Lucene search
K

135 matches found

RedhatCVE
RedhatCVE
added 2026/03/25 5:59 p.m.5 views

CVE-2026-23290

A flaw was found in the Linux kernel's pegasus driver. A malicious USB device can exploit this vulnerability by not presenting the expected number and types of USB endpoints. This lack of proper validation causes the driver to blindly access uninitialized endpoints, leading to a system crash and ...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/03/25 4:55 p.m.9 views

SUSE CVE-2026-23365

In the Linux kernel, the following vulnerability has been resolved: net: usb: kalmia: validate USB endpoints The kalmia driver should validate that the device it is probing has the proper number and types of USB endpoints it is expecting before it binds to it. If a malicious device were to not ha...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References16
RedhatCVE
RedhatCVE
added 2026/03/25 2:12 p.m.5 views

CVE-2026-23365

A flaw was found in the Linux kernel's kalmia USB driver. This vulnerability occurs because the driver does not properly validate the number and types of USB endpoints when a device is connected. A local attacker with a specially crafted malicious USB device could exploit this flaw, causing the...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References4
EUVD
EUVD
added 2026/03/25 12:30 p.m.7 views

EUVD-2026-15345

In the Linux kernel, the following vulnerability has been resolved: net: usb: kalmia: validate USB endpoints The kalmia driver should validate that the device it is probing has the proper number and types of USB endpoints it is expecting before it binds to it. If a malicious device were to not ha...

5.7AI score0.00123EPSS
Exploits0References7
EUVD
EUVD
added 2026/03/25 12:30 p.m.3 views

EUVD-2026-15219

In the Linux kernel, the following vulnerability has been resolved: net: usb: pegasus: validate USB endpoints The pegasus driver should validate that the device it is probing has the proper number and types of USB endpoints it is expecting before it binds to it. If a malicious device were to not...

5.7AI score0.00123EPSS
Exploits0References7
EUVD
EUVD
added 2026/03/25 12:30 p.m.7 views

EUVD-2026-15254

In the Linux kernel, the following vulnerability has been resolved: net: usb: kaweth: validate USB endpoints The kaweth driver should validate that the device it is probing has the proper number and types of USB endpoints it is expecting before it binds to it. If a malicious device were to not ha...

5.7AI score0.00123EPSS
Exploits0References7
NVD
NVD
added 2026/03/25 11:16 a.m.5 views

CVE-2026-23312

In the Linux kernel, the following vulnerability has been resolved: net: usb: kaweth: validate USB endpoints The kaweth driver should validate that the device it is probing has the proper number and types of USB endpoints it is expecting before it binds to it. If a malicious device were to not ha...

5.5CVSS0.00123EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2026/03/25 11:16 a.m.7 views

CVE-2026-23290

In the Linux kernel, the following vulnerability has been resolved: net: usb: pegasus: validate USB endpoints The pegasus driver should validate that the device it is probing has the proper number and types of USB endpoints it is expecting before it binds to it. If a malicious device were to not...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2026/03/25 10:27 a.m.2 views

CVE-2026-23365

In the Linux kernel, the following vulnerability has been resolved: net: usb: kalmia: validate USB endpoints The kalmia driver should validate that the device it is probing has the proper number and types of USB endpoints it is expecting before it binds to it. If a malicious device were to not ha...

5.7AI score0.00123EPSS
Exploits0References9Affected Software1
Cvelist
Cvelist
added 2026/03/25 10:27 a.m.24 views

CVE-2026-23365 net: usb: kalmia: validate USB endpoints

In the Linux kernel, the following vulnerability has been resolved: net: usb: kalmia: validate USB endpoints The kalmia driver should validate that the device it is probing has the proper number and types of USB endpoints it is expecting before it binds to it. If a malicious device were to not ha...

0.00123EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2026/03/25 10:27 a.m.4 views

CVE-2026-23312

In the Linux kernel, the following vulnerability has been resolved: net: usb: kaweth: validate USB endpoints The kaweth driver should validate that the device it is probing has the proper number and types of USB endpoints it is expecting before it binds to it. If a malicious device were to not ha...

5.7AI score0.00123EPSS
Exploits0References9Affected Software1
CVE
CVE
added 2026/03/25 10:27 a.m.23 views

CVE-2026-23312

CVE-2026-23312 concerns the Linux kernel: the net: usb: kaweth driver did not validate USB endpoint counts/types when probing a device. The root cause is lack of validation before binding, which could allow a malicious device to cause a crash by accessing endpoints that aren’t present or correctl...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References8Affected Software1
OSV
OSV
added 2026/03/25 10:27 a.m.6 views

CVE-2026-23312 net: usb: kaweth: validate USB endpoints

In the Linux kernel, the following vulnerability has been resolved: net: usb: kaweth: validate USB endpoints The kaweth driver should validate that the device it is probing has the proper number and types of USB endpoints it is expecting before it binds to it. If a malicious device were to not ha...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References11
ATTACKERKB
ATTACKERKB
added 2026/03/25 10:26 a.m.4 views

CVE-2026-23290

In the Linux kernel, the following vulnerability has been resolved: net: usb: pegasus: validate USB endpoints The pegasus driver should validate that the device it is probing has the proper number and types of USB endpoints it is expecting before it binds to it. If a malicious device were to not...

5.7AI score0.00123EPSS
Exploits0References9Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/03/25 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-23365

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: usb: kalmia: validate USB endpoints The kalmia driver should validate that the device it is probing has the proper number and types of USB endpoints it is...

5.5CVSS6AI score0.00123EPSS
Exploits0References3
CVE
CVE
added 2026/03/11 4:25 p.m.16 views

CVE-2026-30236

CVE-2026-30236 affects OpenProject before 17.2.0. When editing a project budget and planning labor costs, the system did not verify that the budget-assigned user is a project member, exposing that user’s default rate to non-members. The pre-calculation endpoint used to render cost previews simila...

4.3CVSS5.8AI score0.00176EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2026/03/06 4:59 a.m.9 views

CVE-2026-28428 Talishar: Authentication Bypass via Empty authKey Parameter Allows Unauthenticated Game Actions

Talishar is a fan-made Flesh and Blood project. Prior to commit a9c218e, an authentication bypass vulnerability in Talishar's game endpoint validation logic allows any unauthenticated attacker to perform authenticated game actions — including sending chat messages and submitting game inputs — by...

5.3CVSS5.7AI score0.00299EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2026/03/05 7:31 p.m.6 views

CVE-2025-59785

Improper validation of API end-point in 2N Access Commander version 3.4.2 and prior allows attacker to bypass password policy for backup file encryption. This vulnerability can only be exploited after authenticating with administrator privileges...

7.2CVSS5.9AI score0.00189EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/04 6:31 p.m.9 views

EUVD-2025-208278

Improper validation of API end-point in 2N Access Commander version 3.4.2 and prior allows attacker to bypass password policy for backup file encryption. This vulnerability can only be exploited after authenticating with administrator privileges...

5.3CVSS5.9AI score0.00189EPSS
Exploits0References2
NVD
NVD
added 2026/03/04 4:16 p.m.16 views

CVE-2025-59785

Improper validation of API end-point in 2N Access Commander version 3.4.2 and prior allows attacker to bypass password policy for backup file encryption. This vulnerability can only be exploited after authenticating with administrator privileges...

7.2CVSS0.00189EPSS
Exploits0References1
Rows per page
Query Builder