EST

PRE-CVEEXPLOITEDPATCHED

nix · nix

Local Privilege Escalation in Nix/Lix Daemon

56% confidence

Description

A buffer overflow in the daemon may allow a local attacker with access to the daemon interface to achieve arbitrary code execution as the daemon user (root in typical multi-user installations).

Affected Products

Vendor	Product	Versions
nix	nix	≥ 2.24.4, ≥ 2.93.0

Related News (2 articles)

Tier C

oss-security3h ago

Nix/Lix: local privilege escalation in daemon process

→ No new info (linked only)

Tier C

oss-security3h ago

Local privilege escalation in Lix and Nix

→ No new info (linked only)

CISA KEV❌ No

Actively exploited✅ Yes

Patch available

[object Object]

CWECWE-119

PublishedMay 4, 2026

Last enriched3h agov2

Trending Score48

Source articles2

Independent1

Info Completeness7/14

Missing: cve_id, cvss, epss, kev, patch, iocs, mitre_attack

Community Vote

0 upvotes0 downvotes

No votes yet

Pin to Dashboard

Vulnerability Timeline

CVE Published

May 4, 2026

Actively Exploited

May 4, 2026

Exploit Available

May 4, 2026

Patch Available

May 4, 2026

Discovered by ZDM

May 4, 2026

Updated: affectedVersions, patchAvailable, exploitAvailable, activelyExploited, severity

May 4, 2026

Version History

Last enriched 3h ago

v2Tier C3h ago

Updated affected versions, added fixed versions, marked exploit as available and actively exploited, and set severity to HIGH.

affectedVersionspatchAvailableexploitAvailableactivelyExploitedseverity

via oss-security

v13h ago

Initial creation

Local Privilege Escalation in Nix/Lix Daemon

Description

Affected Products

Related News (2 articles)

Community Vote

Pin to Dashboard

Verification

Vulnerability Timeline

Version History