Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

AstraLinux
AstraLinuxadded 2026/05/03 11:59 p.m.4 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: xhci: sideband: do not dereference a freed ring when removing a sideband endpoint. xhcisidebandremoveendpoint incorrectly assumes that the endpoint is running and has a valid transfer ring. Lianqin reported a crash during...

5.5CVSS5.5AI score0.00135EPSS
Exploits0References1
CVE
CVEadded 2026/01/25 2:36 p.m.12 views

CVE-2026-23009

CVE-2026-23009 is a Linux kernel vulnerability in the xHCI sideband code where xhci_sideband_remove_endpoint() could dereference a non-existent transfer ring (ep->ring) during suspend/resume or re-enumeration, risking a crash. The fix adds a guard to only dereference ep->ring if it exists a...

5.5CVSS5.2AI score0.00135EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologiesadded 2026/01/25 12:0 a.m.4 views

PT-2026-4671

In the Linux kernel, the following vulnerability has been resolved: xhci: sideband: don't dereference freed ring when removing sideband endpoint xhci sideband remove endpoint incorrecly assumes that the endpoint is running and has a valid transfer ring. Lianqin reported a crash during...

5.2AI score0.00135EPSS
Exploits0References3
AstraLinux
AstraLinuxadded 2025/11/01 10:54 a.m.5 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: bus: mhi: host: Detect events pointing to unexpected TREs When a remote device sends a completion event to the host, it contains a pointer to the consumed TRE. The host uses this pointer to process all of the TREs between itself...

7.8CVSS6.9AI score0.00143EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2025-28923

Malicious code in bioql PyPI...

6.3AI score0.00143EPSS
Exploits0References7
SUSE CVE
SUSE CVEadded 2025/02/28 2:23 a.m.2 views

SUSE CVE-2024-57981

In the Linux kernel, the following vulnerability has been resolved: usb: xhci: Fix NULL pointer dereference on certain command aborts If a command is queued to the final usable TRB of a ring segment, the enqueue pointer is advanced to the subsequent link TRB and no further. If the command is late...

5.5CVSS7.8AI score0.00225EPSS
Exploits0References16
OSV
OSVadded 2025/02/27 2:15 a.m.4 views

AZL-58021 CVE-2024-57981 affecting package kernel for versions less than 5.15.179.1-1

In the Linux kernel, the following vulnerability has been resolved: usb: xhci: Fix NULL pointer dereference on certain command aborts If a command is queued to the final usable TRB of a ring segment, the enqueue pointer is advanced to the subsequent link TRB and no further. If the command is late...

5.5CVSS6.4AI score0.00225EPSS
Exploits0References1
OSV
OSVadded 2022/08/17 9:15 p.m.0 views

UBUNTU-CVE-2020-14394

An infinite loop flaw was found in the USB xHCI controller emulation of QEMU while computing the length of the Transfer Request Block TRB Ring. This flaw allows a privileged guest user to hang the QEMU process on the host, resulting in a denial of service...

3.2CVSS7.1AI score0.00363EPSS
Exploits1References4
Rows per page
Query Builder