CVE-2026-52944

medium Red Hat
EPSS Score
0.2%
Exploitation probability in 30 days
Top 88% most likely to be exploited
Published: June 24, 2026 (15 days ago)
Last Modified: June 24, 2026
Vendor: Red Hat
Source: REDHAT

Description

A flaw was found in the Linux kernel's ksmbd component. This vulnerability allows a client to bypass intended permission restrictions by using the FSCTL_SET_SPARSE operation. Specifically, a client on a read-only share can modify a file's sparse attribute, and clients on writable shares can modify this attribute without the necessary FILE_WRITE_DATA or FILE_WRITE_ATTRIBUTES access. This can lead to unauthorized changes to file properties.

CWE

CWE-266

Affected Products

Red Hat Enterprise Linux 10Red Hat Enterprise Linux 6Red Hat Enterprise Linux 7Red Hat Enterprise Linux 8Red Hat Enterprise Linux 9

References