Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

33 matches found

NVD
NVDadded 2025/12/08 1:16 a.m.2 views

CVE-2025-40315

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: ffs: Fix epfile null pointer access after ep enable. A race condition occurs when ffsfuncepsenable runs concurrently with ffsdatareset. The ffsdataclear called in ffsdatareset sets ffs-epfiles to NULL before resettin...

0.00058EPSS
Exploits0References8
CVE
CVEadded 2025/12/08 12:46 a.m.12 views

CVE-2025-40315

CVE-2025-40315: In the Linux kernel usb gadget f_fs, a race allowed NULL pointer dereference when ffs_func_eps_enable() could access epfile->ep after concurrent ffs_data_reset(). The fix adds NULL pointer handling for ffs->epfiles in ffs_func_eps_enable() and aligns NULLing of epfiles under...

6.1AI score0.00058EPSS
Exploits0References8
Tenable Nessus
Tenable Nessusadded 2025/10/27 12:0 a.m.2 views

Siemens SIMATIC Devices Race Condition (CVE-2024-57913)

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: ffs: Remove WARNON in functionfsbind This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if...

4.7CVSS6.2AI score0.00023EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/10/07 12:0 a.m.0 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986724)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986724 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: gadget: ffs: Prevent race during ffsep0queuewait While performing fast composition switch,...

7.8CVSS5.8AI score0.00034EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2021-33581

Malicious code in bioql PyPI...

5.5CVSS6.9AI score0.00015EPSS
Exploits0References8
UbuntuCve
UbuntuCveadded 2024/07/16 12:15 p.m.16 views

CVE-2022-48822

In the Linux kernel, the following vulnerability has been resolved: usb: ffs: Fix use-after-free for epfile Consider a case where ffsfuncepsdisable is called from ffsfuncdisable as part of composition switch and at the same time ffsepfilerelease get called from userspace. ffsepfilerelease will fr...

7.8CVSS6.4AI score0.00035EPSS
Exploits0References9
CVE
CVEadded 2024/07/16 11:44 a.m.77 views

CVE-2022-48822

CVE-2022-48822 — Linux kernel usb f_fs use-after-free (epfile) Technical summary: A race between ffs_func_eps_disable (which uses a local copy of epfiles) and ffs_epfile_release can lead to use-after-free of the epfile read buffer. While ffs_epfile_release frees the buffer and destroys ffs->ep...

7.8CVSS7.9AI score0.00035EPSS
Exploits0References7Affected Software1
Debian CVE
Debian CVEadded 2024/07/16 11:44 a.m.17 views

CVE-2022-48822

In the Linux kernel, the following vulnerability has been resolved: usb: ffs: Fix use-after-free for epfile Consider a case where ffsfuncepsdisable is called from ffsfuncdisable as part of composition switch and at the same time ffsepfilerelease get called from userspace. ffsepfilerelease will fr...

7.8CVSS5.8AI score0.00035EPSS
Exploits0
Cvelist
Cvelistadded 2024/07/16 11:44 a.m.20 views

CVE-2022-48822 usb: f_fs: Fix use-after-free for epfile

In the Linux kernel, the following vulnerability has been resolved: usb: ffs: Fix use-after-free for epfile Consider a case where ffsfuncepsdisable is called from ffsfuncdisable as part of composition switch and at the same time ffsepfilerelease get called from userspace. ffsepfilerelease will fr...

0.00035EPSS
Exploits0References7
NVD
NVDadded 2024/05/30 4:15 p.m.14 views

CVE-2024-36894

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: ffs: Fix race between aiocancel and AIO request complete FFS based applications can utilize the aiocancel callback to dequeue pending USB requests submitted to the UDC. There is a scenario where the FFS application...

5.6CVSS6.4AI score0.00013EPSS
Exploits0References11
CNNVD
CNNVDadded 2024/05/30 12:0 a.m.1 views

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel, which originates from a competitive condition vulnerability in the usb:gadget:ffs module...

5.6CVSS7.5AI score0.00013EPSS
Exploits0References5
RedhatCVE
RedhatCVEadded 2024/02/28 2:34 a.m.26 views

CVE-2021-46933

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: ffs: Clear ffseventfd in ffsdataclear. ffsdataclear is indirectly called from both ffsfskillsb and ffsep0release, so it ends up being called twice when userland closes ep0 and then unmounts ffs. If userland provided ...

4.4CVSS5.1AI score0.00015EPSS
Exploits0References4
NVD
NVDadded 2024/02/27 10:15 a.m.19 views

CVE-2021-46933

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: ffs: Clear ffseventfd in ffsdataclear. ffsdataclear is indirectly called from both ffsfskillsb and ffsep0release, so it ends up being called twice when userland closes ep0 and then unmounts ffs. If userland provided ...

5.5CVSS6.1AI score0.00015EPSS
Exploits0References8
OSV
OSVadded 2024/02/27 10:15 a.m.0 views

UBUNTU-CVE-2021-46933

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: ffs: Clear ffseventfd in ffsdataclear. ffsdataclear is indirectly called from both ffsfskillsb and ffsep0release, so it ends up being called twice when userland closes ep0 and then unmounts ffs. If userland provided ...

5.5CVSS6.1AI score0.00015EPSS
Exploits0References12
Prion
Prionadded 2024/02/27 10:15 a.m.17 views

Design/Logic Flaw

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: ffs: Clear ffseventfd in ffsdataclear. ffsdataclear is indirectly called from both ffsfskillsb and ffsep0release, so it ends up being called twice when userland closes ep0 and then unmounts ffs. If userland provided ...

7AI score0.00015EPSS
Exploits0References8
Debian CVE
Debian CVEadded 2024/02/27 9:44 a.m.21 views

CVE-2021-46933

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: ffs: Clear ffseventfd in ffsdataclear. ffsdataclear is indirectly called from both ffsfskillsb and ffsep0release, so it ends up being called twice when userland closes ep0 and then unmounts ffs. If userland provided ...

5.5CVSS6.2AI score0.00015EPSS
Exploits0
Cvelist
Cvelistadded 2024/02/27 9:44 a.m.18 views

CVE-2021-46933 usb: gadget: f_fs: Clear ffs_eventfd in ffs_data_clear.

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: ffs: Clear ffseventfd in ffsdataclear. ffsdataclear is indirectly called from both ffsfskillsb and ffsep0release, so it ends up being called twice when userland closes ep0 and then unmounts ffs. If userland provided ...

6.3AI score0.00015EPSS
Exploits0References8
OSV
OSVadded 2023/02/13 6:2 p.m.8 views

GSD-2023-1002284 usb: gadget: f_fs: Prevent race during ffs_ep0_queue_wait

usb: gadget: ffs: Prevent race during ffsep0queuewait This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.14.305 by commit...

7.2AI score
Exploits0
OSV
OSVadded 2023/02/13 5:58 p.m.5 views

GSD-2023-1002257 usb: gadget: f_fs: Prevent race during ffs_ep0_queue_wait

usb: gadget: ffs: Prevent race during ffsep0queuewait This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.272 by commit...

7.2AI score
Exploits0
OSV
OSVadded 2023/02/13 5:53 p.m.8 views

GSD-2023-1002215 usb: gadget: f_fs: Prevent race during ffs_ep0_queue_wait

usb: gadget: ffs: Prevent race during ffsep0queuewait This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.231 by commit...

7.2AI score
Exploits0
Rows per page
Query Builder