Class driver (usbaudio.sys) that could lead to an information disclosure under a physical-access scenario. The vulnerability affects the Windows USB Audio subsystem and is rated with CVSSv3.1: AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/...
CVE-2026-50674
CVE-2026-50674 describes a use-after-free vulnerability in the Windows USB Print Driver that can be exploited by an authenticated local attacker to escalate privileges. The issue affects the Windows USB Print Driver component and is triggered by a use-after-free condition in processing USB print ...
CVE-2026-50479 Windows USB Hub Driver Elevation of Privilege Vulnerability
...
CVE-2026-50453 Windows USB Audio Class Driver Information Disclosure Vulnerability
...
CVE-2026-50321
CVE-2026-50321 is a Windows USB Driver elevation-of-privilege vulnerability (race condition on a shared resource). An authorized, local attacker could exploit this to gain higher privileges on the affected system, per the NVD entry and cross-referenced sources. Connected advisories corroborate th...
CVE-2026-49806 Windows USB Print Driver Elevation of Privilege Vulnerability
...
CVE-2026-49806 Windows USB Print Driver Elevation of Privilege Vulnerability
...
CVE-2026-49794 Windows USB Audio Class Driver Information Disclosure Vulnerability
...
CVE-2026-54991
CVE-2026-54991 describes a race condition in the Windows USB Print Driver caused by concurrent execution with improper synchronization. The issue allows a local, authorized attacker to elevate privileges. Documents do not provide exploit details or affected version ranges beyond the Windows USB P...
Windows USB Print Driver Elevation of Privilege Vulnerability
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows USB Print Driver allows an authorized attacker to elevate privileges locally...
PT-2026-58454
Name of the Vulnerable Software and Affected Versions Windows USB Hub Driver affected versions not specified Description An untrusted pointer dereference in the Windows USB Hub Driver allows an authorized attacker to elevate privileges locally. A pointer dereference occurs when a program accesses...
CVE-2026-10668
The Nuvoton NuMaker HSUSBD USB device-controller driver drivers/usb/udc/udcnumaker.c armed the control Data IN stage unconditionally base-CEPTXCNT = len in numakerhsusbdeptrigger. Because the HSUSBD hardware cannot disarm a control Data IN already armed for a previous transfer, a USB host that...
USN-8492-5: Linux kernel (FIPS) vulnerabilities
Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - MIPS architecture; - PowerPC architecture; - x86 architecture; - Block layer subsystem; -...