CVE-2026-46192

medium Red Hat
EPSS Score
0.0%
Exploitation probability in 30 days
Top 96% most likely to be exploited
Published: May 28, 2026 (43 days ago)
Last Modified: May 28, 2026
Vendor: Red Hat
Source: REDHAT

Description

A flaw was found in the Linux kernel's `spi: microchip-core-qspi` driver. This vulnerability allows the driver to transmit data during emulated read-only dual or quad operations, which are specific modes for communicating with Quad Serial Peripheral Interface (QSPI) devices. This unintended data transmission can disrupt the QSPI communication, leading to a denial of service (DoS) where the transfer becomes inoperable.

CWE

CWE-372

Affected Products

Red Hat Enterprise Linux 10Red Hat Enterprise Linux 6Red Hat Enterprise Linux 7Red Hat Enterprise Linux 8Red Hat Enterprise Linux 9

References