Lucene search
K

15 matches found

SUSE CVE
SUSE CVE
added 2026/04/25 1:37 a.m.7 views

SUSE CVE-2026-31615

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: renesasusb3: validate endpoint index in standard request handlers The GETSTATUS and SET/CLEARFEATURE handlers extract the endpoint number from the host-supplied wIndex without any sort of validation. Fix this up by...

6.1CVSS5.5AI score0.00125EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/04/24 8:34 p.m.6 views

CVE-2026-31615

A flaw was found in the Linux kernel's renesasusb3 and aspeedudc drivers. These drivers did not properly validate endpoint index numbers provided by a host during standard USB requests, such as GETSTATUS and SET/CLEARFEATURE. This oversight could allow an attacker to provide a crafted endpoint...

5.5CVSS5.2AI score0.00125EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/04/24 2:42 p.m.31 views

CVE-2026-31615 usb: gadget: renesas_usb3: validate endpoint index in standard request handlers

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: renesasusb3: validate endpoint index in standard request handlers The GETSTATUS and SET/CLEARFEATURE handlers extract the endpoint number from the host-supplied wIndex without any sort of validation. Fix this up by...

0.00125EPSS
Exploits0References9
Debian CVE
Debian CVE
added 2026/04/24 2:42 p.m.6 views

CVE-2026-31615

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: renesasusb3: validate endpoint index in standard request handlers The GETSTATUS and SET/CLEARFEATURE handlers extract the endpoint number from the host-supplied wIndex without any sort of validation. Fix this up by...

5.5CVSS5.3AI score0.00125EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/04/24 2:42 p.m.4 views

CVE-2026-31615

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: renesasusb3: validate endpoint index in standard request handlers The GETSTATUS and SET/CLEARFEATURE handlers extract the endpoint number from the host-supplied wIndex without any sort of validation. Fix this up by...

5.4AI score0.00125EPSS
Exploits0References7Affected Software1
EUVD
EUVD
added 2026/04/24 2:42 p.m.8 views

EUVD-2026-25508

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: renesasusb3: validate endpoint index in standard request handlers The GETSTATUS and SET/CLEARFEATURE handlers extract the endpoint number from the host-supplied wIndex without any sort of validation. Fix this up by...

5.4AI score0.00125EPSS
Exploits0References4
CVE
CVE
added 2026/04/24 2:42 p.m.18 views

CVE-2026-31615

In CVE-2026-31615, the Linux kernel USB gadget code for renesas_usb3 (and related aspeed_udc context) did not validate endpoint indices in standard requests (GET_STATUS, SET/CLEAR_FEATURE). The host-supplied wIndex could be used to dereference a pointer without confirming endpoint count, risking ...

5.5CVSS5.4AI score0.00125EPSS
Exploits0References9Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/24 12:0 a.m.14 views

PT-2026-34967

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The renesas usb3 gadget driver fails to validate the endpoint index provided by the host in the wIndex variable within the 'GET STATUS' and 'SET/CLEAR FEATURE' standard request handlers...

9.8CVSS5.8AI score0.00525EPSS
Exploits0References396
Tenable Nessus
Tenable Nessus
added 2025/11/20 12:0 a.m.4 views

TencentOS Server 3: kernel (TSSA-2024:0070)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0070 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

7.8CVSS6.3AI score0.00536EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2023/09/06 12:0 a.m.50 views

Ubuntu 20.04 LTS : Linux kernel (Azure) vulnerabilities (USN-6349-1)

The remote Ubuntu 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6349-1 advisory. Ruihan Li discovered that the bluetooth subsystem in the Linux kernel did not properly perform permissions checks when handling HCI sockets. A physically...

10CVSS7.9AI score0.03546EPSS
Exploits2References10
SUSE CVE
SUSE CVE
added 2023/06/20 1:13 a.m.10 views

SUSE CVE-2023-35828

An issue was discovered in the Linux kernel before 6.3.2. A use-after-free was found in renesasusb3remove in drivers/usb/gadget/udc/renesasusb3.c...

6.7CVSS6.6AI score0.00536EPSS
Exploits0References19
ATTACKERKB
ATTACKERKB
added 2023/06/18 10:15 p.m.3 views

CVE-2023-35828

An issue was discovered in the Linux kernel before 6.3.2. A use-after-free was found in renesasusb3remove in drivers/usb/gadget/udc/renesasusb3.c...

7CVSS5.3AI score0.00536EPSS
Exploits0References9
OSV
OSV
added 2023/06/18 10:15 p.m.15 views

AZL-27247 CVE-2023-35828 affecting package kernel for versions less than 5.15.122.1-2

An issue was discovered in the Linux kernel before 6.3.2. A use-after-free was found in renesasusb3remove in drivers/usb/gadget/udc/renesasusb3.c...

7CVSS6.7AI score0.00536EPSS
Exploits0References1
OSV
OSV
added 2023/06/18 10:15 p.m.1 views

UBUNTU-CVE-2023-35828

An issue was discovered in the Linux kernel before 6.3.2. A use-after-free was found in renesasusb3remove in drivers/usb/gadget/udc/renesasusb3.c...

7CVSS6.6AI score0.00536EPSS
Exploits0References17
Positive Technologies
Positive Technologies
added 2023/03/23 12:0 a.m.23 views

PT-2023-3345 · Linux +6 · Linux Kernel +6

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.3.2 Description: A use-after-free issue was found in the renesas usb3 remove function in the drivers/usb/gadget/udc/renesas usb3.c module of the Linux kernel's USB device driver. This issue is related to a rac...

10CVSS6.6AI score0.71737EPSS
Exploits73References1690
Rows per page
Query Builder