A new Linux kernel local privilege escalation vulnerability, dubbed “DirtyClone” (CVE-2026-43503), that allows unprivileged local users to gain full root access by manipulating cloned network packets through the XFRM/IPsec subsystem, all without leaving a trace in kernel logs or audit records....

#Sicherheitslücke #Linux

Original-Artikel öffnen Zurück zur Übersicht

ARTICLEVIEW

New DirtyClone Linux Vulnerability Allows Attackers to Gain Root Access Via Cloned Packets

VERWANDTEARTIKEL

Amazon Q Vulnerability Let Attackers Execute Code and Access Sensitive Cloud Environments

New Linux pedit COW Exploit Allows Attackers to Gain System Root Access

CVE-2026-57518 - Pagekit CMS 1.0.18 Privilege Escalation via UserApiController

CVE-2026-12411 - Broken Access Control in Canonical LXD DevLXD API

CVE-2026-57667 - WordPress Groundhogg plugin <= 4.5 - SQL Injection vulnerability

CVE-2026-57663 - WordPress Recipe Maker For Your Food Blog from Zip Recipes plugin <= 8.2.7 - SQL Injection vulnerability