CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

25 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•1 views

Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerability has been resolved: HID: steam: Prevent NULL pointer dereferencing in steamrecv,sendreport It is possible for a malicious device to fail to submit a Feature Report. The HID Steam driver currently does not handle this situation and dereferences the...

5.5CVSS5.9AI score0.00063EPSS

Exploits0References2

AstraLinux•added 2026/05/20 5:53 a.m.•1 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: HID: hid-steam – Fixed a use-after-free issue when removing a device. When a hid-steam device is removed, it must clean up the clienthdev that was used to intercept hidraw access. This can result in deferred tasks being scheduled...

7.8CVSS6.4AI score0.00154EPSS

Exploits0References2

Tenable Nessus•added 2026/01/22 12:0 a.m.•2 views

Azure Linux 3.0 Security Update: kernel (CVE-2025-21923)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-21923 advisory. - In the Linux kernel, the following vulnerability has been resolved: HID: hid-steam: Fix use-after-free when...

7.8CVSS6.8AI score0.00154EPSS

Exploits0References2

Tenable Nessus•added 2025/12/31 12:0 a.m.•3 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992923)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992923 advisory. In the Linux kernel, the following vulnerability has been resolved: HID: steam: Prevent NULL pointer dereference in steamrecv,sendreport It is possible for a malicio...

5.5CVSS5.9AI score0.00063EPSS

Exploits0References4

Tenable Nessus•added 2025/12/30 12:0 a.m.•1 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992263)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992263 advisory. In the Linux kernel, the following vulnerability has been resolved: HID: steam: Prevent NULL pointer dereference in steamrecv,sendreport It is possible for a malicio...

5.5CVSS5.9AI score0.00063EPSS

Exploits0References4

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-9398

Malicious code in bioql PyPI...

7.8CVSS8.2AI score0.00154EPSS

Exploits0References4

Tenable Nessus•added 2025/08/12 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2022-49984

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: HID: steam: Prevent NULL pointer dereference in steamrecv,sendreport It is possible for a...

5.5CVSS6AI score0.00063EPSS

Exploits0References3

RedhatCVE•added 2025/06/20 11:59 a.m.•3 views

CVE-2022-49984

A flaw was found in the hid-steam module in the Linux kernel. A NULL pointer dereference can be triggered when a malicious device fails to submit a feature report, resulting in a denial of service...

5.5CVSS5.9AI score0.00063EPSS

Exploits0References4

SUSE CVE•added 2025/06/19 3:44 a.m.•1 views

SUSE CVE-2022-49984

In the Linux kernel, the following vulnerability has been resolved: HID: steam: Prevent NULL pointer dereference in steamrecv,sendreport It is possible for a malicious device to forgo submitting a Feature Report. The HID Steam driver presently makes no prevision for this and de-references the...

5.5CVSS6.2AI score0.00063EPSS

Exploits0References11

OSV•added 2025/06/18 11:15 a.m.•1 views

DEBIAN-CVE-2022-49984

5.5CVSS5.1AI score0.00063EPSS

Exploits0References1

NVD•added 2025/06/18 11:15 a.m.•3 views

CVE-2022-49984

5.5CVSS0.00063EPSS

Exploits0References6

OSV•added 2025/06/18 11:15 a.m.•0 views

UBUNTU-CVE-2022-49984

5.5CVSS6AI score0.00063EPSS

Exploits0References8

CVE•added 2025/06/18 11:0 a.m.•85 views

CVE-2022-49984

CVE-2022-49984 is a Linux kernel vulnerability in the HID Steam driver: the code dereferences a HID report pointer without validating it, enabling a local attacker with a malicious HID device to trigger a NULL pointer dereference in steam_recv/steam_send_report. The issue has been fixed in the ke...

5.5CVSS6.5AI score0.00063EPSS

Exploits0References6Affected Software1

OSV•added 2025/06/18 11:0 a.m.•3 views

CVE-2022-49984 HID: steam: Prevent NULL pointer dereference in steam_{recv,send}_report

5.5CVSS5.7AI score0.00063EPSS

Exploits0References9

SUSE CVE•added 2025/04/04 2:59 a.m.•1 views

SUSE CVE-2025-21923

In the Linux kernel, the following vulnerability has been resolved: HID: hid-steam: Fix use-after-free when detaching device When a hid-steam device is removed it must clean up the clienthdev used for intercepting hidraw access. This can lead to scheduling deferred work to reattach the input...

5.5CVSS7.6AI score0.00154EPSS

Exploits0References15

OSV•added 2025/04/01 4:15 p.m.•1 views

DEBIAN-CVE-2025-21923

7.8CVSS6.1AI score0.00154EPSS

Exploits0References1

NVD•added 2025/04/01 4:15 p.m.•4 views

CVE-2025-21923

7.8CVSS0.00154EPSS

Exploits0References4

OSV•added 2025/04/01 4:15 p.m.•0 views

UBUNTU-CVE-2025-21923

7.8CVSS6.4AI score0.00154EPSS

Exploits0References7

CVE•added 2025/04/01 3:40 p.m.•96 views

CVE-2025-21923

Summary of CVE-2025-21923 (Linux kernel): The vulnerability affects the HID subsystem, specifically the hid-steam driver. When detaching a hid-steam device, the cleanup of the client_hdev used to intercept hidraw access could be scheduled for deferred work reattachment. The previous cleanup order...

7.8CVSS7.2AI score0.00154EPSS

Exploits0References4Affected Software1

Debian CVE•added 2025/04/01 3:40 p.m.•5 views

CVE-2025-21923

7.8CVSS6.1AI score0.00154EPSS

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by