236 matches found
CVE-2026-23307 can: ems_usb: ems_usb_read_bulk_callback(): check the proper length of a message
In the Linux kernel, the following vulnerability has been resolved: can: emsusb: emsusbreadbulkcallback: check the proper length of a message When looking at the data in a USB urb, the actuallength is the size of the buffer passed to the driver, not the transferbufferlength which is set by the...
SUSE CVE-2026-23058
In the Linux kernel, the following vulnerability has been resolved: can: emsusb: emsusbreadbulkcallback: fix URB memory leak Fix similar memory leak as in commit 7352e1d5932a "can: gsusb: gsusbreceivebulkcallback: fix URB memory leak". In emsusbopen, the URBs for USB-in transfers are allocated,...
CVE-2026-23058
In the Linux kernel, the following vulnerability has been resolved: can: emsusb: emsusbreadbulkcallback: fix URB memory leak Fix similar memory leak as in commit 7352e1d5932a "can: gsusb: gsusbreceivebulkcallback: fix URB memory leak". In emsusbopen, the URBs for USB-in transfers are allocated,...
UBUNTU-CVE-2026-23058
In the Linux kernel, the following vulnerability has been resolved: can: emsusb: emsusbreadbulkcallback: fix URB memory leak Fix similar memory leak as in commit 7352e1d5932a "can: gsusb: gsusbreceivebulkcallback: fix URB memory leak". In emsusbopen, the URBs for USB-in transfers are allocated,...
CVE-2026-23058
In the Linux kernel, the following vulnerability has been resolved: can: emsusb: emsusbreadbulkcallback: fix URB memory leak Fix similar memory leak as in commit 7352e1d5932a "can: gsusb: gsusbreceivebulkcallback: fix URB memory leak". In emsusbopen, the URBs for USB-in transfers are allocated,...
CVE-2026-23058
In the Linux kernel, the following vulnerability has been resolved: can: emsusb: emsusbreadbulkcallback: fix URB memory leak Fix similar memory leak as in commit 7352e1d5932a "can: gsusb: gsusbreceivebulkcallback: fix URB memory leak". In emsusbopen, the URBs for USB-in transfers are allocated,...
CVE-2026-23058 can: ems_usb: ems_usb_read_bulk_callback(): fix URB memory leak
In the Linux kernel, the following vulnerability has been resolved: can: emsusb: emsusbreadbulkcallback: fix URB memory leak Fix similar memory leak as in commit 7352e1d5932a "can: gsusb: gsusbreceivebulkcallback: fix URB memory leak". In emsusbopen, the URBs for USB-in transfers are allocated,...
CVE-2026-23058
In the Linux kernel, the following vulnerability has been resolved: can: emsusb: emsusbreadbulkcallback: fix URB memory leak Fix similar memory leak as in commit 7352e1d5932a "can: gsusb: gsusbreceivebulkcallback: fix URB memory leak". In emsusbopen, the URBs for USB-in transfers are allocated,...
Linux Distros Unpatched Vulnerability : CVE-2026-23058
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - can: emsusb: emsusbreadbulkcallback: fix URB memory leak Fix similar memory leak as in commit 7352e1d5932a can: gsusb: gsusbreceivebulkcallback: fix URB memory...
Fortinet FortiClient EMS Authenticated SQLi (FG-IR-25-735)
The version of Fortinet FortiClient EMS installed on the remote host is affected by a vulnerability as referenced in the FG-IR-25-735 advisory: - An improper neutralization of special elements used in an SQL command 'SQL Injection' vulnerability CWE-89 in FortiClientEMS may allow an authenticated...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001695)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001695 advisory. emsusbstartxmit in drivers/net/can/usb/emsusb.c in the Linux kernel through 5.17.1 has a double free. Tenable has extracted the preceding description block directly...
CVE-2025-59922
An improper neutralization of special elements used in an SQL command 'SQL Injection' vulnerability CWE-89 vulnerability in Fortinet FortiClientEMS 7.4.3 through 7.4.4, FortiClientEMS 7.4.0 through 7.4.1, FortiClientEMS 7.2.0 through 7.2.10, FortiClientEMS 7.0 all versions may allow an...
CVE-2022-23240
Active IQ Unified Manager for VMware vSphere, Linux, and Microsoft Windows versions prior to 9.11P1 are susceptible to a vulnerability which allows unauthorized users to update EMS Subscriptions via unspecified vectors...
CVE-2022-37185
SQL injection vulnerability exists in the school information query interface repschoolproj.php of the EMS 6.2 system of the Office of the Thai Basic Education Commission, which can lead to data leakage...
CVE-2021-41030
An authentication bypass by capture-replay vulnerability CWE-294 in FortiClient EMS versions 7.0.1 and below and 6.4.4 and below may allow an unauthenticated attacker to impersonate an existing user by intercepting and re-using valid SAML authentication messages...
PT-2026-6128
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a memory leak in the ems usb read bulk callback function. This issue occurs because the USB framework unanchors URBs before the completion function is called,...
PT-2026-27672
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the ems usb read bulk callback function where the system fails to properly validate message lengths. When processing data in a USB URB USB Request Block, the system...
TencentOS Server 3: kernel (TSSA-2024:1022)
The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:1022 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...
EUVD-2020-30113
Malware in sbrugna...
EUVD-2016-4654
Malware in sbrugna...