Lucene search
+L

109 matches found

Debian CVE
Debian CVE
added 2024/02/12 10:29 p.m.33 views

CVE-2024-1454

The use-after-free vulnerability was found in the AuthentIC driver in OpenSC packages, occuring in the card enrolment process using pkcs15-init when a user or administrator enrols or modifies cards. An attacker must have physical access to the computer system and requires a crafted USB device or...

3.4CVSS3.5AI score0.00422EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2024/02/12 10:29 p.m.21 views

CVE-2024-1454

The use-after-free vulnerability was found in the AuthentIC driver in OpenSC packages, occuring in the card enrolment process using pkcs15-init when a user or administrator enrols or modifies cards. An attacker must have physical access to the computer system and requires a crafted USB device or...

3.4CVSS4.3AI score0.00422EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2023/12/19 9:53 a.m.4 views

OpenSC: out-of-bounds read in MyEID driver handling encryption using symmetric keys

An out-of-bounds read vulnerability was found in OpenSC packages within the MyEID driver when handling symmetric key encryption. Exploiting this flaw requires an attacker to have physical access to the computer and a specially crafted USB device or smart card. This flaw allows the attacker to...

4.5CVSS5.8AI score0.00466EPSS
Exploits0References8
OSV
OSV
added 2023/11/06 5:15 p.m.8 views

AZL-31945 CVE-2023-4535 affecting package opensc for versions less than 0.23.0-2

An out-of-bounds read vulnerability was found in OpenSC packages within the MyEID driver when handling symmetric key encryption. Exploiting this flaw requires an attacker to have physical access to the computer and a specially crafted USB device or smart card. This flaw allows the attacker to...

3.8CVSS7.1AI score0.00466EPSS
Exploits0References1
OSV
OSV
added 2023/11/06 5:15 p.m.7 views

AZL-35076 CVE-2023-4535 affecting package opensc for versions less than 0.25.1-3

An out-of-bounds read vulnerability was found in OpenSC packages within the MyEID driver when handling symmetric key encryption. Exploiting this flaw requires an attacker to have physical access to the computer and a specially crafted USB device or smart card. This flaw allows the attacker to...

3.8CVSS7.1AI score0.00466EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/11/06 12:0 a.m.3 views

PT-2023-8907 · Opensc +4 · Opensc +4

Name of the Vulnerable Software and Affected Versions: OpenSC affected versions not specified Description: An out-of-bounds read vulnerability was found in OpenSC packages within the MyEID driver when handling symmetric key encryption. Exploiting this flaw requires an attacker to have physical...

7.1CVSS6.2AI score0.01174EPSS
Exploits1References53
F5 Networks
F5 Networks
added 2023/02/21 6:34 p.m.33 views

K73337338: Linux kernel vulnerability CVE-2017-16648

Security Advisory Description The dvbfrontendfree function in drivers/media/dvb-core/dvbfrontend.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service use-after-free and system crash or possibly have unspecified other impact via a crafted USB device. NOTE: the...

7.2CVSS7AI score0.00383EPSS
Exploits0Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 4:37 a.m.1 views

SUSE CVE-2017-16532

The getendpoints function in drivers/usb/misc/usbtest.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service NULL pointer dereference and system crash or possibly have unspecified other impact via a crafted USB device...

7.2CVSS7.5AI score0.004EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 4:37 a.m.0 views

SUSE CVE-2017-16535

The usbgetbosdescriptor function in drivers/usb/core/config.c in the Linux kernel before 4.13.10 allows local users to cause a denial of service out-of-bounds read and system crash or possibly have unspecified other impact via a crafted USB device...

4.6CVSS7.7AI score0.00381EPSS
Exploits0References10
SUSE CVE
SUSE CVE
added 2023/02/15 4:37 a.m.4 views

SUSE CVE-2017-16536

The cx231xxusbprobe function in drivers/media/usb/cx231xx/cx231xx-cards.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service NULL pointer dereference and system crash or possibly have unspecified other impact via a crafted USB device...

4.6CVSS7.6AI score0.00382EPSS
Exploits0References15
SUSE CVE
SUSE CVE
added 2023/02/15 4:37 a.m.2 views

SUSE CVE-2017-16643

The parsehidreportdescriptor function in drivers/input/tablet/gtco.c in the Linux kernel before 4.13.11 allows local users to cause a denial of service out-of-bounds read and system crash or possibly have unspecified other impact via a crafted USB device...

7.2CVSS7AI score0.00482EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 4:37 a.m.4 views

SUSE CVE-2017-16647

drivers/net/usb/asixdevices.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service NULL pointer dereference and system crash or possibly have unspecified other impact via a crafted USB device...

4.6CVSS7.7AI score0.00396EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 4:37 a.m.2 views

SUSE CVE-2017-16650

The qmiwwanbind function in drivers/net/usb/qmiwwan.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service divide-by-zero error and system crash or possibly have unspecified other impact via a crafted USB device...

4.6CVSS7.6AI score0.00406EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2023/02/15 4:8 a.m.4 views

SUSE CVE-2019-15504

drivers/net/wireless/rsi/rsi91xusb.c in the Linux kernel through 5.2.9 has a Double Free via crafted USB device traffic which may be remote via usbip or usbredir...

8.4CVSS7.8AI score0.04309EPSS
Exploits0References4
OSV
OSV
added 2023/02/02 12:15 a.m.6 views

CVE-2023-25012

The Linux kernel through 6.1.9 has a Use-After-Free in bigbenremove in drivers/hid/hid-bigbenff.c via a crafted USB device because the LED controllers remain registered for too long...

4.6CVSS6.6AI score
Exploits0References9
Microsoft CVE
Microsoft CVE
added 2021/11/19 8:0 a.m.2 views

In the Linux kernel through 5.15.2 mwifiex_usb_recv in drivers/net/wireless/marvell/mwifiex/usb.c allows an attacker (who can connect a crafted USB device) to cause a denial of service (skb_over_panic).

...

4.6CVSS7AI score0.00643EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2021/11/17 5:15 p.m.2 views

CVE-2021-43976

In the Linux kernel through 5.15.2, mwifiexusbrecv in drivers/net/wireless/marvell/mwifiex/usb.c allows an attacker who can connect a crafted USB device to cause a denial of service skboverpanic...

4.6CVSS6.7AI score0.00643EPSS
Exploits0References14
OSV
OSV
added 2021/11/17 5:15 p.m.5 views

CVE-2021-43976

In the Linux kernel through 5.15.2, mwifiexusbrecv in drivers/net/wireless/marvell/mwifiex/usb.c allows an attacker who can connect a crafted USB device to cause a denial of service skboverpanic...

4.6CVSS6.7AI score
Exploits0References10
OSV
OSV
added 2021/11/17 5:15 p.m.9 views

AZL-6606 CVE-2021-43976 affecting package kernel for versions less than 5.15.2.1-1

In the Linux kernel through 5.15.2, mwifiexusbrecv in drivers/net/wireless/marvell/mwifiex/usb.c allows an attacker who can connect a crafted USB device to cause a denial of service skboverpanic...

4.6CVSS6.6AI score0.00643EPSS
Exploits0References1
CNVD
CNVD
added 2021/11/05 12:0 a.m.39 views

Boston Scientific ZOOM LATITUDE Programmer/Recorder/Monitor (PRM) Model 3120 Encryption Error Vulnerability

The Boston Scientific ZOOM LATITUDE Programmer/Recorder/Monitor PRM Model 3120 is a portable cardiac rhythm management Crm programming system from Boston Scientific, Inc. The Boston Scientific ZOOM LATITUDE Programmer/Recorder/Monitor PRM Model 3120 is vulnerable to an encryption error that could...

6.9CVSS2AI score0.0014EPSS
Exploits0References1
Rows per page
Query Builder