Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

UbuntuCve
UbuntuCveadded 2026/05/29 12:0 a.m.8 views

CVE-2026-23679

libusb before version 1.0.30 contains a NULL pointer dereference vulnerability that allows attackers to crash applications by supplying a malformed USB configuration descriptor where an interface claims bNumEndpoints greater than zero but is followed by a class-specific descriptor whose bLength...

6.9CVSS5.9AI score0.00184EPSS
Exploits0References5
ATTACKERKB
ATTACKERKBadded 2026/05/08 2:22 p.m.10 views

CVE-2026-43436

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Check endpoint numbers at parsing Scarlett2 mixer interfaces The Scarlett2 mixer quirk in USB-audio driver may hit a NULL dereference when a malformed USB descriptor is passed, since it assumes the presence of an...

5.8AI score0.00123EPSS
Exploits0References7Affected Software1
Positive Technologies
Positive Technologiesadded 2026/05/08 12:0 a.m.10 views

PT-2026-39097

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A NULL dereference can occur in the USB-audio driver's Scarlett2 mixer quirk when processing a malformed USB descriptor. This happens because the scarlett2 find fc interface function...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References19
CVE
CVEadded 2026/04/24 2:42 p.m.15 views

CVE-2026-31615

In CVE-2026-31615, the Linux kernel USB gadget code for renesas_usb3 (and related aspeed_udc context) did not validate endpoint indices in standard requests (GET_STATUS, SET/CLEAR_FEATURE). The host-supplied wIndex could be used to dereference a pointer without confirming endpoint count, risking ...

5.5CVSS5.4AI score0.00125EPSS
Exploits0References9Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/04/24 2:42 p.m.2 views

CVE-2026-31615

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: renesasusb3: validate endpoint index in standard request handlers The GETSTATUS and SET/CLEARFEATURE handlers extract the endpoint number from the host-supplied wIndex without any sort of validation. Fix this up by...

5.4AI score0.00125EPSS
Exploits0References7Affected Software1
Positive Technologies
Positive Technologiesadded 2026/01/01 12:0 a.m.5 views

PT-2026-27655

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The pegasus driver does not validate the number and types of USB endpoints a device has before binding to it. A malicious device lacking expected USB endpoints can cause the driver to...

7.4CVSS5.4AI score0.00392EPSS
Exploits0References28
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2022-55450

Malicious code in bioql PyPI...

7.1AI score0.00201EPSS
Exploits0References3
OSV
OSVadded 2025/06/18 11:15 a.m.2 views

UBUNTU-CVE-2022-50186

In the Linux kernel, the following vulnerability has been resolved: ath11k: fix missing skb drop on htctxcompletion error On htctxcompletion error the skb is not dropped. This is wrong since the completionhandler logic expect the skb to be consumed anyway even when an error is triggered. Not...

5.5CVSS6AI score0.00201EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2024/09/24 12:40 a.m.3 views

kernel: HID: hid-thrustmaster: fix OOB read in thrustmaster_interrupts

A vulnerability was found in the thrustmasterinterrupts function in the Linux kernel's HID Thrustmaster driver. This issue arises from a lack of validation for the actual number of endpoints, leading to a slab-out-of-bounds read when the code accesses the endpoint array...

7.1CVSS7.3AI score0.00269EPSS
Exploits0References5
Rows per page
Query Builder