CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

107 matches found

RedhatCVE•added 2026/06/06 6:43 p.m.•3 views

CVE-2026-23679

A flaw was found in libusb. An attacker can provide a specially crafted Universal Serial Bus USB configuration descriptor to applications using libusb. This malformed descriptor can lead to a null pointer dereference, causing the application to crash and resulting in a denial of service. This...

6.9CVSS5.1AI score0.0019EPSS

Exploits0References8

OSV•added 2026/06/05 3:48 p.m.•5 views

OESA-2026-2545 opensc security update

OpenSC provides a set of libraries and utilities to work with smart cards. Its main focus is on cards that support cryptographic operations, and facilitate their use in security applications such as authentication, mail encryption and digital signatures. OpenSC implements the standard APIs to sma...

6.8CVSS5.5AI score0.00253EPSS

Exploits1References3

AstraLinux•added 2026/05/03 11:59 p.m.•4 views

Astra Linux – Vulnerability in Linux, Linux 5.10

In the Linux kernel up to 5.15.2, mwifiexusbrecv in drivers/net/wireless/marvell/mwifiex/usb.c allows an attacker who can connect a crafted USB device to cause a denial of service skboverpanic...

4.6CVSS6.2AI score0.00648EPSS

Exploits0References2

CNNVD•added 2026/04/23 12:0 a.m.•8 views

OpenSC 安全漏洞

OpenSC is an open-source smart card tool and middleware developed by OpenSC. There is a security vulnerability in OpenSC, which stems from the use of uninitialized variables multiple times, potentially leading to information leaks or application crashes. The attack requires a specially crafted US...

5.7CVSS5.8AI score0.00176EPSS

Exploits0References2

SUSE CVE•added 2026/03/31 11:29 p.m.•2 views

SUSE CVE-2025-66215

OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, an attacker with physical access to the computer at the time user or administrator uses a token can cause a stack-buffer-overflow WRITE in card-oberthur. The attack requires crafted USB device or smart card that...

3.8CVSS5.8AI score0.00159EPSS

Exploits0References8

Tenable Nessus•added 2026/03/31 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2025-49010

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, an attacker with physical access to the computer at the time user or...

6.8CVSS5.3AI score0.0013EPSS

Exploits0References4

Tenable Nessus•added 2026/03/31 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2025-66215

6.8CVSS5.3AI score0.00159EPSS

Exploits0References4

NVD•added 2026/03/30 6:16 p.m.•1 views

CVE-2025-66215

6.8CVSS0.00159EPSS

Exploits0References4

RedHat Linux•added 2026/02/16 6:4 p.m.•1 views

kernel: Linux kernel ALSA USB audio driver: Buffer overflow leading to information disclosure and denial of service

A flaw was found in the ALSA USB audio driver of the Linux kernel. This vulnerability, a buffer overflow, occurs when the size of the Pulse-Code Modulation PCM stream data packets exceeds the maximum allowed by the USB descriptor. A local attacker could exploit this by providing specially crafted...

6.1AI score0.00214EPSS

Exploits0References5

Tenable Nessus•added 2026/01/16 12:0 a.m.•1 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003668)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003668 advisory. drivers/media/usb/dvb-usb/technisat-usb2.c in the Linux kernel through 5.2.9 has an out-of-bounds read via crafted USB device traffic which may be remote via usbip o...

10CVSS7AI score0.07619EPSS

Exploits0References21

Tenable Nessus•added 2026/01/16 12:0 a.m.•4 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001617)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001617 advisory. drivers/usb/core/config.c in the Linux kernel before 4.13.6 allows local users to cause a denial of service out-of-bounds read and system crash or possibly have...

7.2CVSS6.5AI score0.00398EPSS

Exploits0References9

Tenable Nessus•added 2026/01/16 12:0 a.m.•1 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000692)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000692 advisory. Memory leak in the airspyprobe function in drivers/media/usb/airspy/airspy.c in the airspy USB driver in the Linux kernel before 4.7 allows local users to cause a...

4.9CVSS6.6AI score0.00374EPSS

Exploits0References13

Tenable Nessus•added 2026/01/15 12:0 a.m.•1 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002596)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002596 advisory. The qmiwwanbind function in drivers/net/usb/qmiwwan.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service divide-by-zero error and...

7.2CVSS6.3AI score0.00406EPSS

Exploits0References12

Tenable Nessus•added 2026/01/15 12:0 a.m.•2 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002782)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002782 advisory. The usbdestroyconfiguration function in drivers/usb/core/config.c in the USB core subsystem in the Linux kernel through 4.14.5 does not consider the maximum number o...

7.2CVSS6.5AI score0.0048EPSS

Exploits0References17

Tenable Nessus•added 2026/01/15 12:0 a.m.•1 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003366)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003366 advisory. sound/core/seqdevice.c in the Linux kernel before 4.13.4 allows local users to cause a denial of service sndrawmididevseqfree use-after-free and system crash or...

7.2CVSS6.6AI score0.00365EPSS

Exploits0References7

Tenable Nessus•added 2026/01/15 12:0 a.m.•3 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002316)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002316 advisory. drivers/usb/serial/whiteheat.c in the Linux kernel before 4.2.4 allows physically proximate attackers to cause a denial of service NULL pointer dereference and OOPS ...

5CVSS7.3AI score0.04435EPSS

Exploits0References15

Tenable Nessus•added 2026/01/15 12:0 a.m.•2 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002838)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002838 advisory. The usbnetgenericcdcbind function in drivers/net/usb/cdcether.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service divide-by-zero...

7.2CVSS6.3AI score0.00413EPSS

Exploits0References14

Tenable Nessus•added 2026/01/15 12:0 a.m.•1 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002855)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002855 advisory. The getendpoints function in drivers/usb/misc/usbtest.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service NULL pointer dereference...

7.2CVSS6.4AI score0.004EPSS

Exploits0References12