7.8
CVE-2026-31693
- EPSS 0.13%
- Veröffentlicht 30.04.2026 12:16:24
- Zuletzt bearbeitet 07.05.2026 12:49:05
- Quelle 416baaa9-dc9f-4396-8d5f-8c081f
- CVE-Watchlists
- Unerledigt
cifs: some missing initializations on replay
In the Linux kernel, the following vulnerability has been resolved: cifs: some missing initializations on replay In several places in the code, we have a label to signify the start of the code where a request can be replayed if necessary. However, some of these places were missing the necessary reinitializations of certain local variables before replay. This change makes sure that these variables get initialized after the label.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version >= 6.6.32 < 6.6.128
Linux ≫ Linux Kernel Version >= 6.8.1 < 6.12.75
Linux ≫ Linux Kernel Version >= 6.13 < 6.18.16
Linux ≫ Linux Kernel Version >= 6.19 < 6.19.6
Linux ≫ Linux Kernel Version6.8 Update-
Linux ≫ Linux Kernel Version6.8 Updaterc2
Linux ≫ Linux Kernel Version6.8 Updaterc3
Linux ≫ Linux Kernel Version6.8 Updaterc4
Linux ≫ Linux Kernel Version6.8 Updaterc5
Linux ≫ Linux Kernel Version6.8 Updaterc6
Linux ≫ Linux Kernel Version6.8 Updaterc7
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.13% | 0.028 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
CWE-908 Use of Uninitialized Resource
The product uses or accesses a resource that has not been initialized.
https://git.kernel.org/stable/c/14f66f44646333d2bfd7ece36585874fd72f8286
https://git.kernel.org/stable/c/1d731e512134495e0ef490ade0e4d91dc0d515ec
https://git.kernel.org/stable/c/7c9ce68192eef14c777cb6ce17155d2eb2431aea
https://git.kernel.org/stable/c/c854ab481ece4b3e5f4c2e8b22824f015ff874a5
https://git.kernel.org/stable/c/c99e160938b627f6f28edee930e8abc157e84386