CVE-2023-26607

HIGH

Linux kernel <6.0.8 - Info Disclosure

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2023-26607. PoCs published by Trinadh465.

AI-analyzed exploit summary The repository contains only documentation files and build scripts from a Linux kernel tree, with no actual exploit code or technical analysis related to CVE-2023-26607. It appears to be a partial or mislabeled kernel source dump rather than a functional PoC.

Description

In the Linux kernel 6.0.8, there is an out-of-bounds read in ntfs_attr_find in fs/ntfs/attrib.c.

Exploits (1)

nomisec STUB
by Trinadh465 · poc
https://github.com/Trinadh465/linux-4.1.15_CVE-2023-26607

The repository contains only documentation files and build scripts from a Linux kernel tree, with no actual exploit code or technical analysis related to CVE-2023-26607. It appears to be a partial or mislabeled kernel source dump rather than a functional PoC.

Classification
Stub 95%
Attack Type
Other
Complexity
N/a
Reliability
Theoretical
Target: Linux kernel (version unclear)
No auth needed
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (4)

Core 4

Scores

CVSS v3 7.1
EPSS 0.0061
EPSS Percentile 44.6%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact partial

Details

CWE
CWE-125
Status published
Products (6)
linux/linux_kernel 2.6.12 - 4.9.334
netapp/hci_baseboard_management_controller h300s
netapp/hci_baseboard_management_controller h410c
netapp/hci_baseboard_management_controller h410s
netapp/hci_baseboard_management_controller h500s
netapp/hci_baseboard_management_controller h700s
Published Feb 26, 2023
Tracked Since Feb 18, 2026