138 matches found
CVE-2023-6338
Uncontrolled search path vulnerabilities were reported in the Lenovo Universal Device Client UDC that could allow an attacker with local access to execute code with elevated privileges...
CVE-2023-3078
An uncontrolled search path vulnerability was reported in the Lenovo Universal Device Client UDC that could allow an attacker with local access to execute code with elevated privileges...
CVE-2023-3078
An uncontrolled search path vulnerability was reported in the Lenovo Universal Device Client UDC that could allow an attacker with local access to execute code with elevated privileges...
CVE-2023-3078
The CVE-2023-3078 entry concerns Lenovo Universal Device Client (UDC). It describes an uncontrolled search path vulnerability that could allow a local attacker to execute code with elevated privileges. The available sources indicate a local attack vector with low prerequisites and high impact (C:...
Lenovo UDC Vulnerability - Lenovo Support US
No description provided...
CVE-2023-35828
An issue was discovered in the Linux kernel before 6.3.2. A use-after-free was found in renesasusb3remove in drivers/usb/gadget/udc/renesasusb3.c...
CVE-2023-35828
An issue was discovered in the Linux kernel before 6.3.2. A use-after-free was found in renesasusb3remove in drivers/usb/gadget/udc/renesasusb3.c...
CVE-2023-35828
An issue was discovered in the Linux kernel before 6.3.2. A use-after-free was found in renesasusb3remove in drivers/usb/gadget/udc/renesasusb3.c...
CVE-2023-35828
An issue was discovered in the Linux kernel before 6.3.2. A use-after-free was found in renesasusb3remove in drivers/usb/gadget/udc/renesasusb3.c...
CVE-2023-35828
An issue was discovered in the Linux kernel before 6.3.2. A use-after-free was found in renesasusb3remove in drivers/usb/gadget/udc/renesasusb3.c...
kernel: USB: gadget: Fix obscure lockdep violation for udc_mutex
In the Linux kernel, the following vulnerability has been resolved: USB: gadget: Fix obscure lockdep violation for udcmutex A recent commit expanding the scope of the udclock mutex in the gadget core managed to cause an obscure and slightly bizarre lockdep violation. In abbreviated form:...
kernel: USB: gadget: Fix use-after-free Read in usb_udc_uevent()
In the Linux kernel, the following vulnerability has been resolved: USB: gadget: Fix use-after-free Read in usbudcuevent The syzbot fuzzer found a race between uevent callbacks and gadget driver unregistration that can cause a use-after-free bug:...
SUSE CVE-2022-27223
In drivers/usb/gadget/udc/udc-xilinx.c in the Linux kernel before 5.16.12, the endpoint index is not validated and might be manipulated by the host for out-of-array access...
PT-2025-25906
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.19.0-rc4-next-20220628-syzkaller Description A use-after-free bug was found in the Linux kernel, specifically in the usb udc uevent function. This bug occurs due to a race between uevent callbacks and gadget...
CVE-2022-0902
CVE-2022-0902 affects ABB Totalflow flow computers and remote controllers (RMC-100 Standard/LITE, XIO, XFCG5, XRCG5, uFLOG5, UDC). The issue combines path traversal and command-injection vulnerabilities in the proprietary Totalflow TCP protocol, allowing a remote attacker to insert and run arbitr...
Out-of-bound Reads
linux is vulnerable to out-of bound reads. The vulnerability exists in drivers/usb/gadget/udc/udc-xilinx.c because the endpoint index is not validated and might be manipulated by the host for out-of-array access...
Ubuntu 20.04 LTS : Linux kernel vulnerabilities (USN-5417-1)
The remote Ubuntu 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5417-1 advisory. Ke Sun, Alyssa Milburn, Henrique Kawakami, Emma Benoit, Igor Chervatyuk, Lisa Aichele, and Thais Moreira Hamasaki discovered that the Spectre Variant 2...
Ubuntu 16.04 ESM / 18.04 LTS : Linux kernel vulnerabilities (USN-5418-1)
The remote Ubuntu 16.04 ESM / 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5418-1 advisory. Ke Sun, Alyssa Milburn, Henrique Kawakami, Emma Benoit, Igor Chervatyuk, Lisa Aichele, and Thais Moreira Hamasaki discovered that the Spectre...
The vulnerability of the driver for Xilinx USB devices (drivers/usb/gadget/udc/udc-xilinx.c) in Linux operating systems allows a hacker to execute arbitrary code.
The vulnerability of the driver for Xilinx USB devices drivers/usb/gadget/udc/udc-xilinx.c in Linux operating systems is related to unvalidated array indexing. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...
OESA-2022-1614 kernel security update
The Linux Kernel, the operating system core itself. Security Fixes: An issue was discovered in the Linux kernel before 5.16.12. drivers/net/usb/sr9700.c allows attackers to obtain sensitive information from heap memory via crafted frame lengths from a device.CVE-2022-26966 In...