CVE-2026-46198

HIGH EPSS 19.9%
Published May 28, 20261mo ago · Modified Jun 17, 20261w ago
8.8 CVSS 3.1
High
Find Similar
Published May 28, 2026 1mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: batman-adv: fix integer overflow on buff_pos Fixing an integer overflow present in batadv_iv_ogm_send_to_if. The size check is done using the int type in batadv_iv_ogm_aggr_packet whereas the buff_pos variable uses the s16 type. This could lead to an out-of-bound read.

CVSS Details

Base Score
8.8
Exploitability
2.8
Impact
5.9
Vector string
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector Adjacent
Attack Complexity Low
Privileges Required None
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High

Threat Intelligence

EPSS Exploit Probability
19.9% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-190 Integer Overflow or Wraparound Numeric Error

Affected Products 10

VendorProductVersionRange
linuxlinux_kernel*≥2.6.38  –  <5.10.258
linuxlinux_kernel*≥5.11  –  <5.15.209
linuxlinux_kernel*≥5.16  –  <6.1.175
linuxlinux_kernel*≥6.2  –  <6.6.140
linuxlinux_kernel*≥6.7  –  <6.12.90
linuxlinux_kernel*≥6.13  –  <6.18.32
linuxlinux_kernel*≥6.19  –  <7.0.9
linuxlinux_kernel7.1any
linuxlinux_kernel7.1any
linuxlinux_kernel7.1any

References 8

  • git.kernel.org https://git.kernel.org/stable/c/0799e5943611006b346b8813c7daf7dd5aa26bfd
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/10bb1f366d884d506c38a947b43026a75d1afe9a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/867cd090760e8f5cd206f387b47ff9c56fac04e9
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/96c9c0ed9a9579a9085765aceaa4556a6666eb82
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/974542d1efc48b7e9fe16184e647615cba39969b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b252797bfced986d6d92ec2f4cfcca842ce8aa78
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/bf872db54f91ffe70104b98c20068b2d5910e018
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f61499359fa529f0d45a53bf7c573a49eb6322e6
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/0799e5943611006b346b8813c7daf7dd5aa26bfd
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/10bb1f366d884d506c38a947b43026a75d1afe9a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/867cd090760e8f5cd206f387b47ff9c56fac04e9
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/96c9c0ed9a9579a9085765aceaa4556a6666eb82
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/974542d1efc48b7e9fe16184e647615cba39969b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b252797bfced986d6d92ec2f4cfcca842ce8aa78
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/bf872db54f91ffe70104b98c20068b2d5910e018
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f61499359fa529f0d45a53bf7c573a49eb6322e6
    Patch