Denial Of Service (DoS)

Wildfly is vulnerable to denial of service DoS. An out of memory OOM error occurs as host-controller is looping to generate new connections which are not properly closed while not able to connect to domain-controller...

PT-2020-16159 · Red Hat · Wildfly

Name of the Vulnerable Software and Affected Versions: WildFly versions up to 21.0.0.Final Description: A memory leak flaw was found in WildFly where the host-controller tries to reconnect in a loop, generating new connections that are not properly closed while unable to connect to the...

CVE-2020-27661

A divide-by-zero flaw was found in QEMU in the dwc-hsotg dwc2 USB host controller emulation. More specifically, HCCHARMPS was read from a device register and later used as a divisor without performing a sanity check. This flaw allows a malicious or buggy guest to crash the QEMU process on the hos...

UBUNTU-CVE-2020-25625

hw/usb/hcd-ohci.c in QEMU 5.0.0 has an infinite loop when a TD list has a loop...

CVE-2020-25624

hw/usb/hcd-ohci.c in QEMU 5.0.0 has a stack-based buffer over-read via values obtained from the host controller driver...

UBUNTU-CVE-2020-25624

hw/usb/hcd-ohci.c in QEMU 5.0.0 has a stack-based buffer over-read via values obtained from the host controller driver...

PT-2020-6461

Name of the Vulnerable Software and Affected Versions QEMU version 5.0.0 Description The issue is related to the hw/usb/hcd-ohci.c component in the QEMU hardware emulator, which can lead to an infinite loop when a TD list has a loop. This can cause a denial of service. Recommendations For QEMU...

The vulnerability of the EHCI controller in VMware ESXi, VMware Workstation, and VMware Fusion allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the EHCI controller in VMware ESXi, VMware Workstation, and VMware Fusion lies in the lack of protection for service data. Exploiting this vulnerability can allow an intruder to gain unauthorized access to protected information...

The vulnerability of the USB 2.0 controller EHCI in VMware ESXi, VMware Workstation, and VMware Fusion allows a attacker to execute arbitrary code.

The vulnerability of the USB 2.0 controller EHCI in VMware ESXi, VMware Workstation, and VMware Fusion stems from synchronization errors when using shared resources „Race Conditions“. Exploiting this vulnerability allows an attacker to execute arbitrary code...

The vulnerability of the xHCI component in the Oracle VM VirtualBox virtual machine allows a hacker to gain unauthorized access to protected information.

The vulnerability of the xHCI component in Oracle VM VirtualBox is related to the lack of protection for service data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

"Code 10 Device Cannot Start" error for EHCI USB Controller devices in Device Manager in Windows Server 2012 R2

"Code 10 Device Cannot Start" error for EHCI USB Controller devices in Device Manager in Windows Server 2012 R2 This article describes an issue in which you receive a "Code 10 Device Cannot Start" error message for Enhanced Host Controller Interface EHCI USB Controller devices in Device Manager i...

edk2: stack overflow in XHCI causing denial of service

Stack overflow in XHCI for EDK II may allow an unauthenticated user to potentially enable denial of service via local access...

DEBIAN-CVE-2019-15917

An issue was discovered in the Linux kernel before 5.0.5. There is a use-after-free issue when hciuartregisterdev fails in hciuartsetproto in drivers/bluetooth/hcildisc.c...

edk2: stack overflow in XHCI causing denial of service

Stack overflow in XHCI for EDK II may allow an unauthenticated user to potentially enable denial of service via local access...

Google Android Bluetooth hci_len Heap Buffer Overflow Vulnerability

Android is a Linux-based open source operating system jointly developed by Google Inc. and the Open Handheld Alliance OHA for short. A heap buffer overflow vulnerability exists in the parsing of Bluetooth packet lengths in Google Android. The vulnerability stems from a failure to properly validat...

CVE-2018-19860

Broadcom firmware before summer 2014 on Nexus 5 BCM4335C0 2012-12-11, Raspberry Pi 3 BCM43438A1 2014-06-02, and unspecifed other devices does not properly restrict LMP commnds and executes certain memory contents upon receiving an LMP command, as demonstrated by executing an HCI command...

CVE-2019-5519

VMware ESXi 6.7 before ESXi670-201903001, 6.5 before ESXi650-201903001, 6.0 before ESXi600-201903001, Workstation 15.x before 15.0.4, 14.x before 14.1.7, Fusion 11.x before 11.0.3, 10.x before 10.1.6 contain a Time-of-check Time-of-use TOCTOU vulnerability in the virtual USB 1.1 UHCI Universal Ho...

UBUNTU-CVE-2019-0161

Stack overflow in XHCI for EDK II may allow an unauthenticated user to potentially enable denial of service via local access...

CVE-2018-3700

Code injection vulnerability in the installer for IntelR USB 3.0 eXtensible Host Controller Driver for Microsoft Windows 7 before version 5.0.4.43v2 may allow a user to potentially enable escalation of privilege via local access...

CVE-2018-3700

Code injection vulnerability in the installer for IntelR USB 3.0 eXtensible Host Controller Driver for Microsoft Windows 7 before version 5.0.4.43v2 may allow a user to potentially enable escalation of privilege via local access...