Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2026-53037

In the Linux kernel, the following vulnerability has been resolved: HID: usbhid: fix deadlock in hid_post_reset() You can build a USB device that includes a HID component and a storage or UAS component. The components can be reset only together. That means that hid_pre_reset() and hid_post_reset() are in the block IO error handling. Hence no memory allocation used in them may do block IO because the IO can deadlock on the mutex held while resetting a device and calling the interface drivers. Use GFP_NOIO for all allocations in them.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 7.3%
CVSS Severity
CVSS v3 Score 5.5
Products affected by CVE-2026-53037


Contact Us

Shodan ® - All rights reserved