CVE-2026-34002
πΆ mediumSummary
A flaw was found in the X.Org X server. This vulnerability, an out-of-bounds read, affects the XKB (X Keyboard Extension) modifier map handling. An attacker with access to the X11 server can exploit this by sending a malformed request, which causes the server to read beyond its intended memory boundaries. This can lead to the exposure of sensitive information or cause the server to crash, resulting in a denial of service.
CVSS Score
6.1
Medium
EPSS Score
0.0
Exploit Probability
Published Date
2026-05-05
First Seen: 2026-05-06
π Relative Risk Intelligence
This CVE is Lower Risk - more severe than 39.0% of all 322,079 vulnerabilities in our database.
#196,436
Below average severity
Severity Percentile
π― CISA SSVC Assessment Updated: May 6, 2026
π Exploitation Status
None
No known exploits
βοΈ Automatable
NO
Requires human interaction
π₯ Technical Impact
Partial
Limited system impact
π Discovered By
Red Hat would like to thank Jan-Niklas Sohn (TrendAI Zero Day Initiative) for reporting this issue.
SSVC data provided by
CISA
Last Modified
2026-05-07
Source
NVD π
CVSS Vector 3.1
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L
CWE IDs (Weakness Types)