USBX — Vulnerabilities & Security Advisories 14

All 14 CVE vulnerabilities found in USBX, with AI-generated Chinese analysis, references, and POCs.

Vendor: azure-rtos

CVE ID	Title	CVSS	Severity	Published
CVE-2025-55100	Potential out-of-bounds read in _ux_host_class_audio10_sam_parse_func() CWE-125	8.2^AI	High^AI	2025-10-17
CVE-2025-55099	Potential out-of-bounds read in _ux_host_class_audio_alternate_setting_locate() CWE-125	8.2^AI	High^AI	2025-10-17
CVE-2025-55098	Potential out-of-bounds read in _ux_host_class_audio_device_type_get() CWE-125	8.2^AI	High^AI	2025-10-17
CVE-2025-55097	Potential out-of-bounds read in _ux_host_class_audio_streaming_sampling_get() CWE-125	8.2^AI	High^AI	2025-10-17
CVE-2023-48698	Azure RTOS USBX Remote Code Execution Vulnerability CWE-754	6.8	Medium	2023-12-05
CVE-2023-48697	Azure RTOS USBX Remote Code Execution Vulnerability CWE-476	6.4	Medium	2023-12-05
CVE-2023-48696	Azure RTOS USBX Remote Code Execution Vulnerability CWE-825	6.7	Medium	2023-12-05
CVE-2023-48695	Azure RTOS USBX Remote Code Execution Vulnerability CWE-787	7.2	High	2023-12-05
CVE-2023-48694	Azure RTOS USBX Remote Code Execution Vulnerability CWE-825	6.8	Medium	2023-12-05
CVE-2022-39344	Azure RTOS USBX vulnerable to buffer overflow CWE-120	9.8	Critical	2022-11-04
CVE-2022-39293	Azure RTOS USBX Host PIMA vulnerable to read integer underflow with buffer overflow CWE-191	8.6	High	2022-10-13
CVE-2022-36063	USBX Host CDC ECM integer underflow with buffer overflow CWE-121	7.6	High	2022-10-10
CVE-2022-29246	Potential buffer overflow in function DFU upload in Azure RTOS USBX CWE-120	9.8	Critical	2022-05-24
CVE-2022-29223	Buffer overflow on HUB descriptor in Azure RTOS USBX CWE-120	7.5	High	2022-05-24

All 14 known CVE vulnerabilities affecting USBX with full Chinese analysis, references, and POCs where available.