Description

In the Linux kernel, the following vulnerability has been resolved: net: usb: kaweth: validate USB endpoints The kaweth driver should validate that the device it is probing has the proper number and types of USB endpoints it is expecting before it binds to it. If a malicious device were to not have the same urbs the driver will crash later on when it blindly accesses these endpoints.

INFO

Published Date :

2026-03-25T10:27:07.916Z

Last Modified :

2026-04-18T08:57:54.585Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2026-23312 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-23312.

URL Resource
https://git.kernel.org/stable/c/0aae18e4638a7c1c579df92bc6edc36cedfaaa8c cve-icon cve-icon
https://git.kernel.org/stable/c/2795fc06e7652c0ba299d936c584d5e08b6b57a1 cve-icon cve-icon
https://git.kernel.org/stable/c/3b5075e4ce97d1a1ce82ff3fb6308761987a48bb cve-icon cve-icon
https://git.kernel.org/stable/c/4b063c002ca759d1b299988ee23f564c9609c875 cve-icon cve-icon
https://git.kernel.org/stable/c/6c986abd2a5033633c6e6f9dd135cf96b19c7fdf cve-icon cve-icon
https://git.kernel.org/stable/c/72f90f481c6a059680b9b976695d4cfb04fba1f3 cve-icon cve-icon
https://git.kernel.org/stable/c/7c7ebf5e45d2504d92ea294ac3828d58586491df cve-icon cve-icon
https://git.kernel.org/stable/c/f33e80d195a003b384620ee240f69092b519146b cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2026032529-CVE-2026-23312-2b11@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2026-23312 cve-icon
https://www.cve.org/CVERecord?id=CVE-2026-23312 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact