Lucene search
K

287 matches found

Cvelist
Cvelist
added 2026/04/24 2:42 p.m.35 views

CVE-2026-31623 net: usb: cdc-phonet: fix skb frags[] overflow in rx_complete()

In the Linux kernel, the following vulnerability has been resolved: net: usb: cdc-phonet: fix skb frags overflow in rxcomplete A malicious USB device claiming to be a CDC Phonet modem can overflow the skbsharedinfo-frags array by sending an unbounded sequence of full-page bulk transfers. Drop the...

0.00125EPSS
Exploits0References9
CVE
CVE
added 2026/04/24 2:42 p.m.32 views

CVE-2026-31623

The CVE-2026-31623 issue affects the Linux kernel net: usb: cdc-phonet driver. A malicious USB device claiming to be a CDC Phonet modem can overflow the skb_shared_info->frags[] array by sending an unbounded sequence of full-page bulk transfers in rx_complete(). The consequence described is a ...

5.5CVSS5.3AI score0.00125EPSS
Exploits0References9Affected Software1
EUVD
EUVD
added 2026/04/24 2:42 p.m.7 views

EUVD-2026-25516

In the Linux kernel, the following vulnerability has been resolved: net: usb: cdc-phonet: fix skb frags overflow in rxcomplete A malicious USB device claiming to be a CDC Phonet modem can overflow the skbsharedinfo-frags array by sending an unbounded sequence of full-page bulk transfers. Drop the...

5.3AI score0.00125EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/04/24 2:42 p.m.3 views

CVE-2026-31623

In the Linux kernel, the following vulnerability has been resolved: net: usb: cdc-phonet: fix skb frags overflow in rxcomplete A malicious USB device claiming to be a CDC Phonet modem can overflow the skbsharedinfo-frags array by sending an unbounded sequence of full-page bulk transfers. Drop the...

5.2AI score0.00125EPSS
Exploits0References7Affected Software1
Debian CVE
Debian CVE
added 2026/04/24 2:42 p.m.6 views

CVE-2026-31623

In the Linux kernel, the following vulnerability has been resolved: net: usb: cdc-phonet: fix skb frags overflow in rxcomplete A malicious USB device claiming to be a CDC Phonet modem can overflow the skbsharedinfo-frags array by sending an unbounded sequence of full-page bulk transfers. Drop the...

5.5CVSS5.2AI score0.00125EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/04/24 12:0 a.m.7 views

PT-2026-34975

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A malicious USB device claiming to be a CDC Phonet modem can cause an overflow of the skb shared info-frags array in the rx complete function by sending an unbounded sequence of full-pag...

9.8CVSS5AI score0.00525EPSS
Exploits0References323
vulnersOsv
vulnersOsv
added 2026/04/20 8:12 p.m.6 views

cloudformation-cli-python-lib (>=2.1.12 <=2.1.16), core-aws (>=1.0.0 <=1.0.4) +3 more potentially affected by CVE-2026-6550 via aws-encryption-sdk (>=3.1.0 <=3.3.0)

aws-encryption-sdk PYPI version =3.1.0, =2.1.12, =1.0.0, =1.0.1, =0.4.8, =25.11.0, =25.14.1 Source cves: CVE-2026-6550 Source advisory: SNYK:PYTHON-AWSENCRYPTIONSDK-16115497...

5.7CVSS5.4AI score0.00096EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/04/17 12:0 a.m.7 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007252)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007252 advisory. In the Linux kernel, the following vulnerability has been resolved: net: cdcncm: Deal with too low values of dwNtbOutMaxSize Currently in cdcncmchecktxmax, if...

5.5CVSS5.8AI score0.00137EPSS
Exploits0References4
OSV
OSV
added 2026/04/13 10:8 a.m.6 views

LSN-0119-1 Kernel Live Patch Security Notice

In the Linux kernel, the following vulnerability has been resolved: btrfs: ref-verify: fix use-after-free after invalid ref action At btrfsreftreemod after we successfully inserted the new ref entry local variable 'ref' into the respective block entry's rbtree local variable 'be', if we find an...

7.8CVSS6.2AI score0.00344EPSS
Exploits8References9
Tenable Nessus
Tenable Nessus
added 2026/04/05 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2026-23448

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: usb: cdcncm: add ndpoffset to NDP16 nframes bounds check cdcncmrxverifyndp16 validates that the NDP header and its DPE entries fit within the skb. The firs...

7.8CVSS6.4AI score0.00129EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/04/03 11:27 p.m.9 views

SUSE CVE-2026-23448

In the Linux kernel, the following vulnerability has been resolved: net: usb: cdcncm: add ndpoffset to NDP16 nframes bounds check cdcncmrxverifyndp16 validates that the NDP header and its DPE entries fit within the skb. The first check correctly accounts for ndpoffset: if ndpoffset + sizeofstruct...

6.1CVSS5.9AI score0.00129EPSS
Exploits0References17
NVD
NVD
added 2026/04/03 4:16 p.m.5 views

CVE-2026-23447

In the Linux kernel, the following vulnerability has been resolved: net: usb: cdcncm: add ndpoffset to NDP32 nframes bounds check The same bounds-check bug fixed for NDP16 in the previous patch also exists in cdcncmrxverifyndp32. The DPE array size is validated against the total skb length withou...

7.8CVSS0.00129EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2026/04/03 4:16 p.m.6 views

CVE-2026-23448

In the Linux kernel, the following vulnerability has been resolved: net: usb: cdcncm: add ndpoffset to NDP16 nframes bounds check cdcncmrxverifyndp16 validates that the NDP header and its DPE entries fit within the skb. The first check correctly accounts for ndpoffset: if ndpoffset + sizeofstruct...

7.8CVSS5.9AI score0.00129EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2026/04/03 4:16 p.m.5 views

CVE-2026-23447

In the Linux kernel, the following vulnerability has been resolved: net: usb: cdcncm: add ndpoffset to NDP32 nframes bounds check The same bounds-check bug fixed for NDP16 in the previous patch also exists in cdcncmrxverifyndp32. The DPE array size is validated against the total skb length withou...

7.8CVSS5.7AI score0.00129EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2026/04/03 3:15 p.m.3 views

CVE-2026-23448

In the Linux kernel, the following vulnerability has been resolved: net: usb: cdcncm: add ndpoffset to NDP16 nframes bounds check cdcncmrxverifyndp16 validates that the NDP header and its DPE entries fit within the skb. The first check correctly accounts for ndpoffset: if ndpoffset + sizeofstruct...

5.9AI score0.00129EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2026/04/03 3:15 p.m.22 views

CVE-2026-23447 net: usb: cdc_ncm: add ndpoffset to NDP32 nframes bounds check

In the Linux kernel, the following vulnerability has been resolved: net: usb: cdcncm: add ndpoffset to NDP32 nframes bounds check The same bounds-check bug fixed for NDP16 in the previous patch also exists in cdcncmrxverifyndp32. The DPE array size is validated against the total skb length withou...

0.00129EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/04/03 3:15 p.m.2 views

CVE-2026-23447

In the Linux kernel, the following vulnerability has been resolved: net: usb: cdcncm: add ndpoffset to NDP32 nframes bounds check The same bounds-check bug fixed for NDP16 in the previous patch also exists in cdcncmrxverifyndp32. The DPE array size is validated against the total skb length withou...

5.7AI score0.00129EPSS
Exploits0References6Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/03 12:0 a.m.7 views

PT-2026-30143

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the cdc ncm rx verify ndp16 function where the bounds check for NDP16 nframes omits the ndpoffset value. This allows the DPE entries to extend pas...

7.8CVSS5.9AI score0.00129EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/04/03 12:0 a.m.5 views

PT-2026-30142

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A bounds-check issue exists in the cdc ncm rx verify ndp32 function within the Linux kernel's networking subsystem for USB Network cdc ncm. The issue arises from a failure to account for...

7.8CVSS5.3AI score0.00129EPSS
Exploits0References494
Tenable Nessus
Tenable Nessus
added 2026/03/02 12:0 a.m.8 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-005522)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005522 advisory. In the Linux kernel, the following vulnerability has been resolved: CDC-NCM: avoid overflow in sanity checking A broken device may give an extreme offset like 0xFFF0...

5.5CVSS5.9AI score0.00213EPSS
Exploits0References3
Rows per page
Query Builder