CVE-2026-52914
mediumEPSS Score
0.2%
Exploitation probability in 30 days
Top 93% most likely to be exploited
Vulnerability Report
Generated by CyberWatcher
Description
A flaw was found in the Linux kernel's batman-adv component. This vulnerability allows a local attacker to cause a denial of service (DoS) by sending malformed fragment chains. The flaw is due to incorrect accounting of fragment reassembly length, which can be truncated during updates, bypassing validation and leading to inconsistent length states during reassembly.
CWE
CWE-130Affected Products
Red Hat Enterprise Linux 10Red Hat Enterprise Linux 6Red Hat Enterprise Linux 7Red Hat Enterprise Linux 8Red Hat Enterprise Linux 9