CVE-2026-41054
Published: May 20, 2026
Modified: Jun 5, 2026
CVSS v3.1
7.8
Description
In `src/havegecmd.c`, the `socket_handler` function performs a credential check on the abstract UNIX socket (`\0/sys/entropy/haveged`). However, while it detects if the connecting user is not root (`cred.uid != 0`) and prepares a negative acknowledgement (`ASCII_NAK`), it **fails to stop execution**. The code proceeds to the `switch` statement, allowing any local unprivileged user to execute privileged commands such as `MAGIC_CHROOT`.
| Vendor | Product | Versions |
|---|---|---|
SUSE | Container suse/sle-micro-rancher/5.3:latest | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | Container suse/sle-micro-rancher/5.3:latest | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | Container suse/sle-micro-rancher/5.4:latest | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | Container suse/sle-micro-rancher/5.4:latest | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | Container suse/sle-micro/5.5:latest | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | Container suse/sle-micro/5.5:latest | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | Image SLES15-SP4-SAP-BYOS | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | Image SLES15-SP4-SAP-BYOS | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | Image SLES15-SP4-SAP-BYOS-Azure | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | Image SLES15-SP4-SAP-BYOS-Azure | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | Image SLES15-SP4-SAP-BYOS-EC2 | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | Image SLES15-SP4-SAP-BYOS-EC2 | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | Image SLES15-SP4-SAP-BYOS-GCE | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | Image SLES15-SP4-SAP-BYOS-GCE | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | Image SLES15-SP4-SAP-Hardened | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | Image SLES15-SP4-SAP-Hardened | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | Image SLES15-SP4-SAP-Hardened-BYOS | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | Image SLES15-SP4-SAP-Hardened-BYOS | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | Image SLES15-SP4-SAP-Hardened-BYOS-Azure | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | Image SLES15-SP4-SAP-Hardened-BYOS-Azure | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | Image SLES15-SP4-SAP-Hardened-BYOS-EC2 | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | Image SLES15-SP4-SAP-Hardened-BYOS-EC2 | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | Image SLES15-SP4-SAP-Hardened-BYOS-GCE | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | Image SLES15-SP4-SAP-Hardened-BYOS-GCE | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | Image SLES15-SP4-SAP-Hardened-GCE | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | Image SLES15-SP4-SAP-Hardened-GCE | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | SUSE Linux Enterprise Desktop 15 SP7 | affected ? - < 1.9.14-150600.11.6.1 |
SUSE | SUSE Linux Enterprise Desktop 15 SP7 | affected ? - < 1.9.14-150600.11.6.1 |
SUSE | SUSE Linux Enterprise Desktop 15 SP7 | affected ? - < 1.9.14-150600.11.6.1 |
SUSE | SUSE Linux Enterprise High Performance Computing 15 SP7 | affected ? - < 1.9.14-150600.11.6.1 |
SUSE | SUSE Linux Enterprise High Performance Computing 15 SP7 | affected ? - < 1.9.14-150600.11.6.1 |
SUSE | SUSE Linux Enterprise High Performance Computing 15 SP7 | affected ? - < 1.9.14-150600.11.6.1 |
SUSE | SUSE Linux Enterprise Module for Basesystem 15 SP7 | affected ? - < 1.9.14-150600.11.6.1 |
SUSE | SUSE Linux Enterprise Module for Basesystem 15 SP7 | affected ? - < 1.9.14-150600.11.6.1 |
SUSE | SUSE Linux Enterprise Module for Basesystem 15 SP7 | affected ? - < 1.9.14-150600.11.6.1 |
SUSE | SUSE Linux Enterprise Server 15 SP7 | affected ? - < 1.9.14-150600.11.6.1 |
SUSE | SUSE Linux Enterprise Server 15 SP7 | affected ? - < 1.9.14-150600.11.6.1 |
SUSE | SUSE Linux Enterprise Server 15 SP7 | affected ? - < 1.9.14-150600.11.6.1 |
SUSE | SUSE Linux Enterprise Server for SAP Applications 15 SP7 | affected ? - < 1.9.14-150600.11.6.1 |
SUSE | SUSE Linux Enterprise Server for SAP Applications 15 SP7 | affected ? - < 1.9.14-150600.11.6.1 |
SUSE | SUSE Linux Enterprise Server for SAP Applications 15 SP7 | affected ? - < 1.9.14-150600.11.6.1 |
SUSE | SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | SUSE Linux Enterprise Micro 5.3 | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | SUSE Linux Enterprise Micro 5.3 | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | SUSE Linux Enterprise Micro 5.4 | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | SUSE Linux Enterprise Micro 5.4 | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | SUSE Linux Enterprise Micro 5.5 | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | SUSE Linux Enterprise Micro 5.5 | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | SUSE Linux Enterprise Server 15 SP4-LTSS | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | SUSE Linux Enterprise Server 15 SP4-LTSS | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | SUSE Linux Enterprise Server 15 SP4-LTSS | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | SUSE Linux Enterprise Server 15 SP5-LTSS | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | SUSE Linux Enterprise Server 15 SP5-LTSS | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | SUSE Linux Enterprise Server 15 SP5-LTSS | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | SUSE Linux Enterprise Server 15 SP6-LTSS | affected ? - < 1.9.14-150600.11.6.1 |
SUSE | SUSE Linux Enterprise Server 15 SP6-LTSS | affected ? - < 1.9.14-150600.11.6.1 |
SUSE | SUSE Linux Enterprise Server 15 SP6-LTSS | affected ? - < 1.9.14-150600.11.6.1 |
SUSE | SUSE Linux Enterprise Server for SAP Applications 15 SP4 | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | SUSE Linux Enterprise Server for SAP Applications 15 SP4 | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | SUSE Linux Enterprise Server for SAP Applications 15 SP4 | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | SUSE Linux Enterprise Server for SAP Applications 15 SP5 | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | SUSE Linux Enterprise Server for SAP Applications 15 SP5 | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | SUSE Linux Enterprise Server for SAP Applications 15 SP5 | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | SUSE Linux Enterprise Server for SAP Applications 15 SP6 | affected ? - < 1.9.14-150600.11.6.1 |
SUSE | SUSE Linux Enterprise Server for SAP Applications 15 SP6 | affected ? - < 1.9.14-150600.11.6.1 |
SUSE | SUSE Linux Enterprise Server for SAP Applications 15 SP6 | affected ? - < 1.9.14-150600.11.6.1 |
SUSE | SUSE Manager Proxy LTS 4.3 | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | SUSE Manager Proxy LTS 4.3 | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | SUSE Manager Proxy LTS 4.3 | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | SUSE Manager Retail Branch Server LTS 4.3 | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | SUSE Manager Retail Branch Server LTS 4.3 | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | SUSE Manager Retail Branch Server LTS 4.3 | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | SUSE Manager Server LTS 4.3 | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | SUSE Manager Server LTS 4.3 | affected ? - < 1.9.14-150400.3.11.1 |
SUSE | SUSE Manager Server LTS 4.3 | affected ? - < 1.9.14-150400.3.11.1 |
Weaknesses (CWE)
CVSS v3.1 Details
CVSS v3.1 Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now