CVE-2026-46037

HIGH EPSS 34.6%
Published May 27, 20261mo ago · Modified Jun 17, 20262w ago
8.2 CVSS 3.1
High
Find Similar
Published May 27, 2026 1mo ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: ipv4: icmp: validate reply type before using icmp_pointers Extended echo replies use ICMP_EXT_ECHOREPLY as the outbound reply type. That value is outside the range covered by icmp_pointers[], which only describes the traditional ICMP types up to NR_ICMP_TYPES. Avoid consulting icmp_pointers[] for reply types outside that range, and use array_index_nospec() for the remaining in-range lookup. Normal ICMP replies keep their existing behavior unchanged.

CVSS Details

Base Score
8.2
Exploitability
3.9
Impact
4.2
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
Attack Vector Network
Attack Complexity Low
Privileges Required None
User Interaction None
Scope Unchanged
Confidentiality Low
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
34.6% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 6

VendorProductVersionRange
linuxlinux_kernel*≥5.13  –  <5.15.209
linuxlinux_kernel*≥5.16  –  <6.1.175
linuxlinux_kernel*≥6.2  –  <6.6.140
linuxlinux_kernel*≥6.7  –  <6.12.86
linuxlinux_kernel*≥6.13  –  <6.18.27
linuxlinux_kernel*≥6.19  –  <7.0.4

References 7

  • git.kernel.org https://git.kernel.org/stable/c/67bf002a2d7387a6312138210d0bd06e3cf4879b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/92e7c209036dcc0e8ffdf806fdfd3645b263bea5
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/93df2af4f491de33827550b9d420f01808c0706b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b3a88fc5ae024d43c5ecf653f3bbe837e4a6dc99
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/bc64a66e0b9ad937d3d49934242ee62b01ba9a94
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c2178ff1c70ebfc2ab9651b230c58a34683db759
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d700c34a5d186b9ba0715bcb19e0ff80ffbfbfc1
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/67bf002a2d7387a6312138210d0bd06e3cf4879b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/92e7c209036dcc0e8ffdf806fdfd3645b263bea5
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/93df2af4f491de33827550b9d420f01808c0706b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b3a88fc5ae024d43c5ecf653f3bbe837e4a6dc99
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/bc64a66e0b9ad937d3d49934242ee62b01ba9a94
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c2178ff1c70ebfc2ab9651b230c58a34683db759
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d700c34a5d186b9ba0715bcb19e0ff80ffbfbfc1
    Patch