Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate mech token in session setup If client send invalid mech token in session setup request, ksmbd validate and make the error if it is invalid.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | < 5.15.149 |
Related Weaknesses (CWE)
References
- https://git.kernel.org/stable/c/5e6dfec95833edc54c48605a98365a7325e5541ePatch
- https://git.kernel.org/stable/c/6eb8015492bcc84e40646390e50a862b2c0529c9Patch
- https://git.kernel.org/stable/c/92e470163d96df8db6c4fa0f484e4a229edb903dPatch
- https://git.kernel.org/stable/c/a2b21ef1ea4cf632d19b3a7cc4d4245b8e63202aPatch
- https://git.kernel.org/stable/c/dd1de9268745f0eac83a430db7afc32cbd62e84bPatch
- https://git.kernel.org/stable/c/5e6dfec95833edc54c48605a98365a7325e5541ePatch
- https://git.kernel.org/stable/c/6eb8015492bcc84e40646390e50a862b2c0529c9Patch
- https://git.kernel.org/stable/c/92e470163d96df8db6c4fa0f484e4a229edb903dPatch
- https://git.kernel.org/stable/c/a2b21ef1ea4cf632d19b3a7cc4d4245b8e63202aPatch
- https://git.kernel.org/stable/c/dd1de9268745f0eac83a430db7afc32cbd62e84bPatch
FAQ
What is CVE-2024-26594?
CVE-2024-26594 is a vulnerability with a CVSS score of 7.1 (HIGH). In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate mech token in session setup If client send invalid mech token in session setup request, ksmbd validate and make th...
How severe is CVE-2024-26594?
CVE-2024-26594 has been rated HIGH with a CVSS base score of 7.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-26594?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.