CVE-2026-43251

MEDIUM EPSS 2.4%
Published May 6, 20261mo ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published May 6, 2026 1mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: HID: prodikeys: Check presence of pm->input_ep82 Fake USB devices can send their own report descriptors for which the input_mapping() hook does not get called. In this case, pm->input_ep82 stays NULL, which leads to a crash later. This does not happen with the real device, but can be provoked by imposing as one.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
2.4% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-476 NULL Pointer Dereference Memory Safety

Affected Products 7

VendorProductVersionRange
linuxlinux_kernel*≥2.6.35  –  <5.10.252
linuxlinux_kernel*≥5.11  –  <5.15.202
linuxlinux_kernel*≥5.16  –  <6.1.165
linuxlinux_kernel*≥6.2  –  <6.6.128
linuxlinux_kernel*≥6.7  –  <6.12.75
linuxlinux_kernel*≥6.13  –  <6.18.16
linuxlinux_kernel*≥6.19  –  <6.19.6

References 8

  • git.kernel.org https://git.kernel.org/stable/c/3f1b21cc67a15d7d081378a9b8747dd000a017b8
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/cee8337e1bad168136aecfe6416ecd7d3aa7529a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d08f35f843881ec504d7537a9bb728a073db3366
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d5512ce892f774d37c53082adadfcad04f21b50e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e7ac1cd823cd2e9fcbd5cb0b261d6d35dbb79341
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/edccbf7d6dc05d692bde3a89de5a4001f72a0fa4
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ee572578f09f0e743e9383393a75c3a7a0f9b4c2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f580c79683356632f12f2c2029f2fe936d953aa1
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/3f1b21cc67a15d7d081378a9b8747dd000a017b8
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/cee8337e1bad168136aecfe6416ecd7d3aa7529a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d08f35f843881ec504d7537a9bb728a073db3366
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d5512ce892f774d37c53082adadfcad04f21b50e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e7ac1cd823cd2e9fcbd5cb0b261d6d35dbb79341
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/edccbf7d6dc05d692bde3a89de5a4001f72a0fa4
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ee572578f09f0e743e9383393a75c3a7a0f9b4c2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f580c79683356632f12f2c2029f2fe936d953aa1
    Patch