Zero Day MonitorZDM

← Back to list

—

CVE-2026-23424PATCHED

linux · linux kernel

accel/amdxdna: Validate command buffer payload count

Description

A vulnerability classified as critical was found in Linux Kernel up to 6.18.16/6.19.6/7.0-rc1. Impacted is an unknown function of the component amdxdna. Executing a manipulation of the argument Count can lead to buffer overflow. This vulnerability is handled as CVE-2026-23424. The attack can only be done within the local network.

Affected Products

Vendor	Product	Versions
linux	linux kernel	aac243092b707bb3018e951d470cc1a9bcbaba6c, aac243092b707bb3018e951d470cc1a9bcbaba6c, aac243092b707bb3018e951d470cc1a9bcbaba6c, 6.14, 6.18.16, 6.19.6, 7.0-rc1

References

Related News (2 articles)

Tier C

VulDB4h ago

CVE-2026-23424 | Linux Kernel up to 6.18.16/6.19.6/7.0-rc1 amdxdna Count buffer overflow

→ No new info (linked only)

Tier C

Linux Kernel CVEs6h ago

CVE-2026-23424: accel/amdxdna: Validate command buffer payload count

→ No new info (linked only)

CISA KEV❌ No

Actively exploited❌ No

Patch available

3464e751755172ddbb849c1bd92f5f59e95c59a13ed2ae6b3fe869f99b75afd02045ba5c0c0773e2901ec3470994006bc8dd02399e16b675566c341606.18.176.19.77.0-rc2

PublishedApr 3, 2026

Last enriched4h agov2

Trending Score41

Source articles2

Independent2

Info Completeness7/14

Missing: cvss, epss, cwe, kev, exploit, iocs, mitre_attack

Community Vote

0 upvotes0 downvotes

No votes yet

Related CVEs (5)

CRITICALCVE-2026-31393EXP

Bluetooth: L2CAP: Validate L2CAP_INFO_RSP payload length before access

CRITICALCVE-2026-31397EXP

mm/huge_memory: fix use of NULL folio in move_pages_huge_pmd()

CRITICALCVE-2026-23463EXP

soc: fsl: qbman: fix race condition in qman_destroy_fq

CRITICALCVE-2026-23472EXP

serial: core: fix infinite loop in handle_tx() for PORT_UNKNOWN

CRITICALCVE-2026-23467EXP

drm/i915/dmc: Fix an unlikely NULL pointer deference at probe

Pin to Dashboard

Verification

State: unverified

Confidence: 0%

Vulnerability Timeline

CVE Published

Apr 3, 2026

Patch Available

Apr 3, 2026

Discovered by ZDM

Apr 3, 2026

Updated: description, severity, affectedVersions

Apr 3, 2026

Version History

v2

Last enriched 4h ago

v2Tier C4h ago

Updated severity to CRITICAL, added affected versions 6.18.16, 6.19.6, and 7.0-rc1, and corrected exploit availability status.

descriptionseverityaffectedVersions

via VulDB

v15h ago

Initial creation