Home / Vulnerability Intelligence / CVE-2026-31712

CVE-2026-31712 - Vulnerability Analysis

HighCVSS: 8.3

Last Updated: May 3, 2026

Linux Kernel - Out-of-Bounds Read

Published: May 1, 2026Updated: May 3, 2026Remote Exploitable

Overview

Linux kernel contains an out-of-bounds read vulnerability in ksmbd smb_check_perm_dacl() due to insufficient ACE size validation, letting authenticated SMB clients with ACL set permission cause kernel memory corruption, exploit requires ACL set permission on a file.

Severity & Score

Severity: High

CVSS Score: 8.3

Impact

Authenticated SMB clients can cause kernel memory corruption and potential denial of service via crafted ACLs.

Mitigation

Update to the latest Linux kernel version containing the fix for ACE size validation in smb_check_perm_dacl().

References

https://git.kernel.org/stable/c/d07b26f39246a82399661936dd0c853983cfade7
https://git.kernel.org/stable/c/151b1799861fde38087c08f613abc2843ef597b0
https://git.kernel.org/stable/c/90089584b2e25c4510b7b987387b4405f0673ece
https://git.kernel.org/stable/c/95e5aa3c3261da8c95b27d7aecf8ee39b9f86a4c

Related Resources

Vulnerability Intelligence Dashboard
Credential Scanner

Details

CVE ID: CVE-2026-31712
Severity: High
CVSS Score: 8.3
Type: out_of_bounds_rw
Status: unconfirmed

CVSS Metrics

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H