CVE-2026-10722
LOWcilium ebpf LoadCollectionSpec/LoadCollectionSpecFromReader btf.go loadRawSpec integer overflow
Title source: cnaDescription
A vulnerability has been found in cilium ebpf up to 0.21.0. This affects the function loadRawSpec of the file btf/btf.go of the component LoadCollectionSpec/LoadCollectionSpecFromReader. Such manipulation of the argument offset leads to integer overflow. The attack can only be performed from a local environment. The exploit has been disclosed to the public and may be used. The name of the patch is 533dfc82fd228bfadf42ea7180c39de7d9af47fa. A patch should be applied to remediate this issue.
References (9)
Core 9
Core References
Vdb Entry, Technical Description vdb-entry
technical-description
VDB-368091 | cilium ebpf LoadCollectionSpec/LoadCollectionSpecFromReader btf.go loadRawSpec integer overflow
https://vuldb.com/vuln/368091
Signature, Permissions Required signature
permissions-required
VDB-368091 | CTI Indicators (IOB, IOC, IOA)
https://vuldb.com/vuln/368091/cti
Third Party Advisory third-party-advisory
CVE-2026-10722 | CVE Analysis and Report
https://vuldb.com/cve/CVE-2026-10722
Third Party Advisory third-party-advisory
Submit #818291 | Cilium cilium/ebpf v0.19.0-v0.21.0 Denial of Service
https://vuldb.com/submit/818291
Issue Tracking issue-tracking
https://github.com/cilium/ebpf/issues/2019
Patch issue-tracking
patch
https://github.com/cilium/ebpf/pull/2021
Product product
https://github.com/cilium/ebpf/
Scores
CVSS v3
3.3
EPSS
0.0014
EPSS Percentile
3.2%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
no
Technical Impact
partial
Details
CWE
CWE-189
CWE-190
Status
published
Products (22)
cilium/ebpf
< 0.21.0
cilium/ebpf
0.1
cilium/ebpf
0.10
cilium/ebpf
0.11
cilium/ebpf
0.12
cilium/ebpf
0.13
cilium/ebpf
0.14
cilium/ebpf
0.15
cilium/ebpf
0.16
cilium/ebpf
0.17
... and 12 more
Published
Jun 03, 2026
Tracked Since
Jun 03, 2026