CVE-2026-52922

medium Red Hat
EPSS Score
0.2%
Exploitation probability in 30 days
Top 94% most likely to be exploited
Published: June 24, 2026 (15 days ago)
Last Modified: June 24, 2026
Vendor: Red Hat
Source: REDHAT

Description

A flaw was found in the Linux kernel's batman-adv (Better Approach To Mobile Ad-hoc Networking) module. This vulnerability occurs because the `batadv_dat_forward_data()` function fails to validate the success of a memory allocation operation. An attacker could exploit this by triggering a scenario where the memory allocation fails, leading to a NULL pointer dereference and causing the system to crash. This results in a Denial of Service (DoS).

CWE

CWE-252

Affected Products

Red Hat Enterprise Linux 10Red Hat Enterprise Linux 6Red Hat Enterprise Linux 7Red Hat Enterprise Linux 8Red Hat Enterprise Linux 9

References