CVE-2026-31518
🔶 mediumSummary
In the Linux kernel, the following vulnerability has been resolved: esp: fix skb leak with espintcp and async crypto When the TX queue for espintcp is full, esp_output_tail_tcp will return an error and not free the skb, because with synchronous crypto, the common xfrm output code will drop the packet for us. With async crypto (esp_output_done), we need to drop the skb when esp_output_tail_tcp returns an error.
CVSS Score
5.5
Medium
EPSS Score
0.1
Exploit Probability
Published Date
2026-04-22
First Seen: 2026-07-15
📊 Relative Risk Intelligence
This CVE is Lower Risk - more severe than 32.4% of all 335,187 vulnerabilities in our database.
#226,526
Below average severity
Severity Percentile
Last Modified
2026-07-14
Source
NVD 🔗
CVSS Vector 3.1
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE IDs (Weakness Types)