Lucene search
K

20 matches found

Cvelist
Cvelist
added 2026/05/08 2:21 p.m.39 views

CVE-2026-43375 net: mctp: fix device leak on probe failure

In the Linux kernel, the following vulnerability has been resolved: net: mctp: fix device leak on probe failure Driver core holds a reference to the USB interface and its parent USB device while the interface is bound to a driver and there is no need to take additional references unless the...

0.00121EPSS
Exploits0References3
EUVD
EUVD
added 2026/05/01 1:56 p.m.11 views

EUVD-2026-26510

In the Linux kernel, the following vulnerability has been resolved: ALSA: caiaq: take a reference on the USB device in createcard The caiaq driver stores a pointer to the parent USB device in cdev-chip.dev but never takes a reference on it. The card's privatefree callback, sndusbcaiaqcardfree, ca...

5.8AI score0.00117EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004283)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004283 advisory. In the Linux kernel before 5.3.12, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/input/ff-memless.c driver, aka...

4.9CVSS6.4AI score0.00738EPSS
Exploits0References18
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.6 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-004135)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004135 advisory. In the Linux kernel before 5.3.12, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/input/ff-memless.c driver, aka...

4.9CVSS6.4AI score0.00738EPSS
Exploits0References18
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.5 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003891)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003891 advisory. An issue was discovered in the Linux kernel before 5.0.14. There is a NULL pointer dereference caused by a malicious USB device in the drivers/usb/misc/yurex.c drive...

4.9CVSS6.4AI score0.00693EPSS
Exploits1References18
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.2 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003736)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003736 advisory. An issue was discovered in the Linux kernel before 5.1.8. There is a NULL pointer dereference caused by a malicious USB device in the drivers/media/usb/siano/smsusb....

4.9CVSS6.5AI score0.00839EPSS
Exploits1References21
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.5 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003721)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003721 advisory. An issue was discovered in the Linux kernel before 5.0.14. There is a NULL pointer dereference caused by a malicious USB device in the drivers/usb/misc/yurex.c drive...

4.9CVSS6.4AI score0.00693EPSS
Exploits1References18
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.5 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001281)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001281 advisory. The usbnetgenericcdcbind function in drivers/net/usb/cdcether.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service divide-by-zero...

7.2CVSS6.3AI score0.00413EPSS
Exploits0References14
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003719)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003719 advisory. An issue was discovered in the Linux kernel before 5.1.17. There is a NULL pointer dereference caused by a malicious USB device in the sound/usb/line6/pcm.c driver...

4.9CVSS6.5AI score0.00712EPSS
Exploits1References18
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.4 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003409)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003409 advisory. drivers/net/usb/asixdevices.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service NULL pointer dereference and system crash or possib...

7.2CVSS6.5AI score0.00396EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2026/01/07 12:0 a.m.5 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000472)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000472 advisory. An issue was discovered in the Linux kernel before 5.0.14. There is a NULL pointer dereference caused by a malicious USB device in the drivers/usb/misc/yurex.c drive...

4.9CVSS6.4AI score0.00693EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.3 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986990)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986990 advisory. In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Fix an out-of-bounds bug in sndusbparseaudiointerface There may be a bad USB aud...

7.1CVSS5.9AI score0.00238EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2023/03/15 12:0 a.m.8 views

The vulnerability of the HID subsystem (drivers/hid/hid-core.c) in the Linux kernel allows a attacker to cause an application to crash or increase their privileges.

The vulnerability of the HID subsystem drivers/hid/hid-core.c in the Linux kernel is related to memory corruption caused by a user using a malicious USB device. Exploiting this vulnerability can allow an attacker to cause an application to crash or increase their privileges...

6.8CVSS6.3AI score0.00391EPSS
Exploits0References20Affected Software7
ATTACKERKB
ATTACKERKB
added 2021/11/29 4:15 p.m.5 views

CVE-2021-3802

A vulnerability found in udisks2. This flaw allows an attacker to input a specially crafted image file/USB leading to kernel panic. The highest threat from this vulnerability is to system availability...

6.3CVSS6AI score0.00808EPSS
Exploits1References4
OSV
OSV
added 2019/12/03 4:15 p.m.3 views

DEBIAN-CVE-2019-19528

In the Linux kernel before 5.3.7, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/usb/misc/iowarrior.c driver, aka CID-edc4746f253d...

6.1CVSS6.6AI score0.00488EPSS
Exploits0References1
OSV
OSV
added 2019/08/19 10:15 p.m.7 views

UBUNTU-CVE-2019-15219

An issue was discovered in the Linux kernel before 5.1.8. There is a NULL pointer dereference caused by a malicious USB device in the drivers/usb/misc/sisusbvga/sisusb.c driver...

4.6CVSS6.7AI score0.00712EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2017/09/20 12:0 a.m.9 views

PT-2017-3151 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 4.13.6 Description: The issue is related to the cdc parse cdc header function in drivers/usb/core/message.c, which allows local users to cause a denial of service, including out-of-bounds read and system crash, ...

8.8CVSS8.2AI score0.93838EPSS
Exploits84References348
OSV
OSV
added 2017/08/28 9:24 p.m.7 views

USN-3406-1 linux vulnerabilities

It was discovered that an out of bounds read vulnerability existed in the associative array implementation in the Linux kernel. A local attacker could use this to cause a denial of service system crash or expose sensitive information. CVE-2016-7914 It was discovered that a NULL pointer dereferenc...

7.8CVSS6.7AI score0.02041EPSS
Exploits0References7
OSV
OSV
added 2016/05/02 10:59 a.m.2 views

DEBIAN-CVE-2015-8324

The ext4 implementation in the Linux kernel before 2.6.34 does not properly track the initialization of certain data structures, which allows physically proximate attackers to cause a denial of service NULL pointer dereference and panic via a crafted USB device, related to the ext4fillsuper...

4.6CVSS5.1AI score0.00426EPSS
Exploits0References1
CNVD
CNVD
added 2016/04/28 12:0 a.m.28 views

Linux kernel denial of service vulnerability (CNVD-2016-02757)

The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. A denial of service vulnerability exists in Linux kernel versions prior to 4.4. An attacker could exploit this vulnerability to cause a denial of service null pointer...

4.9CVSS7.4AI score0.018EPSS
Exploits4References1
Rows per page
Query Builder