Home / Vulnerability Intelligence / CVE-2026-8449

CVE-2026-8449 - Vulnerability Analysis

HighCVSS: 8.8

Last Updated: May 12, 2026

Linux ksmbd - Memory Corruption & Privilege Escalation

Published: May 12, 2026Updated: May 12, 2026Remote Exploitable

Overview

Linux ksmbd contains a remote memory corruption vulnerability in the ACL inheritance path caused by a malformed SID with an inflated num_subauth field in DACL, letting remote clients with directory creation permissions cause denial of service or privilege escalation, exploit requires directory creation permissions.

Severity & Score

Severity: High

CVSS Score: 8.8

Impact

Attackers can cause kernel instability, denial of service, or escalate privileges to execute kernel code.

Mitigation

Update to the latest ksmbd version with the vulnerability fixed.

References

https://github.com/torvalds/linux/commit/996454bc0da84d5a1dedb1a7861823087e01a7ae
https://www.vulncheck.com/advisories/linux-ksmbd-remote-memory-corruption-via-acl-inheritance
https://github.com/torvalds/linux/blob/6596a02b207886e9e00bb0161c7fd59fea53c081/fs/smb/server/smbacl.c

Related Resources

Vulnerability Intelligence Dashboard
Credential Scanner

Details

CVE ID: CVE-2026-8449
Severity: High
CVSS Score: 8.8
Type: out_of_bounds_rw
Status: new

CWE

CWE-125

CVSS Metrics

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H