CVE-2026-23321 | Linux Kernel up to 7.0-rc2 MPTCP Endpoint net/mptcp/pm_kernel.c local_addr_used privilege escalation

Inserito da Angelo Barbosa | Mar 25, 2026 | CVE

A vulnerability classified as critical has been found in Linux Kernel up to 7.0-rc2. This affects the function local_addr_used of the file net/mptcp/pm_kernel.c of the component MPTCP Endpoint. The manipulation leads to privilege escalation.

This vulnerability is traded as CVE-2026-23321. Access to the local network is required for this attack to succeed. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2026-23321 | Linux Kernel up to 7.0-rc2 MPTCP Endpoint net/mptcp/pm_kernel.c local_addr_used privilege escalation

Post correlati

CVE-2021-47098 | Linux Kernel up to 5.15.11 hwmon clamp_val integer underflow (d105f30bea91/55840b9eae53)

CVE-2024-6223 | Send Email Only on Reply to My Comment Plugin up to 1.0.6 on WordPress cross site scripting

CVE-2024-38272 | Google Nearby prior 1.0.1724.0 authentication replay

CVE-2024-12204 | Coupon X Plugin up to 1.3.5 on WordPress authorization