Home / Vulnerability Intelligence / CVE-2026-31631

CVE-2026-31631 - Vulnerability Analysis

HighCVSS: 8.2

Last Updated: April 27, 2026

Linux Kernel - Denial of Service

Published: April 24, 2026Updated: April 27, 2026Remote Exploitable

Overview

Linux kernel contains a buffer overread vulnerability caused by missing buffer size check in rxgk_do_verify_authenticator(), letting attackers cause denial of service, exploit requires crafted input.

Severity & Score

Severity: High

CVSS Score: 8.2

Impact

Attackers can cause denial of service by triggering a buffer overread.

Mitigation

Update to the latest Linux kernel version containing the fix.

References

https://git.kernel.org/stable/c/1c4422d8be81718ecb15d79aedff607323085201
https://git.kernel.org/stable/c/794586789800b16dcbe235452494f4223ac80413
https://git.kernel.org/stable/c/f564af387c8c28238f8ebc13314c589d7ba8475d

Related Resources

Vulnerability Intelligence Dashboard
Credential Scanner

Details

CVE ID: CVE-2026-31631
Severity: High
CVSS Score: 8.2
Type: out_of_bounds_rw
Status: unconfirmed

CVSS Metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H