Description
In the Linux kernel, the following vulnerability has been resolved:

net: usb: kalmia: validate USB endpoints

The kalmia driver should validate that the device it is probing has the
proper number and types of USB endpoints it is expecting before it binds
to it. If a malicious device were to not have the same urbs the driver
will crash later on when it blindly accesses these endpoints.
Published: 2026-03-25
Score: 5.5 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Denial of Service
Action: Patch
AI Analysis

Impact

The kalmia USB driver in the Linux kernel fails to validate that the device it is probing has the expected number and types of USB endpoints. When a malicious USB device omits the required URBs, the driver later attempts to access these absent endpoints, causing a kernel crash. This results in a local denial of service, affecting system availability, and represents a validation weakness (CWE‑1287).

Affected Systems

The vulnerability affects the Linux kernel on all distributions that include the kalmia driver, which is typically compiled into the standard kernel image. No specific version range is listed, so any kernel release prior to the patch that introduces proper endpoint validation is considered vulnerable. The fix is applied to the driver in the kernel source.

Risk and Exploitability

The CVSS score of 5.5 indicates medium severity, and the EPSS score of less than 1 % suggests a low likelihood of exploitation. The vulnerability is not listed in the CISA KEV catalog. An attacker would need to connect a malicious USB device to the target machine, which could be done via physical or potentially remote means if USB devices are introduced remotely. The exploit delivers a crash but does not provide code execution or privilege escalation.

Generated by OpenCVE AI on March 26, 2026 at 14:19 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update the Linux kernel to a version that includes the kalmia endpoint validation patch.
  • If an update is not immediately possible, disable or blacklist the kalmia driver from loading.
  • Alternatively, block or whitelist USB devices using udev rules to prevent the malicious device from attaching.
  • Verify that the kernel is no longer vulnerable and monitor for any kernel panics caused by USB devices.

Generated by OpenCVE AI on March 26, 2026 at 14:19 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Sat, 18 Apr 2026 09:15:00 +0000

Type Values Removed Values Added
References

Thu, 26 Mar 2026 12:30:00 +0000

Type Values Removed Values Added
Weaknesses CWE-20

Thu, 26 Mar 2026 00:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-1287
References
Metrics threat_severity

None

 cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}

threat_severity

Moderate

Wed, 25 Mar 2026 22:00:00 +0000

Type Values Removed Values Added
Weaknesses CWE-20

Wed, 25 Mar 2026 10:45:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: net: usb: kalmia: validate USB endpoints The kalmia driver should validate that the device it is probing has the proper number and types of USB endpoints it is expecting before it binds to it. If a malicious device were to not have the same urbs the driver will crash later on when it blindly accesses these endpoints.
Title net: usb: kalmia: validate USB endpoints
First Time appeared Linux
Linux linux Kernel
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel
References

Subscriptions

Linux Linux Kernel
cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2026-04-18T08:58:13.498Z

Reserved: 2026-01-13T15:37:46.002Z

Link: CVE-2026-23365

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-03-25T11:16:35.710

Modified: 2026-04-18T09:16:21.427

Link: CVE-2026-23365

cve-icon Redhat

Severity : Moderate

Publid Date: 2026-03-25T00:00:00Z

Links: CVE-2026-23365 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-03-27T09:49:12Z

Weaknesses