What is the CVSS score of CVE-2026-43353?

CVE-2026-43353 has a CVSS 3.1 base score of 7.8 (High). CVSS vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H. EPSS exploitation probability: 0.0%.

Which versions of Linux Kernel are affected by CVE-2026-43353?

CVE-2026-43353 is a Linux kernel race condition affecting the I3C HCI driver that allows local authenticated users with low privileges to corrupt memory and escalate privileges, causing potential…. A patch is available.

Linux Kernel CVE-2026-43353

EUVD-2026-28659 HIGH

Race Condition (CWE-362)

2026-05-08 Linux

GHSA-473v-h78r-2j73

Information Disclosure Linux Race Condition

7.8

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Analysis Generated

May 11, 2026 - 08:27 vuln.today

CVSS changed

May 11, 2026 - 08:22 NVD

7.8 (HIGH)

Patch available

May 08, 2026 - 16:18 EUVD

CVE Published

May 08, 2026 - 14:21 nvd

HIGH 7.8

CVE Published

May 08, 2026 - 14:21 nvd

UNKNOWN (no severity yet)

DescriptionNVD

In the Linux kernel, the following vulnerability has been resolved:

i3c: mipi-i3c-hci: Fix race in DMA ring dequeue

The HCI DMA dequeue path (hci_dma_dequeue_xfer()) may be invoked for multiple transfers that timeout around the same time. However, the function is not serialized and can race with itself.

When a timeout occurs, hci_dma_dequeue_xfer() stops the ring, processes incomplete transfers, and then restarts the ring. If another timeout triggers a parallel call into the same function, the two instances may interfere with each other - stopping or restarting the ring at unexpected times.

Add a mutex so that hci_dma_dequeue_xfer() is serialized with respect to itself.

AnalysisAI

Race condition in Linux kernel I3C HCI DMA dequeue handler allows local authenticated attackers with low privileges to trigger memory corruption leading to privilege escalation, denial of service, or information disclosure. The vulnerability affects kernel versions from 5.11 onwards where the mipi-i3c-hci driver is enabled. …

RemediationAI

Within 24 hours: Identify all systems running Linux kernels 5.11 through 7.0 with mipi-i3c-hci driver enabled using kernel module enumeration tools. Within 7 days: Schedule patching to kernel versions 6.18.19, 6.19.9, or 7.0 (whichever matches your supported branch) and test in pre-production environments. …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

More from same product – last 7 days

CVE-2026-47337 LOW Monitor

3.3 May 28

NULL pointer dereference in Ubuntu Linux kernel SAUCE patches (versions 6.8, 6.17, and 7.0) allows an unprivileged local

CVE-2026-45844 Monitor

May 27

In the Linux kernel, the following vulnerability has been resolved: netfilter: arp_tables: fix IEEE1394 ARP payload par

CVE-2026-45837 Monitor

May 27

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix use-after-free in arena_vm_close on fork

CVE-2026-45838 Monitor

May 27

In the Linux kernel, the following vulnerability has been resolved: bpf: fix end-of-list detection in cgroup_storage_ge

CVE-2026-45840 Monitor

May 27

In the Linux kernel, the following vulnerability has been resolved: openvswitch: cap upcall PID array size and pre-size

Vendor StatusVendor

CVE-2026-43353 vulnerability details – vuln.today

Back

Linux Kernel CVE-2026-43353

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

RemediationAI

Full analysis requires sign-in

More from same product – last 7 days

Vendor StatusVendor

Share

External POC / Exploit Code