Lucene search
K

208 matches found

ATTACKERKB
ATTACKERKB
added 2026/07/01 1:32 p.m.5 views

CVE-2026-53344

In the Linux kernel, the following vulnerability has been resolved: pinctrl: mcp23s08: Initialize mcp-dev and mcp-addr before regmap init Regmap initialization triggers regcachemaplepopulate which attempts SPI read to populate cache. SPI read requires mcp-dev and mcp-addr to be set, without them,...

5.7AI score0.00145EPSS
Exploits0References3Affected Software1
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.7 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: spi: spi-sprd-adi – Fixed a double-free in the probe error path. The driver currently uses spiallochost to allocate the controller, but registers it using devmspiregistercontroller. If devmregisterrestarthandler fails, the code...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.6 views

Astra Linux – Vulnerability in Linux

In the Linux kernel, the following vulnerability has been resolved: spi: spi-fsl-dspi: A resource leak was fixed in the error handling path. The call dspirequestdma should be undone by a call to dspireleasedma in the error handling path of the probe function, as already done in the remove functio...

5.5CVSS5.8AI score0.00226EPSS
Exploits0References2
NVD
NVD
added 2026/06/12 11:16 a.m.17 views

CVE-2026-9266

A Missing Required Cryptographic Step vulnerability has been identified in Moxa's embedded Linux firmware for industrial computers and controllers. This vulnerability represents an incomplete remediation of CVE-2026-0714. The firmware introduced TPM2 parameter encryption as a countermeasure again...

7CVSS0.0007EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/12 10:0 a.m.9 views

EUVD-2026-36411

A Missing Required Cryptographic Step vulnerability has been identified in Moxa's embedded Linux firmware for industrial computers and controllers. This vulnerability represents an incomplete remediation of CVE-2026-0714. The firmware introduced TPM2 parameter encryption as a countermeasure again...

7CVSS5.1AI score0.00115EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/12 12:0 a.m.12 views

PT-2026-48857

A Missing Required Cryptographic Step vulnerability has been identified in Moxa's embedded Linux firmware for industrial computers and controllers. This vulnerability represents an incomplete remediation of CVE-2026-0714. The firmware introduced TPM2 parameter encryption as a countermeasure again...

7CVSS5.2AI score0.0007EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2026/06/10 8:4 a.m.7 views

spi: s3c64xx: fix NULL-deref on driver unbind

...

5.5CVSS5.8AI score0.00114EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/06/10 8:4 a.m.8 views

spi: topcliff-pch: fix use-after-free on unbind

...

7.8CVSS5.8AI score0.00117EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2026/06/10 2:25 a.m.10 views

SUSE CVE-2026-46326

In the Linux kernel, the following vulnerability has been resolved: iio: pressure: mprls0025pa: fix spitransfer struct initialisation Make sure that the spitransfer struct is zeroed out before use...

8.4CVSS5.4AI score0.00132EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/09 12:25 p.m.13 views

EUVD-2026-35427

In the Linux kernel, the following vulnerability has been resolved: iio: pressure: mprls0025pa: fix spitransfer struct initialisation Make sure that the spitransfer struct is zeroed out before use...

5.4AI score0.00132EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2026/06/09 12:25 p.m.10 views

CVE-2026-46326

In the Linux kernel, the following vulnerability has been resolved: iio: pressure: mprls0025pa: fix spitransfer struct initialisation Make sure that the spitransfer struct is zeroed out before use...

8.4CVSS5.3AI score0.00132EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/06/09 12:0 a.m.15 views

PT-2026-47784

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the mprls0025pa pressure sensor driver where the spi transfer structure is not properly zeroed out before use, which can lead to undefined behavior during SPI transfer...

8.4CVSS5.8AI score0.00132EPSS
Exploits0References13
Microsoft CVE
Microsoft CVE
added 2026/05/29 8:5 a.m.10 views

spi: rspi: fix controller deregistration

...

7.1CVSS5.4AI score0.00119EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/05/29 8:4 a.m.8 views

spi: fsl: fix controller deregistration

...

7.1CVSS5.4AI score0.00119EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/05/29 8:1 a.m.9 views

spi: mpc52xx: fix use-after-free on unbind

...

7.8CVSS5.4AI score0.00135EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2026/05/29 1:14 a.m.12 views

SUSE CVE-2026-46219

In the Linux kernel, the following vulnerability has been resolved: spi: mpc52xx: fix use-after-free on unbind The state machine work is scheduled by the interrupt handler and therefore needs to be cancelled after disabling interrupts to avoid a potential use-after-free...

7CVSS5.7AI score0.00135EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/05/28 9:8 p.m.11 views

CVE-2026-46226

A flaw was found in the Linux kernel's spi: fsl driver. This vulnerability arises from improper sequencing of controller deregistration before releasing underlying resources, such as Direct Memory Access DMA, during the driver unbind process. This could potentially lead to system instability or a...

5.5CVSS5.8AI score0.00119EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/05/28 9:8 p.m.9 views

CVE-2026-46228

A flaw was found in the Linux kernel, specifically within the spi: ch341 driver. This vulnerability arises from incorrect management of device resources devres lifetime. When a Universal Serial Bus USB driver is unbound, the associated resources are not properly released, which can lead to memory...

5.5CVSS5.8AI score0.00117EPSS
Exploits0References4
NVD
NVD
added 2026/05/28 10:16 a.m.18 views

CVE-2026-46219

In the Linux kernel, the following vulnerability has been resolved: spi: mpc52xx: fix use-after-free on unbind The state machine work is scheduled by the interrupt handler and therefore needs to be cancelled after disabling interrupts to avoid a potential use-after-free...

7.8CVSS0.00135EPSS
Exploits0References8
OSV
OSV
added 2026/05/28 10:16 a.m.13 views

UBUNTU-CVE-2026-46200

In the Linux kernel, the following vulnerability has been resolved: spi: mpc52xx: fix controller deregistration Make sure to deregister the controller before disabling and releasing underlying resources like interrupts and gpios during driver unbind...

5.5CVSS5.7AI score0.00127EPSS
Exploits0References7
Rows per page
Query Builder