Lucene search
K

24 matches found

CVE
CVE
added 2026/06/16 10:18 a.m.31 views

CVE-2026-10829

CVE-2026-10829 affects the NPort W2150A-W4 / W2250A-W4 Series (versions 1.5 and earlier). The issue is a stack-based buffer overflow caused by insufficient input validation of the "Server location" parameter on the Basic settings web page. An attacker can send crafted input to the web service to ...

8.6CVSS6.6AI score0.00472EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/06/04 4:18 p.m.7 views

CVE-2026-50266

In OpenStack Neutron before 28.0.1, a project manager can create or update a port on a shared network owned by another project and set deviceowner to a value that has "network:" at the beginning "network:dhcp" for example. The default port RBAC policies incorrectly included PROJECTMANAGER without...

3.5CVSS7.1AI score0.00963EPSS
Exploits0References6Affected Software1
SUSE CVE
SUSE CVE
added 2025/12/24 12:24 a.m.4 views

SUSE CVE-2025-68340

In the Linux kernel, the following vulnerability has been resolved: team: Move team device type change at the end of teamportadd Attempting to add a port device that is already up will expectedly fail, but not before modifying the team device headerops. In the case of the syzbot reproducer the gr...

6.6CVSS6.5AI score0.00118EPSS
Exploits0References21
Tenable Nessus
Tenable Nessus
added 2025/12/24 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2023-54083

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - phy: tegra: xusb: Clear the driver reference in usb-phy dev For the dual-role port, it will assign the phy dev to usb-phy dev and use the port dev driver as the...

6.1AI score0.00175EPSS
Exploits0References3
OSV
OSV
added 2025/12/23 2:16 p.m.4 views

UBUNTU-CVE-2025-68340

In the Linux kernel, the following vulnerability has been resolved: team: Move team device type change at the end of teamportadd Attempting to add a port device that is already up will expectedly fail, but not before modifying the team device headerops. In the case of the syzbot reproducer the gr...

5.5CVSS5.7AI score0.00118EPSS
Exploits0References35
ATTACKERKB
ATTACKERKB
added 2025/12/23 1:58 p.m.2 views

CVE-2025-68340

In the Linux kernel, the following vulnerability has been resolved: team: Move team device type change at the end of teamportadd Attempting to add a port device that is already up will expectedly fail, but not before modifying the team device headerops. In the case of the syzbot reproducer the gr...

5.2AI score0.00118EPSS
Exploits0References7Affected Software1
UbuntuCve
UbuntuCve
added 2025/12/23 12:0 a.m.4 views

CVE-2025-68340

In the Linux kernel, the following vulnerability has been resolved: team: Move team device type change at the end of teamportadd Attempting to add a port device that is already up will expectedly fail, but not before modifying the team device headerops. In the case of the syzbot reproducer the gr...

5.5CVSS5.9AI score0.00118EPSS
Exploits0References34
OSV
OSV
added 2025/12/16 4:16 p.m.2 views

UBUNTU-CVE-2025-68311

In the Linux kernel, the following vulnerability has been resolved: tty: serial: ip22zilog: Use platform device for probing After commit 84a9582fd203 "serial: core: Start managing serial controllers to enable runtime PM" serial drivers need to provide a device in struct uartport.dev otherwise an...

5.7AI score0.00155EPSS
Exploits0References21
Tenable Nessus
Tenable Nessus
added 2025/09/02 12:0 a.m.1 views

RHEL 9 : kernel (RHSA-2025:15016)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:15016 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: s390/ptrace: handle setting o...

9.1CVSS6.9AI score0.00923EPSS
Exploits0References22
Citrix
Citrix
added 2024/12/18 12:0 a.m.9 views

Topaz Signature Pad as COM Port Device Disappears after Logoff

Topaz Signature will disappear after users log off on a kiosk workstation. The environment contained: Citrix Virtual Apps and Desktops version 2203 CUx Desktop of Server VDA, any supported OS Citrix Workspace App 2402 CUx Windows 10/Windows 11...

7.1AI score
Exploits0
RedHat Linux
RedHat Linux
added 2024/08/08 4:44 a.m.3 views

kernel: USB: core: Fix access violation during port device removal

In the Linux kernel, the following vulnerability has been resolved: USB: core: Fix access violation during port device removal Testing with KASAN and syzkaller revealed a bug in port.c:disablestore: usbhubtostructhub can return NULL if the hub that the port belongs to is concurrently removed, but...

9.1CVSS6.7AI score0.00923EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2024/06/03 1:32 p.m.37 views

CVE-2024-36896

In the Linux kernel, the following vulnerability has been resolved: USB: core: Fix access violation during port device removal Testing with KASAN and syzkaller revealed a bug in port.c:disablestore: usbhubtostructhub can return NULL if the hub that the port belongs to is concurrently removed, but...

5.5CVSS6.5AI score0.00923EPSS
Exploits0References4
NVD
NVD
added 2024/05/30 4:15 p.m.10 views

CVE-2024-36896

In the Linux kernel, the following vulnerability has been resolved: USB: core: Fix access violation during port device removal Testing with KASAN and syzkaller revealed a bug in port.c:disablestore: usbhubtostructhub can return NULL if the hub that the port belongs to is concurrently removed, but...

9.1CVSS6.5AI score0.00923EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2024/05/30 4:15 p.m.22 views

CVE-2024-36896

In the Linux kernel, the following vulnerability has been resolved: USB: core: Fix access violation during port device removal Testing with KASAN and syzkaller revealed a bug in port.c:disablestore: usbhubtostructhub can return NULL if the hub that the port belongs to is concurrently removed, but...

9.1CVSS6.4AI score0.00923EPSS
Exploits0References11
Cvelist
Cvelist
added 2024/05/30 3:29 p.m.20 views

CVE-2024-36896 USB: core: Fix access violation during port device removal

In the Linux kernel, the following vulnerability has been resolved: USB: core: Fix access violation during port device removal Testing with KASAN and syzkaller revealed a bug in port.c:disablestore: usbhubtostructhub can return NULL if the hub that the port belongs to is concurrently removed, but...

6.5AI score0.00923EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/05/30 3:29 p.m.24 views

CVE-2024-36896 USB: core: Fix access violation during port device removal

In the Linux kernel, the following vulnerability has been resolved: USB: core: Fix access violation during port device removal Testing with KASAN and syzkaller revealed a bug in port.c:disablestore: usbhubtostructhub can return NULL if the hub that the port belongs to is concurrently removed, but...

6.9AI score0.00923EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2024/05/15 12:0 a.m.6 views

The vulnerability of the update_port_device_state() function in the Linux kernel USB driver allows a hacker to induce a service failure.

The vulnerability of the updateportdevicestate function in the drivers/usb/core/hub.c file of the Linux kernel’s USB driver relates to the assignment of a null pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...

4.6CVSS6.4AI score0.00227EPSS
Exploits0References12Affected Software3
OSV
OSV
added 2024/04/17 11:15 a.m.3 views

UBUNTU-CVE-2024-26872

In the Linux kernel, the following vulnerability has been resolved: RDMA/srpt: Do not register event handler until srpt device is fully setup Upon rare occasions, KASAN reports a use-after-free Write in srptrefreshport. This seems to be because an event handler is registered before the srpt devic...

7CVSS6.1AI score0.00235EPSS
Exploits0References25
OSV
OSV
added 2024/04/03 3:15 p.m.0 views

DEBIAN-CVE-2024-26716

In the Linux kernel, the following vulnerability has been resolved: usb: core: Prevent null pointer dereference in updateportdevicestate Currently, the function updateportdevicestate gets the usbhub from udev-parent by calling usbhubtostructhub. However, in case the actconfig or the maxchild is 0...

5.5CVSS5.5AI score0.00227EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/01/27 12:0 a.m.4 views

PT-2024-3425 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a null pointer dereference in the update port device state function in the Linux kernel's USB core module. This occurs when the actconfig or maxchild is 0,...

7.8CVSS6.5AI score0.01287EPSS
Exploits1References315
Rows per page
Query Builder