Lucene search
K

337 matches found

OSV
OSV
added 2 days ago2 views

UBUNTU-CVE-2026-53344

In the Linux kernel, the following vulnerability has been resolved: pinctrl: mcp23s08: Initialize mcp-dev and mcp-addr before regmap init Regmap initialization triggers regcachemaplepopulate which attempts SPI read to populate cache. SPI read requires mcp-dev and mcp-addr to be set, without them,...

5.7AI score0.00145EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 3 days ago5 views

CVE-2026-53344

A flaw was found in the Linux kernel's pinctrl: mcp23s08 driver. During the initialization of the regmap register map for the mcp23s08 component, an attempt to perform an SPI Serial Peripheral Interface read occurs before critical device parameters mcp-dev and mcp-addr are properly set. This...

5.7AI score0.00145EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/25 6:2 p.m.5 views

CVE-2026-53073

A flaw was found in the Linux kernel's Bluetooth Host Controller Interface HCI Universal Asynchronous Receiver/Transmitter UART driver. When the hciregisterdev function fails, a flag indicating protocol initialization is not properly cleared. This oversight allows incoming UART data to be process...

7CVSS5.7AI score0.00172EPSS
Exploits0References4
CVE
CVE
added 2026/06/25 8:39 a.m.14 views

CVE-2026-53195

In the Linux kernel USB serial driver io_ti, CVE-2026-53195 describes a heap-overflow in build_i2c_fw_hdr(). The function allocates a fixed buffer ((16*1024 - 512) + sizeof(struct ti_i2c_firmware_rec)) and then copies img_header->Length bytes without validating that Length fits into the remain...

6AI score0.00203EPSS
Exploits0References8
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.9 views

Astra Linux – Vulnerability found in Linux 5.15, Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: drm/panel/panel-sitronix-st7701: Remove the panel when DSI attachment fails. In the event that mipidsiattach fails, call drmpanelremove to avoid a memory leak...

5.9AI score0.00211EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability found in Linux 5.15, Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: spi: imx: Do not skip cleanup in the error path of the remove function Returning early in the remove callback of a platform driver is incorrect. In this case, the DMA resources are not released during the error path. This issue i...

5.5CVSS5.3AI score0.00152EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.21 views

Astra Linux – Vulnerability in Linux, Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: Staging: greybus: uart: fixed the issue where tty was used after it was freed. The user space can keep a tty open indefinitely, and tty drivers must not release the underlying structures until the last user has left. We have...

7.8CVSS5.7AI score0.00242EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in Linux

In the Linux kernel, the following vulnerability has been resolved: spi: fsl-lpspi: The issue of a reference leak during lpspipreparexferhardware has been fixed. pmruntimegetsync will increment the pm usage counter even if the operation fails. Forgetting to replace the original operation resulted...

5.5CVSS6.2AI score0.00225EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/12 6:24 p.m.14 views

EUVD-2026-36538

During WiFi association, Naxclow device firmware prints the host network’s SSID, PSK, and negotiated WPA keys in cleartext to an exposed UART console on production hardware. The UART pads are labeled, run with default serial settings, and drop to an interactive RT-Thread shell that permits...

5.1CVSS5.3AI score0.00171EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/09 12:25 p.m.27 views

CVE-2026-46326 iio: pressure: mprls0025pa: fix spi_transfer struct initialisation

In the Linux kernel, the following vulnerability has been resolved: iio: pressure: mprls0025pa: fix spitransfer struct initialisation Make sure that the spitransfer struct is zeroed out before use...

8.4CVSS0.00132EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/05 7:40 p.m.9 views

CVE-2025-4386

Medtronic MyCareLink Patient Monitor has an internal serial interface, which allows an attacker with physical access to access a login prompt via a UART terminal.​...

6.8CVSS5.4AI score0.00157EPSS
Exploits0References1
OSV
OSV
added 2026/06/05 3:54 a.m.7 views

MINI-R232-QJ48-CMC3

Bulletin has no description...

6.5CVSS5.7AI score0.00196EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/06/04 2:40 p.m.12 views

CVE-2026-46261

A flaw was found in the Linux kernel. A null pointer dereference in the wpcm-fiu Serial Peripheral Interface SPI driver, specifically when platformgetresourcebyname returns a null value, could lead to a system crash. This vulnerability could allow a local attacker to cause a Denial of Service DoS...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References4
EUVD
EUVD
added 2026/06/04 12:0 a.m.13 views

EUVD-2026-34277

GNCC GP5 v7.1.76 was discovered to store sensitive wireless network information in plaintext during routine operations to the serial console. This issue allows physically-proximate attackers to obtain sensitive information, including network credentials, via monitoring the serial UART interface...

5.8AI score0.00156EPSS
Exploits0References3
Microsoft CVE
Microsoft CVE
added 2026/05/29 8:5 a.m.9 views

spi: rspi: fix controller deregistration

...

7.1CVSS5.4AI score0.00119EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2026/05/29 1:16 a.m.17 views

SUSE CVE-2026-46148

In the Linux kernel, the following vulnerability has been resolved: spi: microchip-core-qspi: control built-in cs manually The coreQSPI IP supports only a single chip select, which is automagically operated by the hardware - set low when the transmit buffer first gets written to and set high when...

5.5CVSS5.8AI score0.00121EPSS
Exploits0References3
NVD
NVD
added 2026/05/28 10:16 a.m.18 views

CVE-2026-46226

In the Linux kernel, the following vulnerability has been resolved: spi: fsl: fix controller deregistration Make sure to deregister the controller before releasing underlying resources like DMA during driver unbind...

5.5CVSS0.00119EPSS
Exploits0References5
OSV
OSV
added 2026/05/28 10:16 a.m.5 views

UBUNTU-CVE-2026-46203

In the Linux kernel, the following vulnerability has been resolved: spi: cadence-quadspi: fix unclocked access on unbind Make sure that the controller is runtime resumed before disabling it during driver unbind to avoid an unclocked register access. This issue was flagged by Sashiko when reviewin...

7.1CVSS5.7AI score0.00131EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2026/05/28 9:41 a.m.13 views

CVE-2026-46241

In the Linux kernel, the following vulnerability has been resolved: spi: mpc52xx: fix use-after-free on registration failure Make sure to disable and free the interrupts in case controller registration fails to avoid a potential use-after-free and resource leak. This issue was flagged by Sashiko...

7.8CVSS5.7AI score0.00125EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/05/28 9:36 a.m.9 views

CVE-2026-46148

In the Linux kernel, the following vulnerability has been resolved: spi: microchip-core-qspi: control built-in cs manually The coreQSPI IP supports only a single chip select, which is automagically operated by the hardware - set low when the transmit buffer first gets written to and set high when...

5.5CVSS5.9AI score0.00121EPSS
Exploits0
Rows per page
Query Builder