Lucene search
K

3109 matches found

OSV
OSV
added 2026/07/02 3:49 p.m.5 views

USN-8498-1 linux-nvidia-tegra vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - MIPS architecture; - PowerPC architecture; - x86 architecture; - Block layer subsystem; -...

9.8CVSS6.4AI score0.00686EPSS
Exploits4References298
OSV
OSV
added 2026/07/02 3:24 p.m.5 views

USN-8492-2 linux-aws-6.8, linux-gcp-6.8, linux-gke, linux-gkeop, linux-ibm-6.8, linux-nvidia-lowlatency, linux-oracle-6.8 vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - MIPS architecture; - PowerPC architecture; - x86 architecture; - Block layer subsystem; -...

9.8CVSS6.4AI score0.00686EPSS
Exploits4References300
OSV
OSV
added 2026/07/01 4:43 p.m.10 views

USN-8488-1 linux, linux-aws, linux-gcp, linux-ibm, linux-oracle, linux-realtime vulnerabilities

It was discovered that some AMD processors did not properly clear data in the floating point divider unit during speculative execution. A local attacker could use this to expose sensitive information. CVE-2025-54505 Several security issues were discovered in the Linux kernel. An attacker could...

9.8CVSS6.8AI score0.00675EPSS
Exploits10References237
EUVD
EUVD
added 2026/07/01 12:34 a.m.7 views

EUVD-2026-40773

Insufficient policy enforcement in HID in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: Low...

6.2AI score0.00303EPSS
Exploits0References3
NVD
NVD
added 2026/06/30 11:17 p.m.5 views

CVE-2026-14086

Insufficient policy enforcement in HID in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: Low...

8.8CVSS0.00303EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/30 10:39 p.m.25 views

CVE-2026-14086

Insufficient policy enforcement in HID in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: Low...

0.00303EPSS
Exploits0References2
CVE
CVE
added 2026/06/30 10:39 p.m.15 views

CVE-2026-14086

The CVE-2026-14086 entry describes a vulnerability in Google Chrome's HID policy enforcement. Affected component: Chrome/Chromium browser handling of HID policy checks. Root cause: insufficient policy enforcement in HID logic allows a remote attacker to run arbitrary code via a crafted HTML page....

8.8CVSS6.2AI score0.00303EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2026/06/30 10:39 p.m.5 views

CVE-2026-14086

Insufficient policy enforcement in HID in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: Low...

8.8CVSS6.2AI score0.00303EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/06/30 12:0 a.m.8 views

PT-2026-54361

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.47 Description Insufficient policy enforcement in the Human Interface Device HID component allows a remote attacker to execute arbitrary code when a user visits a specially crafted HTML page...

9.6CVSS6.4AI score0.00413EPSS
Exploits0References438
RedhatCVE
RedhatCVE
added 2026/06/26 6:29 p.m.8 views

CVE-2026-53037

A flaw was found in the Linux kernel's USB Human Interface Device HID subsystem. This vulnerability occurs when a USB device, containing both HID and storage or Universal Attached SCSI UAS components, is reset. During the reset process, memory allocation operations within the hidpostreset functio...

5.5CVSS5.7AI score0.00176EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2026/06/25 12:0 a.m.2 views

The vulnerability in the driver/hid/hid-logitech-hidpp.c module of the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the drivers/hid/hid-logitech-hidpp.c module in the Linux operating system is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to cause a service failure...

7.8CVSS5.8AI score0.00116EPSS
Exploits0References9Affected Software3
BDU FSTEC
BDU FSTEC
added 2026/06/25 12:0 a.m.2 views

The vulnerability in the driver/multi-touch.c module of the Linux operating system allows a hacker to trigger a service failure.

The vulnerability in the driver/multi-touch.c module of the Linux operating system is related to writing beyond the buffer boundaries. Exploiting this vulnerability can allow an attacker to cause a service failure...

7.8CVSS6.1AI score0.0012EPSS
Exploits0References13Affected Software3
EUVD
EUVD
added 2026/06/24 6:32 p.m.4 views

EUVD-2026-38905

In the Linux kernel, the following vulnerability has been resolved: HID: usbhid: fix deadlock in hidpostreset You can build a USB device that includes a HID component and a storage or UAS component. The components can be reset only together. That means that hidprereset and hidpostreset are in the...

5.7AI score0.00176EPSS
Exploits0References9
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.5 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerabilities have been resolved: HID: hid-pl: handling probe errors Errors in the init process must be reported back; otherwise, we will follow a NULL pointer the first time FF is used...

5.5CVSS5.8AI score0.00128EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/24 12:0 a.m.9 views

PT-2026-51931

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A deadlock occurs in the usbhid module when handling USB devices that combine a HID component with a storage or UAS component. Because these components must be reset together, the...

4.1CVSS6AI score0.00176EPSS
Exploits0References17
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.7 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: HID: apple: avoided a memory leak in applereportfixup The applereportfixup function was returning a buffer allocated using kmemdup, but never freeing that buffer. The caller of reportfixup does not take ownership of the returned...

5.5CVSS5.9AI score0.00123EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.16 views

Astra Linux – Vulnerability in Linux

In hidinputchangeresolutionmultipliers of hid-input.c, there is a possible out-of-bounds write due to a heap buffer overflow. This could lead to a local privilege escalation without the need for additional execution privileges. User interaction is not required for exploitation. Product: Android...

7.8CVSS7.1AI score0.00282EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.6 views

Astra Linux – Vulnerability in Chromium

Memory access out of bounds in WebHID in Google Chrome prior to version 111.0.5563.110 allowed a remote attacker to potentially exploit heap corruption through a malicious HID device. Chromium security severity: High...

9.8CVSS7.3AI score0.01062EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.5 views

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15

The roccatreportevent in the drivers/hid/hid-roccat.c file in the Linux kernel, as of version 5.19.12, contains a race condition, which can lead to a use-after-free situation under certain conditions when a report is received while the report-value copy operation is in progress...

4.7CVSS6.6AI score0.00205EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: gpiolib: acpi: Initialize the acpigpioinfo structure Since commit 7c010d463372 “gpiolib: acpi: Ensure that the acpigpioinfo structure is initialized”, uninitialized acpigpioinfo structures are passed to acpifindgpio, and later, t...

7.8CVSS5.7AI score0.00143EPSS
Exploits0References1
Rows per page
Query Builder