CVEFinder.io

CVE-2026-23236

🔶 medium
🔍 Scan for this CVE
Summary

In the Linux kernel, the following vulnerability has been resolved: fbdev: smscufx: properly copy ioctl memory to kernelspace The UFX_IOCTL_REPORT_DAMAGE ioctl does not properly copy data from userspace to kernelspace, and instead directly references the memory, which can cause problems if invalid data is passed from userspace. Fix this all up by correctly copying the memory before accessing it within the kernel.

CVSS Score
5.5
Medium
EPSS Score
0.0
Exploit Probability
Published Date
2026-03-04
First Seen: 2026-03-05
📊 Relative Risk Intelligence

This CVE is Lower Risk - more severe than 32.4% of all 318,332 vulnerabilities in our database.

#215,043
Below average severity
Severity Percentile
Last Modified 2026-03-17
Source NVD 🔗
CVSS Vector 3.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

📦 Affected Products 7

Vendor Product Status Affected Versions
linux linux_kernel Affected
> 3.2 < 5.10.251
linux linux_kernel Affected
> 5.11 < 5.15.201
linux linux_kernel Affected
> 5.16 < 6.1.164
linux linux_kernel Affected
> 6.7 < 6.12.74
linux linux_kernel Affected
> 6.13 < 6.18.13
linux linux_kernel Affected
> 6.19 < 6.19.3
linux linux_kernel Affected
> 6.2 < 6.6.127

🔗 References 8

https://git.kernel.org/stable/c/061cfeb560aa3ddc1741...
Patch
https://git.kernel.org/stable/c/0634e8d650993602fc5b...
Patch
https://git.kernel.org/stable/c/120adae7b42faa641179...
Patch
https://git.kernel.org/stable/c/1c008ad0f0d1c1523902...
Patch
https://git.kernel.org/stable/c/52917e265aa5f848212f...
Patch
https://git.kernel.org/stable/c/6167af934f956d3ae1e0...
Patch
https://git.kernel.org/stable/c/a0321e6e58facb39fe19...
Patch
https://git.kernel.org/stable/c/f1e91bd4efeae48b0f42...
Patch

🔗 Related CVEs 6

CVE ID Severity CVSS EPSS Summary Published
CVE-2026-23231 ⚠️ high 7.8 0.0 In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: fix use-after-free in nf_tabl... 2026-03-04
CVE-2025-71238 ⚠️ high 7.8 0.0 In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix bsg_done() causing double free ... 2026-03-04
CVE-2026-23232 🔶 medium 5.5 0.0 In the Linux kernel, the following vulnerability has been resolved: Revert "f2fs: block cache/dio write during f2fs_ena... 2026-03-04
CVE-2026-23233 ⚠️ high 7.8 0.0 In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid mapping wrong physical block for... 2026-03-04
CVE-2026-23234 ⚠️ high 7.8 0.0 In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid UAF in f2fs_write_end_io() As s... 2026-03-04
CVE-2026-23235 ⚠️ high 7.1 0.0 In the Linux kernel, the following vulnerability has been resolved: f2fs: fix out-of-bounds access in sysfs attribute r... 2026-03-04
These CVEs affect the same products