exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

bind:"GHSA-rcqh-96hr-hv69" OR bind:"CVE-2024-50268"

exploitDog

bind:"GHSA-rcqh-96hr-hv69" OR bind:"CVE-2024-50268"

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 16

Количество 16

GHSA-rcqh-96hr-hv69

7 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: usb: typec: fix potential out of bounds in ucsi_ccg_update_set_new_cam_cmd() The "*cmd" variable can be controlled by the user via debugfs. That means "new_cam" can be as high as 255 while the size of the uc->updated[] array is UCSI_MAX_ALTMODES (30). The call tree is: ucsi_cmd() // val comes from simple_attr_write_xsigned() -> ucsi_send_command() -> ucsi_send_command_common() -> ucsi_run_command() // calls ucsi->ops->sync_control() -> ucsi_ccg_sync_control()

CVSS3: 7.1

EPSS: Низкий

CVE-2024-50268

7 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: usb: typec: fix potential out of bounds in ucsi_ccg_update_set_new_cam_cmd() The "*cmd" variable can be controlled by the user via debugfs. That means "new_cam" can be as high as 255 while the size of the uc->updated[] array is UCSI_MAX_ALTMODES (30). The call tree is: ucsi_cmd() // val comes from simple_attr_write_xsigned() -> ucsi_send_command() -> ucsi_send_command_common() -> ucsi_run_command() // calls ucsi->ops->sync_control() -> ucsi_ccg_sync_control()

CVSS3: 7.1

EPSS: Низкий

CVE-2024-50268

7 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: usb: typec: fix potential out of bounds in ucsi_ccg_update_set_new_cam_cmd() The "*cmd" variable can be controlled by the user via debugfs. That means "new_cam" can be as high as 255 while the size of the uc->updated[] array is UCSI_MAX_ALTMODES (30). The call tree is: ucsi_cmd() // val comes from simple_attr_write_xsigned() -> ucsi_send_command() -> ucsi_send_command_common() -> ucsi_run_command() // calls ucsi->ops->sync_control() -> ucsi_ccg_sync_control()

CVSS3: 7.1

EPSS: Низкий

CVE-2024-50268

7 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: usb: typec: fix potential out of bounds in ucsi_ccg_update_set_new_cam_cmd() The "*cmd" variable can be controlled by the user via debugfs. That means "new_cam" can be as high as 255 while the size of the uc->updated[] array is UCSI_MAX_ALTMODES (30). The call tree is: ucsi_cmd() // val comes from simple_attr_write_xsigned() -> ucsi_send_command() -> ucsi_send_command_common() -> ucsi_run_command() // calls ucsi->ops->sync_control() -> ucsi_ccg_sync_control()

CVSS3: 7.1

EPSS: Низкий

CVE-2024-50268

6 месяцев назад

CVSS3: 7.1

EPSS: Низкий

CVE-2024-50268

7 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: u ...

CVSS3: 7.1

EPSS: Низкий

BDU:2025-00231

8 месяцев назад

Уязвимость функции ucsi_ccg_update_set_new_cam_cmd() в модуле drivers/usb/typec/ucsi/ucsi_ccg.c ядра операционной системы Linux, позволяющая нарушителю оказать воздействие на конфиденциальность и доступность защищаемой информации

CVSS3: 7.1

EPSS: Низкий

ROS-20250314-02

3 месяца назад

Множественные уязвимости kernel-lt

CVSS3: 7.8

EPSS: Низкий

ELSA-2025-20095

4 месяца назад

ELSA-2025-20095: Unbreakable Enterprise kernel security update (IMPORTANT)

EPSS: Низкий

SUSE-SU-2024:4316-1

6 месяцев назад

Security update for the Linux Kernel

EPSS: Низкий

SUSE-SU-2024:4376-1

6 месяцев назад

Security update for the Linux Kernel

EPSS: Низкий

SUSE-SU-2024:4315-1

6 месяцев назад

Security update for the Linux Kernel

EPSS: Низкий

SUSE-SU-2024:4314-1

6 месяцев назад

Security update for the Linux Kernel

EPSS: Низкий

SUSE-SU-2024:4364-1

6 месяцев назад

Security update for the Linux Kernel

EPSS: Низкий

SUSE-SU-2024:4387-1

6 месяцев назад

Security update for the Linux Kernel

EPSS: Низкий

SUSE-SU-2024:4318-1

6 месяцев назад

Security update for the Linux Kernel

EPSS: Низкий

Уязвимостей на страницу

	Уязвимость	CVSS	EPSS	Опубликовано
	GHSA-rcqh-96hr-hv69 In the Linux kernel, the following vulnerability has been resolved: usb: typec: fix potential out of bounds in ucsi_ccg_update_set_new_cam_cmd() The "*cmd" variable can be controlled by the user via debugfs. That means "new_cam" can be as high as 255 while the size of the uc->updated[] array is UCSI_MAX_ALTMODES (30). The call tree is: ucsi_cmd() // val comes from simple_attr_write_xsigned() -> ucsi_send_command() -> ucsi_send_command_common() -> ucsi_run_command() // calls ucsi->ops->sync_control() -> ucsi_ccg_sync_control()	CVSS3: 7.1	0% Низкий	7 месяцев назад
	CVE-2024-50268 In the Linux kernel, the following vulnerability has been resolved: usb: typec: fix potential out of bounds in ucsi_ccg_update_set_new_cam_cmd() The "*cmd" variable can be controlled by the user via debugfs. That means "new_cam" can be as high as 255 while the size of the uc->updated[] array is UCSI_MAX_ALTMODES (30). The call tree is: ucsi_cmd() // val comes from simple_attr_write_xsigned() -> ucsi_send_command() -> ucsi_send_command_common() -> ucsi_run_command() // calls ucsi->ops->sync_control() -> ucsi_ccg_sync_control()	CVSS3: 7.1	0% Низкий	7 месяцев назад
	CVE-2024-50268 In the Linux kernel, the following vulnerability has been resolved: usb: typec: fix potential out of bounds in ucsi_ccg_update_set_new_cam_cmd() The "*cmd" variable can be controlled by the user via debugfs. That means "new_cam" can be as high as 255 while the size of the uc->updated[] array is UCSI_MAX_ALTMODES (30). The call tree is: ucsi_cmd() // val comes from simple_attr_write_xsigned() -> ucsi_send_command() -> ucsi_send_command_common() -> ucsi_run_command() // calls ucsi->ops->sync_control() -> ucsi_ccg_sync_control()	CVSS3: 7.1	0% Низкий	7 месяцев назад
	CVE-2024-50268 In the Linux kernel, the following vulnerability has been resolved: usb: typec: fix potential out of bounds in ucsi_ccg_update_set_new_cam_cmd() The "*cmd" variable can be controlled by the user via debugfs. That means "new_cam" can be as high as 255 while the size of the uc->updated[] array is UCSI_MAX_ALTMODES (30). The call tree is: ucsi_cmd() // val comes from simple_attr_write_xsigned() -> ucsi_send_command() -> ucsi_send_command_common() -> ucsi_run_command() // calls ucsi->ops->sync_control() -> ucsi_ccg_sync_control()	CVSS3: 7.1	0% Низкий	7 месяцев назад
	CVE-2024-50268	CVSS3: 7.1	0% Низкий	6 месяцев назад
	CVE-2024-50268 In the Linux kernel, the following vulnerability has been resolved: u ...	CVSS3: 7.1	0% Низкий	7 месяцев назад
	BDU:2025-00231 Уязвимость функции ucsi_ccg_update_set_new_cam_cmd() в модуле drivers/usb/typec/ucsi/ucsi_ccg.c ядра операционной системы Linux, позволяющая нарушителю оказать воздействие на конфиденциальность и доступность защищаемой информации	CVSS3: 7.1	0% Низкий	8 месяцев назад
	ROS-20250314-02 Множественные уязвимости kernel-lt	CVSS3: 7.8		3 месяца назад
	ELSA-2025-20095 ELSA-2025-20095: Unbreakable Enterprise kernel security update (IMPORTANT)			4 месяца назад
	SUSE-SU-2024:4316-1 Security update for the Linux Kernel			6 месяцев назад
	SUSE-SU-2024:4376-1 Security update for the Linux Kernel			6 месяцев назад
	SUSE-SU-2024:4315-1 Security update for the Linux Kernel			6 месяцев назад
	SUSE-SU-2024:4314-1 Security update for the Linux Kernel			6 месяцев назад
	SUSE-SU-2024:4364-1 Security update for the Linux Kernel			6 месяцев назад
	SUSE-SU-2024:4387-1 Security update for the Linux Kernel			6 месяцев назад
	SUSE-SU-2024:4318-1 Security update for the Linux Kernel			6 месяцев назад

Уязвимостей на страницу