Lucene search
K

23 matches found

SUSE CVE
SUSE CVE
added 2026/05/22 2:20 a.m.13 views

SUSE CVE-2026-43495

In the Linux kernel, the following vulnerability has been resolved: net: wwan: t7xx: validate portcount against message length in t7xxportenummsghandler t7xxportenummsghandler uses the modem-supplied portcount field as a loop bound over portmsg-data without checking that the message buffer contai...

6.1CVSS5.9AI score0.00272EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/05/21 3:14 p.m.11 views

CVE-2026-43495

A flaw was found in the Linux kernel, specifically within the net: wwan: t7xx module. A malicious modem could exploit this vulnerability by sending a specially crafted message with an invalid portcount value. This could lead to a slab-out-of-bounds read, potentially allowing an attacker to access...

8.8CVSS5.7AI score0.00272EPSS
Exploits0References4
NVD
NVD
added 2026/05/21 1:16 p.m.14 views

CVE-2026-43495

In the Linux kernel, the following vulnerability has been resolved: net: wwan: t7xx: validate portcount against message length in t7xxportenummsghandler t7xxportenummsghandler uses the modem-supplied portcount field as a loop bound over portmsg-data without checking that the message buffer contai...

8.8CVSS0.00272EPSS
Exploits0References7
OSV
OSV
added 2026/05/21 1:16 p.m.6 views

UBUNTU-CVE-2026-43495

In the Linux kernel, the following vulnerability has been resolved: net: wwan: t7xx: validate portcount against message length in t7xxportenummsghandler t7xxportenummsghandler uses the modem-supplied portcount field as a loop bound over portmsg-data without checking that the message buffer contai...

8.8CVSS5.8AI score0.00272EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2026/05/21 1:16 p.m.15 views

CVE-2026-43495

In the Linux kernel, the following vulnerability has been resolved: net: wwan: t7xx: validate portcount against message length in t7xxportenummsghandler t7xxportenummsghandler uses the modem-supplied portcount field as a loop bound over portmsg-data without checking that the message buffer contai...

8.8CVSS5.9AI score0.00272EPSS
Exploits0References7
EUVD
EUVD
added 2026/05/21 12:12 p.m.9 views

EUVD-2026-31271

In the Linux kernel, the following vulnerability has been resolved: net: wwan: t7xx: validate portcount against message length in t7xxportenummsghandler t7xxportenummsghandler uses the modem-supplied portcount field as a loop bound over portmsg-data without checking that the message buffer contai...

5.9AI score0.00272EPSS
Exploits0References5
CVE
CVE
added 2026/05/21 12:12 p.m.24 views

CVE-2026-43495

CVE-2026-43495 concerns the Linux kernel net/wwan/t7xx subsystem. The issue arises in t7xx_port_enum_msg_handler, which uses a modem-provided port_count to loop over port_msg->data[] without ensuring the message buffer is long enough, enabling a potential slab-out-of-bounds read when port_coun...

8.8CVSS5.9AI score0.00272EPSS
Exploits0References7Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/21 12:12 p.m.14 views

CVE-2026-43495

In the Linux kernel, the following vulnerability has been resolved: net: wwan: t7xx: validate portcount against message length in t7xxportenummsghandler t7xxportenummsghandler uses the modem-supplied portcount field as a loop bound over portmsg-data without checking that the message buffer contai...

8.8CVSS5.8AI score0.00272EPSS
Exploits0References7Affected Software1
CNNVD
CNNVD
added 2026/05/21 12:0 a.m.10 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the lack of validation for the portcount field in the t7xxport EnumMsghandler function. This...

8.8CVSS5.8AI score0.00272EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/05/08 12:0 a.m.10 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the xhci driver’s failure to properly handle cases where the port count exceeds the number of...

5.5CVSS5.8AI score0.00107EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/08 12:0 a.m.19 views

PT-2026-39092

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A NULL pointer dereference occurs when reading portli debugfs files. This happens when the number of port registers counted in xhci-max ports exceeds the ports reported by Supported...

5.8AI score0.00107EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/05/07 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-43205

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - dpaa2-switch: validate numifs to prevent out-of-bounds write The driver obtains swattr.numifs from firmware via dpswgetattributes but never validates it against...

7.8CVSS7AI score0.00139EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.7 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013040)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013040 advisory. In the Linux kernel, the following vulnerability has been resolved: nvme-fc: use lock accessing portstate and rport state nvmefcunregisterremote removes the remote...

5.7AI score0.00205EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2025/12/09 4:17 p.m.7 views

CVE-2025-40342

In the Linux kernel, the following vulnerability has been resolved: nvme-fc: use lock accessing portstate and rport state nvmefcunregisterremote removes the remote port on a lport object at any point in time when there is no active association. This races with with the reconnect logic, because...

6AI score0.00205EPSS
Exploits0References34
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-13547

Malicious code in bioql PyPI...

7.8CVSS6.6AI score0.00093EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/08 10:11 a.m.19 views

CVE-2024-45570

Memory corruption may occur during IO configuration processing when the IO port count is invalid...

7.8CVSS7.2AI score0.00093EPSS
Exploits0References3
NVD
NVD
added 2025/05/06 9:15 a.m.18 views

CVE-2024-45570

Memory corruption may occur during IO configuration processing when the IO port count is invalid...

7.8CVSS0.00093EPSS
Exploits0References1
CVE
CVE
added 2025/05/06 8:32 a.m.70 views

CVE-2024-45570

CVE-2024-45570 is a memory corruption issue in Qualcomm chipsets that occurs during IO configuration processing when the IO port count is invalid. The vulnerability affects the IO configuration path (component/driver/function) and is described with a local attack vector, low authentication requir...

7.8CVSS6.7AI score0.00093EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/05/06 12:0 a.m.6 views

Qualcomm Chipsets 安全漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that originates from memory corruption during IO configuration processing when the IO port count is invalid...

7.8CVSS6.9AI score0.00093EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/05/06 12:0 a.m.11 views

PT-2025-19850 · Qualcomm · Snapdragon +56

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: Memory corruption may occur during IO configuration processing when the IO port count is invalid. This issue is related to the processing of IO configuration and can lead to memory corruptio...

7.8CVSS6.3AI score0.00093EPSS
Exploits0References3
Rows per page
Query Builder