Skip to main content

Linux Kernel CVE-2026-53044

| EUVDEUVD-2026-38912 HIGH
Out-of-bounds Read (CWE-125)
2026-06-24 Linux GHSA-24hf-c9jr-vvfw
7.1
CVSS 3.1 · Vendor: Linux
Share

Severity by source

Vendor (Linux) PRIMARY
7.1 HIGH
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
vuln.today AI
7.1 HIGH

Local, low-privilege, low-complexity access to Tegra hardware (AV:L/AC:L/PR:L); out-of-bounds read can leak kernel memory (C:H) and crash the system (A:H) with no integrity impact (I:N).

3.1 AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
4.0 AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N

Primary rating from Vendor (Linux).

CVSS VectorVendor: Linux

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
High

Lifecycle Timeline

5
Analysis Generated
Jun 28, 2026 - 08:56 vuln.today
CVSS changed
Jun 28, 2026 - 08:22 NVD
7.1 (HIGH)
Patch available
Jun 24, 2026 - 18:02 EUVD
CVE Published
Jun 24, 2026 - 16:29 cve.org
HIGH 7.1
CVE Published
Jun 24, 2026 - 16:29 cve.org
UNKNOWN (no severity yet)

DescriptionCVE.org

In the Linux kernel, the following vulnerability has been resolved:

soc/tegra: cbb: Fix incorrect ARRAY_SIZE in fabric lookup tables

Fix incorrect ARRAY_SIZE usage in fabric lookup tables which could cause out-of-bounds access during target timeout lookup.

AnalysisAI

Out-of-bounds memory access in the Linux kernel's NVIDIA Tegra Control Backbone (CBB) driver (soc/tegra: cbb) stems from an incorrect ARRAY_SIZE calculation in the fabric lookup tables, which can be triggered during a target timeout lookup on Tegra-based systems. A local, low-privileged attacker on affected Tegra hardware could read out-of-bounds kernel memory (information disclosure) or crash the system (denial of service), with CVSS 7.1. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Gain local low-privileged access on Tegra device
Delivery
Trigger CBB interconnect transaction timeout
Exploit
Driver performs out-of-bounds fabric table lookup
Execution
Leak adjacent kernel memory or fault
Impact
Information disclosure or kernel crash (DoS)

Vulnerability AssessmentAI

Exploitation Exploitation requires local access with at least low privileges (CVSS PR:L, AV:L) on a system running the NVIDIA Tegra CBB driver - i.e., the kernel must be built with Tegra SoC support AND running on Tegra hardware; the bug cannot be reached on non-Tegra systems regardless of kernel version. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment Signals are largely consistent and point to a real-but-not-urgent issue. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker who already has a low-privileged local account or code execution on a Tegra-based device (e.g., a Jetson board, automotive head unit, or embedded appliance) induces a control-backbone transaction timeout, causing the CBB driver to perform an out-of-bounds lookup that reads adjacent kernel memory or triggers a kernel fault. This could leak sensitive kernel data toward a privilege-escalation chain or simply crash the device (DoS). …
Remediation Vendor-released patch: update to a fixed stable kernel - 6.18.33, 7.0.10, or 7.1 or later (the fix is also backported to the relevant stable trees via commits f46870b4..., 5c009a5f..., and 499f7e5e... … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: Inventory all systems running Linux kernels on NVIDIA Tegra hardware and verify current kernel versions. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

CVE-2026-53044 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy