Home / Vulnerability Intelligence / CVE-2026-31717

CVE-2026-31717 - Vulnerability Analysis

HighCVSS: 8.8

Last Updated: May 3, 2026

Linux Kernel ksmbd - Broken Access Control

Published: May 1, 2026Updated: May 3, 2026Remote Exploitable

Overview

Linux kernel ksmbd does not verify the owner of durable handles on reconnect, allowing any authenticated user to hijack orphaned handles by predicting or brute-forcing persistent IDs, exploit requires authenticated user.

Severity & Score

Severity: High

CVSS Score: 8.8

Impact

Authenticated users can hijack orphaned durable handles, potentially leading to unauthorized file access or manipulation.

Mitigation

Update to the latest Linux kernel version containing the fix for durable handle owner validation.

References

https://git.kernel.org/stable/c/c908c853f304a4969b5aa10eba0b50350cc65b80
https://git.kernel.org/stable/c/00ce8d6789dae72d042a4522264964c72891ca37
https://git.kernel.org/stable/c/49110a8ce654bbe56bef7c5e44cce31f4b102b8a

Related Resources

Vulnerability Intelligence Dashboard
Credential Scanner

Details

CVE ID: CVE-2026-31717
Severity: High
CVSS Score: 8.8
Type: broken_access_control
Status: unconfirmed

CVSS Metrics

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H