netfilter: xt_CT: drop pending enqueued packets on template removal

Description

A vulnerability labeled as critical has been found in Linux Kernel up to 7.0-rc4. This issue affects some unknown processing of the component netfilter. Executing a manipulation can lead to privilege escalation. The attack needs to be done within the local network.

Affected Products

Vendor	Product	Versions
Linux	Linux	24de58f465165298aaa8f286b2592f0163706cfe, 24de58f465165298aaa8f286b2592f0163706cfe, 24de58f465165298aaa8f286b2592f0163706cfe, 24de58f465165298aaa8f286b2592f0163706cfe, 24de58f465165298aaa8f286b2592f0163706cfe, 24de58f465165298aaa8f286b2592f0163706cfe, 3.4, 7.0-rc4

References

Related News (2 articles)

Tier C

VulDB4h ago

CVE-2026-23391 | Linux Kernel up to 7.0-rc4 netfilter privilege escalation

→ No new info (linked only)

Tier C

Linux Kernel CVEs6h ago

CVE-2026-23391: netfilter: xt_CT: drop pending enqueued packets on template removal

→ No new info (linked only)

CISA KEV❌ No

Actively exploited✅ Yes

Published3/25/2026

Last enriched3h agov2

Trending Score50

Source articles2

Independent2

Info Completeness6/14

Missing: cvss, epss, cwe, kev, exploit, patch, iocs, mitre_attack

Community Vote

0 upvotes0 downvotes

No votes yet

Pin to Dashboard

Verification

State: unverified

Confidence: 0%

Version History

Last enriched 3h ago

v2Tier C3h ago

Updated description with critical vulnerability details, added affected version 7.0-rc4, changed severity to CRITICAL, and noted that no exploit is available.

descriptionaffectedVersionsseverityactivelyExploited

via VulDB

v16h ago

Initial creation