CVE-2026-11188

An use after free flaw was found in the USB component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=502959826...

CVE-2026-9976

An inappropriate implementation flaw was found in the USB component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=511732828...

CVE-2026-10021

Insufficient validation of untrusted input in USB in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: Medium...

ROS-20260323-73-0033

A vulnerability in the compositedevcleanup function of the usb component of the Linux kernel is related to NULL pointer dereferencing. Exploitation of the vulnerability may allow an attacker to cause a denial of service...

The vulnerability of the usbhs_probe() function in the Linux kernel’s USB component allows a hacker to induce a service failure.

The vulnerability of the usbhsprobe function in the Linux kernel’s USB component is related to incorrect initialization of resources. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the gs_start_io() function in the Linux kernel’s USB component allows a hacker to trigger a service failure.

The vulnerability of the gsstartio function in the Linux kernel’s USB component is related to concurrent access to resources race condition. Exploiting this vulnerability could allow a attacker to cause a service failure...

PT-2025-17219 · Linux +5 · Linux Kernel +5

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A use after free bug has been identified in the Linux kernel, specifically in the peak usb component. The issue arises after calling the peak usb netif rx ni function with the skb...

ROS-20250113-04

A vulnerability in the usb component of the Linux kernel is related to incorrect locking in the functions freeepfback, uaudiosetvolume, uaudiosetmute and gaudiosetup functions in drivers/usb/gadget/function/uaudio.c. Exploitation of the vulnerability could allow an attacker to cause a denial of...

PT-2025-16900 · Chromium +4 · Chromium +4

Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 135.0.7049.95 Description: A use after free issue in the USB component of Google Chrome allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This issue is related to the...

Denial Of Service (DoS)

chromium is vulnerable to Denial Of Service DoS. The vulnerability exists due to the integer overflow in the USB component of the library, which allows an attacker to cause heap corruption via a maliciously crafted HTML page...

CWA 1912 CU4 : USB component fails during installation

Citrix workspace is packaged and installation command is added - CitrixWorkspaceAppweb.exe" /SILENT /Noreboot ADDLOCAL="ReceiverInside,ICAClient,DesktopViewer,Flash,Vd3d,SSON,USB,AM,SELFSERVICE" /INCLUDESSON ENABLESSON=Yes DONOTSTARTCC=1 /ENABLECEIP=False ALLOWADDSTORE=Y...