CVE-2026-46243

HIGH EPSS 22.7%
Published Jun 1, 20263w ago · Modified Jun 17, 20261w ago
7.1 CVSS 3.1
High
Find Similar
Published Jun 1, 2026 3w ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: smb: client: reject userspace cifs.spnego descriptions cifs.spnego key descriptions contain authority-bearing fields such as pid, uid, creduid, and upcall_target that cifs.upcall treats as kernel-originating inputs. However, userspace can also create keys of this type through request_key(2) or add_key(2), allowing those fields to be supplied without CIFS origin. Only accept cifs.spnego descriptions while CIFS is using its private spnego_cred to request the key.

CVSS Details

Base Score
7.1
Exploitability
1.8
Impact
5.2
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability None

Threat Intelligence

EPSS Exploit Probability
22.7% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-20 Improper Input Validation Validation

Affected Products 18

VendorProductVersionRange
linuxlinux_kernel*≥2.6.24.1  –  <5.10.258
linuxlinux_kernel*≥5.11  –  <5.15.209
linuxlinux_kernel*≥5.16  –  <6.1.175
linuxlinux_kernel*≥6.2  –  <6.6.142
linuxlinux_kernel*≥6.7  –  <6.12.92
linuxlinux_kernel*≥6.13  –  <6.18.34
linuxlinux_kernel*≥6.19  –  <7.0.11
linuxlinux_kernel2.6.24any
linuxlinux_kernel2.6.24any
linuxlinux_kernel2.6.24any
linuxlinux_kernel2.6.24any
linuxlinux_kernel2.6.24any
linuxlinux_kernel2.6.24any
linuxlinux_kernel2.6.24any
linuxlinux_kernel7.1any
linuxlinux_kernel7.1any
linuxlinux_kernel7.1any
linuxlinux_kernel7.1any

References 10

  • openwall.com http://www.openwall.com/lists/oss-security/2026/06/01/6
    Mailing ListThird Party Advisory
  • git.kernel.org https://git.kernel.org/stable/c/0aece6685fc80a8de492688ca2315fb86ec379c7
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/2035acfb17221729b1b8ac335e941868a04ca079
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/3da1fdf4efbc490041eb4f836bf596201203f8f2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7713bd320ed4fc3d08a227cd8e41242219a16981
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/91f89c1d83e80417629791fcef6af8140d7d01c8
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9544559e59438a4b609b2fdfa0763d8360572824
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a3bbda6502a9398b816fa2e71c9a3f955f58013d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/cf20038657d6d4974349556a34e08fe0490bebbc
    Patch
  • github.com https://github.com/manizada/CIFSwitch
    Third Party Advisory

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/0aece6685fc80a8de492688ca2315fb86ec379c7
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/2035acfb17221729b1b8ac335e941868a04ca079
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/3da1fdf4efbc490041eb4f836bf596201203f8f2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7713bd320ed4fc3d08a227cd8e41242219a16981
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/91f89c1d83e80417629791fcef6af8140d7d01c8
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9544559e59438a4b609b2fdfa0763d8360572824
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a3bbda6502a9398b816fa2e71c9a3f955f58013d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/cf20038657d6d4974349556a34e08fe0490bebbc
    Patch