CVE-2026-1991 | libuvc up to 0.0.7 UVC Descriptor src/device.c uvc_scan_streaming null pointer dereference (Issue 300)

Inserito da Angelo Barbosa | Feb 5, 2026 | CVE

A vulnerability labeled as problematic has been found in libuvc up to 0.0.7. Affected is the function uvc_scan_streaming of the file src/device.c of the component UVC Descriptor Handler. The manipulation results in null pointer dereference.

This vulnerability was named CVE-2026-1991. The attack needs to be approached locally. In addition, an exploit is available.

The project was informed of the problem early through an issue report but has not responded yet.

CVE-2026-1991 | libuvc up to 0.0.7 UVC Descriptor src/device.c uvc_scan_streaming null pointer dereference (Issue 300)

Post correlati

CVE-2025-39374 | Best Posts Summary Plugin up to 1.0 on WordPress Setting cross-site request forgery

CVE-2024-32429 | WPChill Remove Footer Credit Plugin up to 1.0.13 on WordPress cross site scripting

CVE-2025-66077 | wpWax Legal Pages Plugin up to 1.4.6 on WordPress authorization

CVE-2024-2908 | Call Now Button Plugin up to 1.4.6 on WordPress Setting cross site scripting