Lucene search
K

605 matches found

CVE
CVE
added 2026/01/25 2:36 p.m.315 views

CVE-2026-22998

CVE-2026-22998 affects the Linux kernel’s NVMe over Fabrics NVMe-TCP path. The issue is a NULL pointer dereference in nvmet_tcp_build_pdu_iovec triggered by H2C_DATA PDUs when command data structures are uninitialized or partially initialized. Specifically, nvmet_tcp_handle_h2c_data_pdu() could p...

7.5CVSS5.3AI score0.0071EPSS
Exploits0References7Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/01/25 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2026-23009

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - xhci: sideband: don't dereference freed ring when removing sideband endpoint xhcisidebandremoveendpoint incorrecly assumes that the endpoint is running and has ...

5.5CVSS5.9AI score0.00135EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.4 views

Azure Linux 3.0 Security Update: kernel (CVE-2024-57981)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-57981 advisory. - In the Linux kernel, the following vulnerability has been resolved: usb: xhci: Fix NULL pointer dereference ...

5.5CVSS5.3AI score0.00225EPSS
Exploits0References2
Redos
Redos
added 2026/01/19 12:0 a.m.8 views

ROS-20260119-7329

A vulnerability in the ufsbsgremove function of the drivers/ufs/core/ufsbsg.c module of the Linux kernel's UFS Universal Flash Storage host controller support is related to the reuse of previously freed memory. Exploitation of the vulnerability could allow an attacker to affect the confidentialit...

7.8CVSS7.8AI score0.00209EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.5 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003950)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003950 advisory. An issue was discovered in the Linux kernel before 5.0.5. There is a use-after-free issue when hciuartregisterdev fails in hciuartsetproto in...

7CVSS6.7AI score0.00668EPSS
Exploits0References12
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.3 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003720)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003720 advisory. An issue was discovered in the Linux kernel before 5.0.5. There is a use-after-free issue when hciuartregisterdev fails in hciuartsetproto in...

7CVSS6.7AI score0.00668EPSS
Exploits0References12
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001579)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001579 advisory. A flaw use-after-free in function scosocksendmsg of the Linux kernel HCI subsystem was found in the way user calls ioct UFFDIOREGISTER or other way triggers race...

7CVSS6.4AI score0.00373EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.4 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002698)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002698 advisory. The vhcihcd driver in the Linux Kernel before version 4.14.8 and 4.4.114 allows allows local attackers to disclose kernel memory addresses. Successful exploitation...

4.7CVSS6.5AI score0.00399EPSS
Exploits0References15
RedHat Linux
RedHat Linux
added 2026/01/13 9:50 a.m.5 views

kernel: Bluetooth: hci_event: Fix UAF in hci_acl_create_conn_sync

A flaw was found in the Linux kernel’s Bluetooth subsystem HCI. Specifically, in the function hciaclcreateconnsync and related path hcilecreateconnsync, a connection object in state BTOPEN that is still pending command submission may be freed prematurely, leading to a use-after-free condition. An...

5.7AI score0.00183EPSS
Exploits0References5
OSV
OSV
added 2026/01/10 10:15 a.m.5 views

CVE-2025-53477

NULL Pointer Dereference vulnerability in Apache Nimble. Missing validation of HCI connection complete or HCI command TX buffer could lead to NULL pointer dereference. This issue requires disabled asserts and broken or bogus Bluetooth controller and thus severity is considered low. This issue...

7.5CVSS7.1AI score
Exploits0References4
Cvelist
Cvelist
added 2026/01/10 9:46 a.m.20 views

CVE-2025-53470 Apache Mynewt NimBLE: Out-of-Bounds Write Vulnerability in NimBLE HCI H4 driver

Out-of-bounds Read vulnerability in Apache NimBLE HCI H4 driver. Specially crafted HCI event could lead to invalid memory read in H4 driver. This issue affects Apache NimBLE: through 1.8. This issue requires a broken or bogus Bluetooth controller and thus severity is considered low. Users are...

0.0033EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/01/10 9:45 a.m.4 views

CVE-2025-53477 Apache Mynewt NimBLE: NULL Pointer Dereference in NimBLE host HCI layer

NULL Pointer Dereference vulnerability in Apache Nimble. Missing validation of HCI connection complete or HCI command TX buffer could lead to NULL pointer dereference. This issue requires disabled asserts and broken or bogus Bluetooth controller and thus severity is considered low. This issue...

6.8AI score0.00696EPSS
Exploits0References3
EUVD
EUVD
added 2026/01/10 9:45 a.m.5 views

EUVD-2026-1853

NULL Pointer Dereference vulnerability in Apache Nimble. Missing validation of HCI connection complete or HCI command TX buffer could lead to NULL pointer dereference. This issue requires disabled asserts and broken or bogus Bluetooth controller and thus severity is considered low. This issue...

6.6AI score0.00696EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/01/10 12:0 a.m.11 views

Apache NimBLE 缓冲区错误漏洞

Apache NimBLE is an open source Bluetooth 5.4 stack host and controller from the Apache Foundation, USA, that completely replaces the proprietary SoftDevice on Nordic chipsets.It is part of the Apache Mynewt project. A buffer error vulnerability exists in Apache NimBLE 1.8 and earlier versions,...

3.1CVSS6.7AI score0.0033EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/01/10 12:0 a.m.6 views

PT-2026-1816

Name of the Vulnerable Software and Affected Versions Apache NimBLE versions through 1.8.0 Description A flaw exists in Apache NimBLE where missing validation of an HCI connection complete or HCI command TX buffer can result in a NULL pointer dereference. This issue requires disabled asserts and ...

7.5CVSS6.7AI score0.00696EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2026/01/10 12:0 a.m.10 views

PT-2026-1815

Name of the Vulnerable Software and Affected Versions Apache NimBLE versions through 1.8 Description An out-of-bounds read issue exists in the Apache NimBLE HCI H4 driver. A specially crafted HCI event can cause an invalid memory read within the H4 driver. The issue is considered low severity as ...

3.1CVSS6.5AI score0.0033EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/12/31 2:39 p.m.3 views

CVE-2022-50809

In the Linux kernel, the following vulnerability has been resolved: xhci: dbc: Fix memory leak in xhciallocdbc If DbC is already in use, then the allocated memory for the xhcidbc struct doesn't get freed before returning NULL, which leads to a memleak...

5.5CVSS5.8AI score0.00206EPSS
Exploits0References4
EUVD
EUVD
added 2025/12/30 3:30 p.m.5 views

EUVD-2022-55889

In the Linux kernel, the following vulnerability has been resolved: xhci: dbc: Fix memory leak in xhciallocdbc If DbC is already in use, then the allocated memory for the xhcidbc struct doesn't get freed before returning NULL, which leads to a memleak...

5.9AI score0.00206EPSS
Exploits0References5
OSV
OSV
added 2025/12/30 1:15 p.m.11 views

UBUNTU-CVE-2022-50809

In the Linux kernel, the following vulnerability has been resolved: xhci: dbc: Fix memory leak in xhciallocdbc If DbC is already in use, then the allocated memory for the xhcidbc struct doesn't get freed before returning NULL, which leads to a memleak...

5.7AI score0.00206EPSS
Exploits0References7
CVE
CVE
added 2025/12/30 12:8 p.m.20 views

CVE-2023-54164

Technical details for CVE-2023-54164 are not provided in the supplied documents. Monitor for updates.

6AI score0.00166EPSS
Exploits0References3
Rows per page
Query Builder