CVE-2026-23434 | Linux Kernel up to 7.0-rc4 mtd nand_lock deserialization

Inserito da Angelo Barbosa | Apr 3, 2026 | CVE

A vulnerability has been found in Linux Kernel up to 7.0-rc4 and classified as critical. Affected by this vulnerability is the function nand_lock of the component mtd. Performing a manipulation results in deserialization.

This vulnerability was named CVE-2026-23434. The attack needs to be approached within the local network. There is no available exploit.

The affected component should be upgraded.

CVE-2026-23434 | Linux Kernel up to 7.0-rc4 mtd nand_lock deserialization

Post correlati

CVE-2025-5844 | Radius Blocks Plugin up to 2.2.1 on WordPress subHeadingTagName cross site scripting

CVE-2023-52355 | LibTIFF TIFFRasterScanlineSize64 resource consumption

CVE-2024-38263 | Microsoft

CVE-2024-21671 | vantage6 up to 4.1.x timing discrepancy (GHSA-45gq-q4xh-cp53)