Lucene search
+L

47 matches found

bdu_fstec
bdu_fstec
added 2026/02/10 12:0 a.m.4 views

The vulnerability of the usb_udc_uevent() function in the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the usbudcuevent function in the Linux operating system is related to the reutilization of previously released memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

7.8CVSS6.3AI score0.00208EPSS
Exploits0References8Affected Software4
nessus
nessus
added 2026/01/27 12:0 a.m.4 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-005086)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005086 advisory. In the Linux kernel, the following vulnerability has been resolved: kobjectuevent: Fix OOB access within zapmodaliasenv zapmodaliasenv wrongly calculates size of...

7.1CVSS6.8AI score0.00248EPSS
Exploits0References4
osv
osv
added 2025/12/30 1:16 p.m.11 views

AZL-78377 CVE-2023-54207 affecting package kernel for versions less than 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: HID: uclogic: Correct devm device reference for hidinput inputdev name Reference the HID device rather than the input device for the devm allocation of the inputdev name. Referencing the inputdev would lead to a use-after-free wh...

7.8CVSS5.6AI score0.0013EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2025/12/30 12:11 p.m.6 views

CVE-2023-54207 HID: uclogic: Correct devm device reference for hidinput input_dev name

In the Linux kernel, the following vulnerability has been resolved: HID: uclogic: Correct devm device reference for hidinput inputdev name Reference the HID device rather than the input device for the devm allocation of the inputdev name. Referencing the inputdev would lead to a use-after-free wh...

6.5AI score0.0013EPSS
Exploits0References6
cvelist
cvelist
added 2025/12/30 12:11 p.m.20 views

CVE-2023-54207 HID: uclogic: Correct devm device reference for hidinput input_dev name

In the Linux kernel, the following vulnerability has been resolved: HID: uclogic: Correct devm device reference for hidinput inputdev name Reference the HID device rather than the input device for the devm allocation of the inputdev name. Referencing the inputdev would lead to a use-after-free wh...

0.0013EPSS
Exploits0References6
mscve
mscve
added 2025/11/16 1:1 a.m.4 views

USB: gadget: Fix use-after-free Read in usb_udc_uevent()

...

7.8CVSS8.7AI score0.00208EPSS
Exploits0
nessus
nessus
added 2025/10/07 12:0 a.m.4 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986977)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986977 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: gadget: Fix use-after-free bug by not setting udc-dev.driver The syzbot fuzzer found a...

5.5CVSS5.8AI score0.00233EPSS
Exploits0References4
attackerkb
attackerkb
added 2025/10/06 11:35 p.m.7 views

CVE-2025-34251

Tesla Telematics Control Unit TCU firmware prior to v2025.14 contains an authentication bypass vulnerability. The TCU runs the Android Debug Bridge adbd as root and, despite a “lockdown” check that disables adb shell, still permits adb push/pull and adb forward. Because adbd is privileged and the...

8.6CVSS6.1AI score0.00542EPSS
Exploits0References4
cvelist
cvelist
added 2025/10/06 11:35 p.m.12 views

CVE-2025-34251 Tesla Telematics Control Unit (TCU) < v2025.14 Authentication Bypass

Tesla Telematics Control Unit TCU firmware prior to v2025.14 contains an authentication bypass vulnerability. The TCU runs the Android Debug Bridge adbd as root and, despite a “lockdown” check that disables adb shell, still permits adb push/pull and adb forward. Because adbd is privileged and the...

8.6CVSS0.00542EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2025/10/06 12:0 a.m.6 views

PT-2025-40953

Name of the Vulnerable Software and Affected Versions Tesla Telematics Control Unit TCU firmware versions prior to 2025.14 Description The Tesla Telematics Control Unit TCU firmware is susceptible to an authentication bypass. The TCU operates the Android Debug Bridge adbd with root privileges...

8.6CVSS6.8AI score0.00542EPSS
Exploits0References8
euvd
euvd
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-55260

Malicious code in bioql PyPI...

7.1AI score0.00208EPSS
Exploits0References2
euvd
euvd
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-59831

Malicious code in bioql PyPI...

6.3AI score0.00133EPSS
Exploits0References3
cvelist
cvelist
added 2025/10/01 11:42 a.m.4 views

CVE-2023-53454 HID: multitouch: Correct devm device reference for hidinput input_dev name

In the Linux kernel, the following vulnerability has been resolved: HID: multitouch: Correct devm device reference for hidinput inputdev name Reference the HID device rather than the input device for the devm allocation of the inputdev name. Referencing the inputdev would lead to a use-after-free...

0.00153EPSS
Exploits0References9
nvd
nvd
added 2025/09/15 3:15 p.m.21 views

CVE-2023-53253

In the Linux kernel, the following vulnerability has been resolved: HID: nvidia-shield: Reference hiddevice devm allocation of inputdev name Use hiddevice for devm allocation of the inputdev name to avoid a use-after-free. inputunregisterdevice would trigger devres cleanup of all resources...

7.8CVSS0.00133EPSS
Exploits0References2
osv
osv
added 2025/09/15 2:46 p.m.7 views

CVE-2023-53253 HID: nvidia-shield: Reference hid_device devm allocation of input_dev name

In the Linux kernel, the following vulnerability has been resolved: HID: nvidia-shield: Reference hiddevice devm allocation of inputdev name Use hiddevice for devm allocation of the inputdev name to avoid a use-after-free. inputunregisterdevice would trigger devres cleanup of all resources...

7.8CVSS6.1AI score0.00133EPSS
Exploits0References5
nessus
nessus
added 2025/08/07 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-37800

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - driver core: fix potential NULL pointer dereference in devuevent If userspace reads uevent device attribute at the same time as another threads unbinds the devi...

5.5CVSS6.6AI score0.00167EPSS
Exploits0References4
redhatcve
redhatcve
added 2025/06/20 10:15 a.m.5 views

CVE-2022-49980

In the Linux kernel, the following vulnerability has been resolved: USB: gadget: Fix use-after-free Read in usbudcuevent The syzbot fuzzer found a race between uevent callbacks and gadget driver unregistration that can cause a use-after-free bug:...

7CVSS7.1AI score0.00208EPSS
Exploits0References4
susecve
susecve
added 2025/06/19 3:44 a.m.3 views

SUSE CVE-2022-49980

In the Linux kernel, the following vulnerability has been resolved: USB: gadget: Fix use-after-free Read in usbudcuevent The syzbot fuzzer found a race between uevent callbacks and gadget driver unregistration that can cause a use-after-free bug:...

7CVSS6.2AI score0.00208EPSS
Exploits0References21
osv
osv
added 2025/06/18 11:15 a.m.10 views

UBUNTU-CVE-2022-49980

In the Linux kernel, the following vulnerability has been resolved: USB: gadget: Fix use-after-free Read in usbudcuevent The syzbot fuzzer found a race between uevent callbacks and gadget driver unregistration that can cause a use-after-free bug:...

7.8CVSS6AI score0.00208EPSS
Exploits0References4
ptsecurity
ptsecurity
added 2025/06/18 12:0 a.m.4 views

PT-2025-25797

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A use-after-free issue has been identified in the Linux kernel, specifically in the RDMA/core component. The problem arises when the function ib device rename renames a device name with...

7.8CVSS6.5AI score0.00165EPSS
Exploits0
Rows per page
Query Builder