In the Linux kernel, the following vulnerability has been resolved: smb: client: reject userspace cifs.spnego descriptions cifs.spnego key descriptions contain authority-bearing fields such as pid, uid, creduid, and upcall_target that cifs.upcall treats as kernel-originating inputs. However, userspace can also create keys of this type through request_key(2) or add_key(2), allowing those fields to be supplied without CIFS origin. Only accept cifs.spnego descriptions while CIFS is using its private spnego_cred to request the key.
[POC] CVE-2026-46243 — CIFSwitch-go
A Go implementation of CIFSwitch (CVE-2026-46243)
[POC] CVE-2026-46243 — cifswitch-check
Detection script for CIFSwitch - CVE-2026-46243
[POC] CVE-2026-46243 — CIFSwitch-Checker-CVE-2026-46243
Script para comprobar si la vulnerabilidad de Linux CIFSwitch (CVE-2026-46243) nos afecta.Detecta configuraciones potencialmente vulnerables y mitigaciones sin ejecutar exploits.
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
Get alerted for CVEs like this
Register your stack and get notified within minutes when a matching CVE drops.
Start monitoring free