CVE-2026-45867

medium Red Hat
EPSS Score
0.0%
Exploitation probability in 30 days
Top 93% most likely to be exploited
Published: May 27, 2026 (44 days ago)
Last Modified: May 27, 2026
Vendor: Red Hat
Source: REDHAT

Description

A flaw was found in the Linux kernel, specifically within the power supply subsystem. This vulnerability, a use-after-free, occurs due to a race condition during the removal or initialization of a power supply device. An interrupt can fire after the associated memory for a power supply handle has been released, or before it has been properly set up. This can lead to the system attempting to access invalid memory, which typically results in a system crash, causing a denial of service (DoS). In some scenarios, this memory corruption could potentially be leveraged by a local attacker to achieve further impact.

CWE

CWE-364

Affected Products

Red Hat Enterprise Linux 10Red Hat Enterprise Linux 6Red Hat Enterprise Linux 7Red Hat Enterprise Linux 8Red Hat Enterprise Linux 9

References