CVE-2026-31620 | Linux Kernel up to 6.18.23/6.19.13/7.0.0 USB usb_ifnum_to_if null pointer dereference (WID-SEC-2026-1279)
A vulnerability categorized as critical has been discovered in Linux Kernel up to 6.18.23/6.19.13/7.0.0. This affects the function usb_ifnum_to_if of the component USB Handler. Such manipulation leads to null pointer dereference.
This vulnerability is traded as CVE-2026-31620. Access to the local network is required for this attack to succeed. There is no exploit available.
It is advisable to upgrade the affected component.