netfilter: nf_tables: clone set on flush only

Description

A vulnerability labeled as critical has been found in Linux Kernel up to 6.18.16/6.19.6/7.0-rc2. This affects an unknown function of the file net/netfilter/nf_tables_api.c of the component nf_tables. Executing a manipulation can lead to allocation of resources. The attack requires access to the local network. No exploit is available. The affected component should be upgraded.

Affected Products

Vendor	Product	Versions
Linux	Linux	3f1d886cc7c3525d4dbeee24bfa9bb3fe0d48ddc, 3f1d886cc7c3525d4dbeee24bfa9bb3fe0d48ddc, 3f1d886cc7c3525d4dbeee24bfa9bb3fe0d48ddc, 6.10, 6.18.16, 6.19.6, 7.0-rc2

References

Related News (2 articles)

Tier C

VulDB5h ago

CVE-2026-23385 | Linux Kernel up to 6.18.16/6.19.6/7.0-rc2 nf_tables nf_tables_api.c allocation of resources

→ No new info (linked only)

Tier C

Linux Kernel CVEs6h ago

CVE-2026-23385: netfilter: nf_tables: clone set on flush only

→ No new info (linked only)

CISA KEV❌ No

Actively exploited✅ Yes

Published3/25/2026

Last enriched3h agov2

Trending Score50

Source articles2

Independent2

Info Completeness6/14

Missing: cvss, epss, cwe, kev, exploit, patch, iocs, mitre_attack

Community Vote

0 upvotes0 downvotes

No votes yet

Pin to Dashboard

Verification

State: unverified

Confidence: 0%

Version History

Last enriched 3h ago

v2Tier C3h ago

Updated description with critical vulnerability details, added new affected versions, and changed severity to CRITICAL.

descriptionaffectedVersionsseverityactivelyExploited

via VulDB

v16h ago

Initial creation