Lucene search
+L

138 matches found

Cvelist
Cvelist
added 2024/01/03 9:0 p.m.25 views

CVE-2023-6338

Uncontrolled search path vulnerabilities were reported in the Lenovo Universal Device Client UDC that could allow an attacker with local access to execute code with elevated privileges...

7.8CVSS8AI score0.00207EPSS
Exploits0References1
NVD
NVD
added 2023/08/17 5:15 p.m.24 views

CVE-2023-3078

An uncontrolled search path vulnerability was reported in the Lenovo Universal Device Client UDC that could allow an attacker with local access to execute code with elevated privileges...

7.8CVSS7.6AI score0.00207EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/08/17 4:47 p.m.13 views

CVE-2023-3078

An uncontrolled search path vulnerability was reported in the Lenovo Universal Device Client UDC that could allow an attacker with local access to execute code with elevated privileges...

7.8CVSS7.3AI score0.00207EPSS
Exploits0References1
CVE
CVE
added 2023/08/17 4:47 p.m.51 views

CVE-2023-3078

The CVE-2023-3078 entry concerns Lenovo Universal Device Client (UDC). It describes an uncontrolled search path vulnerability that could allow a local attacker to execute code with elevated privileges. The available sources indicate a local attack vector with low prerequisites and high impact (C:...

7.8CVSS7.6AI score0.00207EPSS
Exploits0References1Affected Software1
Lenovo
Lenovo
added 2023/07/11 2:58 p.m.8 views

Lenovo UDC Vulnerability - Lenovo Support US

No description provided...

7.3AI score
Exploits0
NVD
NVD
added 2023/06/18 10:15 p.m.20 views

CVE-2023-35828

An issue was discovered in the Linux kernel before 6.3.2. A use-after-free was found in renesasusb3remove in drivers/usb/gadget/udc/renesasusb3.c...

7CVSS7.7AI score0.00536EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2023/06/18 10:15 p.m.38 views

CVE-2023-35828

An issue was discovered in the Linux kernel before 6.3.2. A use-after-free was found in renesasusb3remove in drivers/usb/gadget/udc/renesasusb3.c...

7CVSS6.7AI score0.00536EPSS
Exploits0References16
Cvelist
Cvelist
added 2023/06/18 12:0 a.m.23 views

CVE-2023-35828

An issue was discovered in the Linux kernel before 6.3.2. A use-after-free was found in renesasusb3remove in drivers/usb/gadget/udc/renesasusb3.c...

8.1AI score0.00536EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2023/06/18 12:0 a.m.26 views

CVE-2023-35828

An issue was discovered in the Linux kernel before 6.3.2. A use-after-free was found in renesasusb3remove in drivers/usb/gadget/udc/renesasusb3.c...

6.7AI score0.00536EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2023/06/18 12:0 a.m.29 views

CVE-2023-35828

An issue was discovered in the Linux kernel before 6.3.2. A use-after-free was found in renesasusb3remove in drivers/usb/gadget/udc/renesasusb3.c...

7CVSS6.2AI score0.00536EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2023/05/09 10:4 a.m.7 views

kernel: USB: gadget: Fix obscure lockdep violation for udc_mutex

In the Linux kernel, the following vulnerability has been resolved: USB: gadget: Fix obscure lockdep violation for udcmutex A recent commit expanding the scope of the udclock mutex in the gadget core managed to cause an obscure and slightly bizarre lockdep violation. In abbreviated form:...

5.5CVSS6.2AI score0.00141EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/05/09 10:4 a.m.3 views

kernel: USB: gadget: Fix use-after-free Read in usb_udc_uevent()

In the Linux kernel, the following vulnerability has been resolved: USB: gadget: Fix use-after-free Read in usbudcuevent The syzbot fuzzer found a race between uevent callbacks and gadget driver unregistration that can cause a use-after-free bug:...

7.8CVSS6.2AI score0.00208EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 3:26 a.m.1 views

SUSE CVE-2022-27223

In drivers/usb/gadget/udc/udc-xilinx.c in the Linux kernel before 5.16.12, the endpoint index is not validated and might be manipulated by the host for out-of-array access...

5.3CVSS6.8AI score0.02151EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2022/07/27 12:0 a.m.6 views

PT-2025-25906

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.19.0-rc4-next-20220628-syzkaller Description A use-after-free bug was found in the Linux kernel, specifically in the usb udc uevent function. This bug occurs due to a race between uevent callbacks and gadget...

7.8CVSS6AI score0.00208EPSS
Exploits0
CVE
CVE
added 2022/07/21 3:34 p.m.74 views

CVE-2022-0902

CVE-2022-0902 affects ABB Totalflow flow computers and remote controllers (RMC-100 Standard/LITE, XIO, XFCG5, XRCG5, uFLOG5, UDC). The issue combines path traversal and command-injection vulnerabilities in the proprietary Totalflow TCP protocol, allowing a remote attacker to insert and run arbitr...

9.8CVSS9.1AI score0.16678EPSS
Exploits0References1Affected Software1
Veracode
Veracode
added 2022/05/14 8:55 p.m.30 views

Out-of-bound Reads

linux is vulnerable to out-of bound reads. The vulnerability exists in drivers/usb/gadget/udc/udc-xilinx.c because the endpoint index is not validated and might be manipulated by the host for out-of-array access...

8.8CVSS8.3AI score0.02151EPSS
Exploits0References5Affected Software2
Tenable Nessus
Tenable Nessus
added 2022/05/12 12:0 a.m.189 views

Ubuntu 20.04 LTS : Linux kernel vulnerabilities (USN-5417-1)

The remote Ubuntu 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5417-1 advisory. Ke Sun, Alyssa Milburn, Henrique Kawakami, Emma Benoit, Igor Chervatyuk, Lisa Aichele, and Thais Moreira Hamasaki discovered that the Spectre Variant 2...

8.8CVSS7.1AI score0.02151EPSS
Exploits1References9
Tenable Nessus
Tenable Nessus
added 2022/05/12 12:0 a.m.81 views

Ubuntu 16.04 ESM / 18.04 LTS : Linux kernel vulnerabilities (USN-5418-1)

The remote Ubuntu 16.04 ESM / 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5418-1 advisory. Ke Sun, Alyssa Milburn, Henrique Kawakami, Emma Benoit, Igor Chervatyuk, Lisa Aichele, and Thais Moreira Hamasaki discovered that the Spectre...

8.8CVSS7.3AI score0.02151EPSS
Exploits1References14
BDU FSTEC
BDU FSTEC
added 2022/04/28 12:0 a.m.6 views

The vulnerability of the driver for Xilinx USB devices (drivers/usb/gadget/udc/udc-xilinx.c) in Linux operating systems allows a hacker to execute arbitrary code.

The vulnerability of the driver for Xilinx USB devices drivers/usb/gadget/udc/udc-xilinx.c in Linux operating systems is related to unvalidated array indexing. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

10CVSS7.2AI score0.02151EPSS
Exploits0References29Affected Software4
OSV
OSV
added 2022/04/16 11:3 a.m.3 views

OESA-2022-1614 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: An issue was discovered in the Linux kernel before 5.16.12. drivers/net/usb/sr9700.c allows attackers to obtain sensitive information from heap memory via crafted frame lengths from a device.CVE-2022-26966 In...

8.8CVSS8.2AI score0.02151EPSS
Exploits0References3
Rows per page
Query Builder