Linux

A medium-severity vulnerability (CVSS 6.7) has been discovered in Linux that requires local access and high-level privileges to exploit, resulting in high confidentiality impact and minor availability disruption. The attack is non-interactive and affects the broader system scope beyond the vulnerable component. Security teams should monitor for patches after the May 13, 2026 vendor deadline and prioritize systems where privileged users may have malicious intent or compromised accounts.