CVE-2026-45932

Published: May 27, 2026

Modified: May 30, 2026

PUBLISHED

CVSS v3.1

7.3

HIGH

Description

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix tcx/netkit detach permissions when prog fd isn't given This commit fixes a security issue where BPF_PROG_DETACH on tcx or netkit devices could be executed by any user when no program fd was provided, bypassing permission checks. The fix adds a capability check for CAP_NET_ADMIN or CAP_SYS_ADMIN in this case.

Vendor	Product	Versions
Linux	Linux	affected `e420bed025071a623d2720a92bc2245c84757ecb - < 4e0772cded109c238411f2fac36ac39302758b81` affected `e420bed025071a623d2720a92bc2245c84757ecb - < 3f04cc1e5374da4c5e791ae010a06cfea7bacbe6` affected `e420bed025071a623d2720a92bc2245c84757ecb - < ae23bc81ddf7c17b663c4ed1b21e35527b0a7131`
Linux	Linux	affected `6.6` unaffected `0 - < 6.6` unaffected `6.18.14 - <= 6.18.` unaffected `6.19.4 - <= 6.19.` unaffected `7.0 - <= *`

CVSS v3.1 Details

CVSS v3.1 Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

Low

Integrity

High

Availability

High

References

https://git.kernel.org/stable/c/4e0772cded109c238411f2fac36ac39302758b81

https://git.kernel.org/stable/c/3f04cc1e5374da4c5e791ae010a06cfea7bacbe6

https://git.kernel.org/stable/c/ae23bc81ddf7c17b663c4ed1b21e35527b0a7131

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2026-45932

Description

Affected Products

CVSS v3.1 Details

References