Lucene search
K

914 matches found

RedhatCVE
RedhatCVE
added 2026/06/29 1:7 p.m.6 views

CVE-2026-53022

In the Linux kernel, the following vulnerability has been resolved: platform/x86: dell-wmi-sysman: bound enumeration string aggregation populateenumdata aggregates firmware-provided value-modifier and possible-value strings into fixed 512-byte struct members. The current code bounds each individu...

7CVSS5.8AI score0.00172EPSS
Exploits0References4
Microsoft CVE
Microsoft CVE
added 2026/06/27 8:9 a.m.4 views

platform/x86: dell-wmi-sysman: bound enumeration string aggregation

...

5.5CVSS6.1AI score0.00172EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/06/25 6:2 p.m.8 views

CVE-2026-53119

A flaw was found in the Linux kernel's platform/wmi component. A vulnerability exists where a driver's match function can access memory after it has been freed Use-After-Free, due to improper locking during driver probing. This could allow an attacker to execute arbitrary code or cause the system...

6.1AI score0.00157EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/06/24 7:47 p.m.6 views

CVE-2026-7539

A potential security vulnerability has been identified in the HP Accessory WMI Provider installer for some HP Docking Stations, which might allow escalation of privilege and/or arbitrary code execution. HP is releasing software updates to mitigate the potential vulnerability...

7.3CVSS6AI score0.00096EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/24 7:47 p.m.23 views

CVE-2026-7539 HP Dock Accessory WMI Provider Installer Security Update

A potential security vulnerability has been identified in the HP Accessory WMI Provider installer for some HP Docking Stations, which might allow escalation of privilege and/or arbitrary code execution. HP is releasing software updates to mitigate the potential vulnerability...

7.3CVSS0.00096EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/24 6:32 p.m.4 views

EUVD-2026-38890

In the Linux kernel, the following vulnerability has been resolved: platform/x86: dell-wmi-sysman: bound enumeration string aggregation populateenumdata aggregates firmware-provided value-modifier and possible-value strings into fixed 512-byte struct members. The current code bounds each individu...

5.8AI score0.00172EPSS
Exploits0References8
NVD
NVD
added 2026/06/24 5:17 p.m.15 views

CVE-2026-53119

In the Linux kernel, the following vulnerability has been resolved: platform/wmi: use generic driveroverride infrastructure When a driver is probed through driverattach, the bus' match callback is called without the device lock held, thus accessing the driveroverride field without a lock, which c...

0.00157EPSS
Exploits0References4
NVD
NVD
added 2026/06/24 5:17 p.m.4 views

CVE-2026-53022

In the Linux kernel, the following vulnerability has been resolved: platform/x86: dell-wmi-sysman: bound enumeration string aggregation populateenumdata aggregates firmware-provided value-modifier and possible-value strings into fixed 512-byte struct members. The current code bounds each individu...

5.5CVSS0.00172EPSS
Exploits0References7
EUVD
EUVD
added 2026/06/24 4:30 p.m.6 views

EUVD-2026-38987

In the Linux kernel, the following vulnerability has been resolved: platform/wmi: use generic driveroverride infrastructure When a driver is probed through driverattach, the bus' match callback is called without the device lock held, thus accessing the driveroverride field without a lock, which c...

5.7AI score0.00157EPSS
Exploits0References4
CVE
CVE
added 2026/06/24 4:30 p.m.11 views

CVE-2026-53119

Summary: CVE-2026-53119 affects the Linux kernel in platform/wmi code. The issue occurs when a driver is probed via __driver_attach(): the bus’ match() callback is invoked without the device lock held, allowing access to the driver_override field without proper synchronization, which can cause a ...

5.7AI score0.00157EPSS
Exploits0References4
CVE
CVE
added 2026/06/24 4:29 p.m.12 views

CVE-2026-53022

CVE-2026-53022 concerns the Linux kernel component platform/x86 dell-wmi-sysman where firmware-provided value-modifier and possible-value strings are aggregated into fixed buffers. The root cause is that while individual source strings are bounded, the code uses strcat to append strings and separ...

5.5CVSS5.8AI score0.00172EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2026/06/24 4:29 p.m.2 views

CVE-2026-53022 platform/x86: dell-wmi-sysman: bound enumeration string aggregation

In the Linux kernel, the following vulnerability has been resolved: platform/x86: dell-wmi-sysman: bound enumeration string aggregation populateenumdata aggregates firmware-provided value-modifier and possible-value strings into fixed 512-byte struct members. The current code bounds each individu...

5.5CVSS5.8AI score0.00172EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2026/06/24 12:0 a.m.9 views

PT-2026-52013

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A Use-After-Free UAF issue exists in the platform/wmi component. When a driver is probed via the driver attach function, the bus match callback is executed without holding the device loc...

5.9AI score0.00157EPSS
Exploits0References16
Positive Technologies
Positive Technologies
added 2026/06/24 12:0 a.m.8 views

PT-2026-51916

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the populate enum data function within the dell-wmi-sysman module. The function aggregates firmware-provided value-modifier and possible-value strings into fixed...

6.2AI score0.00172EPSS
Exploits0References16
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: Platform/x86: dell-wmi-sysman: Do not perform hex dumping of plaintext password data. setnewpassword performs hex dumping of the entire buffer, which contains plaintext password data, including current and new passwords. Remove...

5.5CVSS6AI score0.00123EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.9 views

Astra Linux – Vulnerability in Linux, Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: Platform/x86: mxm-wmi: fixed a memory leak in the mxmwmicallmxds|mx function. The ACPI buffer memory out.pointer returned by wmievaluatemethod is not freed after the call, resulting in a memory leak. This issue occurs because the...

5.5CVSS6.1AI score0.00147EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: ath11k: Disable spectral scan during spectral deinit. When ath11k modules are removed using rmmod with spectral scan enabled, a crash occurs. Different crash traces are observed for each instance of the crash. Send a command to...

5.5CVSS6.1AI score0.00245EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: Wifi: ath9k: Fixed a use-after-free in ath9khifusbdisconnect This patch fixes a use-after-free that occurs in ath9khifusbdisconnect, when ath9khifusbdisconnect attempts to access “drvpriv”, which has already been freed by...

6.1AI score0.00168EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: Platform/x86: alienware-wmi-wmax: Fixed a NULL pointer dereference in sleep handlers. Devices without the AWCC interface do not initialize awcc. A check must be added before dereferencing it in sleep handlers...

5.7AI score0.00162EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: Platform/x86: asus-wmi: Fixed incorrect registrations. The function asuswmiregisterdriver may be called from multiple drivers simultaneously, which can lead to incorrect list operations. Eventually, this can corrupt memory and...

7.8CVSS5.4AI score0.00143EPSS
Exploits0References2
Rows per page
Query Builder