Skip to content
Threat Feed
Subscribe

Tag

Kernel

12 briefs RSS
high advisory

CIFSwitch Linux Kernel Local Privilege Escalation Vulnerability

The CIFSwitch vulnerability in the Linux kernel allows an unprivileged user to forge CIFS authentication key descriptions, abuse the kernel's key request mechanism, and gain root privileges by loading a malicious NSS module.

Linux Mint +12 privilege-escalation linux cifs kernel
2r 1t
high advisory

Multiple Vulnerabilities in Linux Kernel Allow Privilege Escalation and Denial of Service

A local attacker can exploit multiple vulnerabilities in the Linux Kernel to escalate privileges, cause a denial-of-service condition, disclose sensitive information, or perform an unspecified attack.

linux kernel linux kernel privilege-escalation denial-of-service
2r 3t
high threat

Fragnesia: Linux Kernel Local Privilege Escalation via ESP-in-TCP

A new local privilege escalation vulnerability in the Linux kernel's XFRM ESP-in-TCP subsystem, named "Fragnesia," allows unprivileged local attackers to modify read-only file contents in the kernel page cache and achieve root privileges through a deterministic page-cache corruption.

privilege-escalation linux kernel
2r 1t
high advisory

CVE-2026-35420 - Windows Kernel Heap-Based Buffer Overflow Local Privilege Escalation

CVE-2026-35420 is a heap-based buffer overflow vulnerability in the Windows Kernel that allows an authorized local attacker to elevate privileges.

Windows Kernel privilege-escalation windows kernel buffer-overflow
2r 1t 1c
medium advisory

Linux Kernel: Local Privilege Escalation Vulnerabilities

A local attacker can exploit multiple vulnerabilities in the Linux Kernel to escalate privileges or manipulate files.

linux kernel privilege-escalation linux kernel
2r 1t
medium advisory

Ubuntu Linux Kernel Vulnerabilities Addressed in Security Notices

Ubuntu released security notices between May 4 and 10, 2026, addressing vulnerabilities in the Linux kernel affecting Ubuntu 20.04 LTS, 22.04 LTS, 24.04 LTS, and 25.10, requiring timely updates.

Ubuntu 20.04 LTS +3 linux kernel vulnerability patch
2r
high advisory

CVE-2026-31718 ksmbd Use-After-Free Vulnerability

CVE-2026-31718 is a use-after-free vulnerability in the ksmbd kernel module, specifically in the __ksmbd_close_fd() function, which can be triggered via the durable scavenger mechanism, potentially leading to arbitrary code execution.

use-after-free smb ksmbd CVE-2026-31718 kernel
2r 1t 1c
critical advisory

CVE-2026-31431 'Copy Fail' Linux Kernel Privilege Escalation

The 'Copy Fail' vulnerability (CVE-2026-31431) in the Linux kernel allows a local attacker to escalate privileges to root, potentially leading to container breakout and lateral movement in cloud environments.

Amazon Linux 2023 +3 privilege-escalation linux kernel
2r 1t 1c
critical advisory

Multiple Vulnerabilities in Red Hat Linux Kernel

Multiple vulnerabilities in the Red Hat Linux kernel allow for arbitrary code execution, privilege escalation, and remote denial of service.

Red Hat CodeReady Linux Builder +1 vulnerability kernel redhat execution privilege-escalation denial-of-service
2r 3t 5c
high advisory

CVE-2026-26179 Windows Kernel Double Free Privilege Escalation

CVE-2026-26179 is a double free vulnerability in the Windows Kernel, allowing a locally authenticated attacker to elevate privileges on the system.

privilege-escalation windows kernel double-free
2r 1t 1c
high advisory

Out-of-Cancel Vulnerability Class in Linux Workqueue Cancellation APIs

The 'Out-of-Cancel' vulnerability class stems from flaws in Linux workqueue cancellation APIs, potentially leading to exploitable conditions within the kernel.

linux kernel vulnerability workqueue
2r 1t
high advisory

Untrusted Driver Loaded by Windows Kernel

An untrusted driver loaded by the Windows kernel may indicate an attempt to bypass code signing policies and execute unsigned or self-signed kernel code, potentially leading to defense evasion.

Windows Kernel +1 defense-evasion driver-load kernel
3r 1t 4i