CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

56 matches found

AstraLinux•added 2026/05/03 11:59 p.m.•3 views

Astra Linux - уязвимость в linux-5.10, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: usb: typec: tcpm: fix warning when handle discoveridentity message Since both source and sink device can send discoveridentity message in PD3, kernel may dump below warning: ------------ cut here ------------ WARNING: CPU: 0 PID:...

5.5CVSS6.1AI score0.00065EPSS

Exploits0References2

Tenable Nessus•added 2025/10/07 12:0 a.m.•1 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987157)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987157 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: typec: tcpm: cancel vdm and state machine hrtimer when unregister tcpm port A pending hrtime...

7.8CVSS5.3AI score0.00022EPSS

Exploits0References4

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2025-20980

Malicious code in bioql PyPI...

7.6AI score0.00038EPSS

Exploits0References3

NVD•added 2025/07/10 8:15 a.m.•4 views

CVE-2025-38268

In the Linux kernel, the following vulnerability has been resolved: usb: typec: tcpm: move tcpmqueuevdmunlocked to asynchronous work A state check was previously added to tcpmqueuevdmunlocked to prevent a deadlock where the DisplayPort Alt Mode driver would be executing work and attempting to gra...

5.5CVSS0.00038EPSS

Exploits0References3

OSV•added 2025/07/10 7:41 a.m.•2 views

CVE-2025-38268 usb: typec: tcpm: move tcpm_queue_vdm_unlocked to asynchronous work

5.5CVSS6.3AI score0.00038EPSS

Exploits0References6

CNNVD•added 2025/07/10 12:0 a.m.•1 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a state-checking issue in typec-tcpm, which could lead to a deadlock...

5.5CVSS6.8AI score0.00038EPSS

Exploits0References5

Positive Technologies•added 2025/05/06 12:0 a.m.•0 views

PT-2025-28988

Name of the Vulnerable Software and Affected Versions: Linux Kernel affected versions not specified Description: A vulnerability exists in the Linux kernel related to the handling of DisplayPort Alt Mode. A previous state check in tcpm queue vdm unlocked could lead to a deadlock situation where t...

7.8CVSS7.8AI score0.00319EPSS

Exploits11References1840

SUSE CVE•added 2025/05/03 2:51 a.m.•1 views

SUSE CVE-2023-53048

5.5CVSS6.3AI score0.00065EPSS

Exploits0References9

OSV•added 2025/05/02 3:55 p.m.•4 views

CVE-2023-53048 usb: typec: tcpm: fix warning when handle discover_identity message

5.5CVSS5.9AI score0.00065EPSS

Exploits0References7

Cvelist•added 2025/05/02 3:55 p.m.•6 views

CVE-2023-53048 usb: typec: tcpm: fix warning when handle discover_identity message

0.00065EPSS

Exploits0References4

RedhatCVE•added 2024/07/16 2:23 p.m.•14 views

CVE-2024-40903

A vulnerability was found in the tcpmregistersourcecaps function in the Linux kernel's USB Type-C TCPM component. This issue arises when new, potentially invalid source capabilities are advertised while existing capabilities are unregistered, leading to a use-after-free condition if the...

5.2CVSS8.2AI score0.00012EPSS

Exploits0References4

NVD•added 2024/07/12 1:15 p.m.•16 views

CVE-2024-40903

In the Linux kernel, the following vulnerability has been resolved: usb: typec: tcpm: fix use-after-free case in tcpmregistersourcecaps There could be a potential use-after-free case in tcpmregistersourcecaps. This could happen when: new say invalid source caps are advertised the existing source...

7.8CVSS0.00012EPSS

Exploits0References5

UbuntuCve•added 2024/07/12 1:15 p.m.•17 views

CVE-2024-40903

7.8CVSS6.4AI score0.00012EPSS

Exploits0References13

OSV•added 2024/07/12 12:20 p.m.•16 views

CVE-2024-40903 usb: typec: tcpm: fix use-after-free case in tcpm_register_source_caps

7.8CVSS5.9AI score0.00012EPSS

Exploits0References8

Vulnrichment•added 2024/07/12 12:20 p.m.•15 views

CVE-2024-40903 usb: typec: tcpm: fix use-after-free case in tcpm_register_source_caps

6.7AI score0.00012EPSS

Exploits0References4

CVE•added 2024/07/12 12:20 p.m.•148 views

CVE-2024-40903

The CVE-2024-40903 issue affects the Linux kernel in the USB Type-C Power Delivery path. Specifically, a use-after-free could occur in tcpm_register_source_caps when new (potentially invalid) source capabilities are advertised, existing source caps are unregistered, and an error occurs in usb_pow...

7.8CVSS8.3AI score0.00012EPSS

Exploits0References5Affected Software1

Debian CVE•added 2024/07/12 12:20 p.m.•13 views

CVE-2024-40903

7.8CVSS5.8AI score0.00012EPSS

Exploits0

Cvelist•added 2024/07/12 12:20 p.m.•17 views

CVE-2024-40903 usb: typec: tcpm: fix use-after-free case in tcpm_register_source_caps

0.00012EPSS

Exploits0References4

RedHat Linux•added 2024/07/08 2:5 a.m.•1 views

kernel: usb: typec: tcpm: Fix NULL pointer dereference in tcpm_pd_svdm()

In the Linux kernel, the following vulnerability has been resolved: usb: typec: tcpm: Fix NULL pointer dereference in tcpmpdsvdm It is possible that typecregisterpartner returns ERRPTR on failure. When port-partner is an error, a NULL pointer dereference may occur as shown below. 91222.095236 T31...

5.5CVSS6.4AI score0.00016EPSS

Exploits0References5

NVD•added 2024/05/30 4:15 p.m.•22 views

CVE-2024-36893

In the Linux kernel, the following vulnerability has been resolved: usb: typec: tcpm: Check for port partner validity before consuming it typecregisterpartner does not guarantee partner registration to always succeed. In the event of failure, port-partner is set to the error value or NULL. Given...

5.5CVSS6.4AI score0.00016EPSS

Exploits0References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by