CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

291 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•1 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Check endpoint numbers during parsing of Scarlett2 mixer interfaces The Scarlett2 mixer has a quirky behavior in the USB-audio driver; it may encounter a NULL dereference when a malformed USB descriptor is passed...

5.5CVSS5.7AI score0.00013EPSS

Exploits0References1

AstraLinux•added 2026/05/20 5:53 a.m.•1 views

Astra Linux - уязвимость в linux-5.10, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Fixed a NULL pointer dereference in sndusbmixercontrolsbadd. In sndusbcreatestreams, for UAC version 3 devices, the Interface Association Descriptor IAD is retrieved using usbifnumtoif. If this call fails, a...

5.9AI score0.00076EPSS

Exploits0References1

AstraLinux•added 2026/05/20 5:53 a.m.•4 views

Astra Linux - уязвимость в linux-5.10, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-mixer: us16x08: validate meter packet indices The getmeterlevelsfromurb function parses the 64-byte meter packets sent by the device and fills the per-channel arrays meterlevel, complevel, and masterlevel in the struct...

5.8AI score0.00068EPSS

Exploits0References2

AstraLinux•added 2026/05/20 5:53 a.m.•1 views

Astra Linux - уязвимость в linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: ALSA: scarlett2: Added a clamp function in scarlett2mixerctlput Ensured that the value passed to scarlett2mixerctlput is between 0 and SCARLETT2MIXERMAXVALUE, so that attempts to access elements outside of scarlett2mixervalues ar...

5.5CVSS6.3AI score0.00019EPSS

Exploits0References2

SUSE CVE•added 2026/05/13 3:34 a.m.•7 views

SUSE CVE-2026-43436

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Check endpoint numbers at parsing Scarlett2 mixer interfaces The Scarlett2 mixer quirk in USB-audio driver may hit a NULL dereference when a malformed USB descriptor is passed, since it assumes the presence of an...

5.7AI score0.00013EPSS

Exploits0References3

EUVD•added 2026/05/08 3:31 p.m.•4 views

EUVD-2026-28742

5.8AI score0.00013EPSS

Exploits0References7

NVD•added 2026/05/08 3:16 p.m.•8 views

CVE-2026-43436

5.5CVSS0.00013EPSS

Exploits0References6

UbuntuCve•added 2026/05/08 3:16 p.m.•6 views

CVE-2026-43436

5.5CVSS5.7AI score0.00013EPSS

Exploits0References8

ATTACKERKB•added 2026/05/08 2:22 p.m.•3 views

CVE-2026-43436

5.8AI score0.00013EPSS

Exploits0References7Affected Software1

Cvelist•added 2026/05/08 2:22 p.m.•23 views

CVE-2026-43436 ALSA: usb-audio: Check endpoint numbers at parsing Scarlett2 mixer interfaces

0.00013EPSS

Exploits0References6

Debian CVE•added 2026/05/08 2:22 p.m.•10 views

CVE-2026-43436

5.5CVSS5.7AI score0.00013EPSS

Exploits0

CNNVD•added 2026/05/08 12:0 a.m.•3 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the ALSA USB audio driver’s Scarlett2 mixer interface not checking the number of endpoints...

5.5CVSS5.8AI score0.00013EPSS

Exploits0References1

Positive Technologies•added 2026/05/08 12:0 a.m.•7 views

PT-2026-39097

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A NULL dereference can occur in the USB-audio driver's Scarlett2 mixer quirk when processing a malformed USB descriptor. This happens because the scarlett2 find fc interface function...

5.5CVSS5.8AI score0.00013EPSS

Exploits0References18

SUSE CVE•added 2026/05/07 2:17 a.m.•5 views

SUSE CVE-2026-43126

In the Linux kernel, the following vulnerability has been resolved: ALSA: mixer: oss: Add card disconnect checkpoints ALSA OSS mixer layer calls the kcontrol ops rather individually, and pending calls might be not always caught at disconnecting the device. For avoiding the potential UAF scenarios...

7CVSS5.7AI score0.00013EPSS

Exploits0References19

EUVD•added 2026/05/06 12:30 p.m.•3 views

EUVD-2026-27687

5.8AI score0.00013EPSS

Exploits0References5

CVE•added 2026/05/06 11:27 a.m.•4 views

CVE-2026-43126

CVE-2026-43126 affects the Linux kernel ALSA OSS mixer. The vulnerability arises when pending kcontrol operations are not consistently handled during card/disconnect, risking use-after-free and potential local impact. Multiple OSV entries ( Debian 12/11 patches in rootio-linux, Ubuntu, Red Hat) i...

7.8CVSS5.8AI score0.00013EPSS

Exploits0References4Affected Software1

Debian CVE•added 2026/05/06 11:27 a.m.•4 views

CVE-2026-43126

7.8CVSS5.7AI score0.00013EPSS

Exploits0

Cvelist•added 2026/05/06 11:27 a.m.•21 views

CVE-2026-43126 ALSA: mixer: oss: Add card disconnect checkpoints

7.8CVSS0.00013EPSS

Exploits0References4

ATTACKERKB•added 2026/05/06 11:27 a.m.•2 views

CVE-2026-43126

5.8AI score0.00013EPSS

Exploits0References5Affected Software1

CNNVD•added 2026/05/06 12:0 a.m.•3 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the lack of card disconnection checkpoints added to the ALSA OSS mixer layer. This vulnerability...

7.8CVSS5.8AI score0.00013EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by