Zero Day MonitorZDM

← Back to list

—

CVE-2026-43010EXPLOITEDPATCHED

linux · linux_kernel

bpf: Reject sleepable kprobe_multi programs at attach time

Description

A vulnerability was found in Linux Kernel up to 6.18.21/6.19.11. It has been declared as critical. This impacts the function bpf_kprobe_multi_link_attach. Executing a manipulation can lead to privilege escalation. This vulnerability appears as CVE-2026-43010. The attacker needs to be present on the local network. There is no available exploit. It is recommended to upgrade the affected component.

Affected Products

Vendor	Product	Versions
linux	linux_kernel	0dcac272540613d41c05e89679e4ddb978b612f1, 0dcac272540613d41c05e89679e4ddb978b612f1, 0dcac272540613d41c05e89679e4ddb978b612f1, 5.18, 6.18.21, 6.19.11, 6.12, 6.15

References

https://git.kernel.org/stable/c/dc9a060d76c12b23c5f378ee115d5e5d03d8bbf3
https://git.kernel.org/stable/c/f952157e695fd434bdc05af63a703bb082a78717
https://git.kernel.org/stable/c/eb7024bfcc5f68ed11ed9dd4891a3073c15f04a8

Related News (4 articles)

Tier A

Microsoft MSRC11h ago

CVE-2026-43010 bpf: Reject sleepable kprobe_multi programs at attach time

→ No new info (linked only)

Tier C

oss-security3d ago

Re: CVE request: io_uring zcrx freelist OOB write

→ No new info (linked only)

Tier C

oss-security3d ago

Re: CVE request: io_uring zcrx freelist OOB write

→ No new info (linked only)

Tier C

VulDB10d ago

CVE-2026-43010 | Linux Kernel up to 6.18.21/6.19.11 bpf_kprobe_multi_link_attach privilege escalation

→ No new info (linked only)

CISA KEV❌ No

Actively exploited✅ Yes

Patch available

dc9a060d76c12b23c5f378ee115d5e5d03d8bbf3f952157e695fd434bdc05af63a703bb082a78717eb7024bfcc5f68ed11ed9dd4891a3073c15f04a806.18.226.19.127.0

CWECWE-787

PublishedMay 1, 2026

Last enriched10d agov2

Trending Score62

Source articles4

Independent3

Info Completeness7/14

Missing: cvss, epss, cwe, kev, exploit, iocs, mitre_attack

Community Vote

0 upvotes0 downvotes

No votes yet

Related CVEs (5)

HIGHCVE-2026-31431EXPKEV

crypto: algif_aead - Revert to operating out-of-place

IMPORTANTCVE-2026-43284EXP

xfrm: esp: avoid in-place decrypt on shared skb frags

CRITICALCVE-2026-43312EXP

media: i2c: ov5647: Initialize subdev before controls

CRITICALCVE-2025-71301EXP

drm/tests: shmem: Hold reservation lock around vmap/vunmap

CRITICALCVE-2025-71300EXP

Revert "arm64: zynqmp: Add an OP-TEE node to the device tree"

Pin to Dashboard

Verification

State: unverified

Confidence: 0%

Vulnerability Timeline

CVE Published

May 1, 2026

Discovered by ZDM

May 1, 2026

Actively Exploited

May 1, 2026

Exploit Available

May 1, 2026

Patch Available

May 1, 2026

Updated: description, severity, affectedVersions, activelyExploited

May 1, 2026

Version History

v2

Last enriched 10d ago

v2Tier C10d ago

Updated description with critical severity, affected versions, and noted that there is no available exploit.

descriptionseverityaffectedVersionsactivelyExploited

via VulDB

v110d ago

Initial creation