Description
In the Linux kernel, the following vulnerability has been resolved:

net: usb: kaweth: validate USB endpoints

The kaweth driver should validate that the device it is probing has the
proper number and types of USB endpoints it is expecting before it binds
to it. If a malicious device were to not have the same urbs the driver
will crash later on when it blindly accesses these endpoints.
Published: 2026-03-25
Score: 5.5 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The kaweth driver in the Linux kernel does not validate the number or type of USB endpoints it binds to. A malicious USB device that lacks the expected Endpoint URBs causes the driver to attempt to access non‑existent or mismatched endpoints, leading to a kernel crash and subsequent panic. This results in a denial of service for the affected system. The weakness is an instance of CWE-1288, demonstrating a failure in proper input validation before usage of external data. The crash occurs because the driver blindly dereferences pointers to endpoints without confirming the device’s configuration matches its expectations.

Affected Systems

Any Linux kernel build that includes the kaweth driver and has not yet incorporated the validation fix is affected. The CPE list indicates this applies to all publicly released kernels from early 2.6.12 through at least Linux 7.0‑rc1, so any host running one of these kernels and capable of loading the kaweth module is within the risk scope.

Risk and Exploitability

The CVSS score of 5.5 indicates a moderate severity impact. The EPSS score of less than 1% reflects a low expected exploitation probability in the wild. The vulnerability is not listed in CISA’s KEV catalog. Exploitability requires the attacker to provide a crafted USB device to a target system. Based on the description, the likely attack vector is local physical access to plug a malicious USB device, making this a local attack scenario.

Generated by OpenCVE AI on May 26, 2026 at 16:54 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply a kernel update that includes the patch validating USB endpoints (e.g., upgrade to the version containing the commit referenced in the advisory).
  • If an immediate kernel upgrade cannot be performed, unload or disable the kaweth driver on the affected system (e.g., modprobe -r kaweth or remove it from the kernel configuration).
  • Limit USB device usage until the patch is applied, monitoring system logs for USB‑related panics and disabling USB ports as a temporary hardening measure.

Generated by OpenCVE AI on May 26, 2026 at 16:54 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Debian DLA Debian DLA DLA-4561-1 linux-6.1 security update
Debian DLA Debian DLA DLA-4606-1 linux security update
Debian DSA Debian DSA DSA-6238-1 linux security update
Debian DSA Debian DSA DSA-6243-1 linux security update
History

Tue, 26 May 2026 15:15:00 +0000

Type Values Removed Values Added
Weaknesses NVD-CWE-noinfo
CPEs cpe:2.3:o:linux:linux_kernel:2.6.12:-:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.12:rc2:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.12:rc3:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.12:rc4:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.12:rc5:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:7.0:rc1:*:*:*:*:*:*

Sat, 18 Apr 2026 09:15:00 +0000

Type Values Removed Values Added
References

Thu, 26 Mar 2026 12:30:00 +0000

Type Values Removed Values Added
Weaknesses CWE-20
CWE-476

Thu, 26 Mar 2026 00:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-1288
References
Metrics threat_severity

None

 cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}

threat_severity

Low

Wed, 25 Mar 2026 22:00:00 +0000

Type Values Removed Values Added
Weaknesses CWE-20
CWE-476

Wed, 25 Mar 2026 10:45:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: net: usb: kaweth: validate USB endpoints The kaweth driver should validate that the device it is probing has the proper number and types of USB endpoints it is expecting before it binds to it. If a malicious device were to not have the same urbs the driver will crash later on when it blindly accesses these endpoints.
Title net: usb: kaweth: validate USB endpoints
First Time appeared Linux
Linux linux Kernel
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel
References

Subscriptions

Linux Linux Kernel
cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2026-05-11T22:04:27.060Z

Reserved: 2026-01-13T15:37:45.994Z

Link: CVE-2026-23312

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2026-03-25T11:16:27.463

Modified: 2026-05-26T15:02:57.717

Link: CVE-2026-23312

cve-icon Redhat

Severity : Low

Publid Date: 2026-03-25T00:00:00Z

Links: CVE-2026-23312 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-05-26T17:00:13Z

Weaknesses