Cyber Resilience

CVE-2026-23424

High

Published: 03 April 2026

Published
03 April 2026
Modified
27 April 2026
KEV Added
Patch
CVSS Score v3.1 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
EPSS Score 0.0002 4.6th percentile
Risk Priority 14 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2026-23424 is a high-severity an unspecified weakness vulnerability in Linux Linux Kernel. Its CVSS base score is 7.1 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Data from Local System (T1005); ranked at the 4.6th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-2 (Flaw Remediation).

Deeper analysis

CVE-2026-23424 is a vulnerability in the Linux kernel's accel/amdxdna component, which handles AMD XDNA accelerator operations. The issue arises because the driver does not validate the count field in the command header to ensure the specified payload size does not exceed the remaining buffer space, potentially leading to buffer overflows or overreads.

A local attacker with low privileges can exploit this vulnerability with low attack complexity and no user interaction required. Successful exploitation results in high confidentiality impact, such as unauthorized access to sensitive data, and high availability impact, such as system crashes or denial of service, as indicated by the CVSS v3.1 base score of 7.1 (AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H).

Mitigation is provided through patches in the Linux kernel stable tree, including commits at https://git.kernel.org/stable/c/3464e751755172ddbb849c1bd92f5f59e95c59a1, https://git.kernel.org/stable/c/3ed2ae6b3fe869f99b75afd02045ba5c0c0773e2, and https://git.kernel.org/stable/c/901ec3470994006bc8dd02399e16b675566c3416. These commits add validation to ensure the payload count does not exceed available buffer space; security practitioners should update affected systems to kernels incorporating these fixes.

EU & UK References

Vulnerability details

In the Linux kernel, the following vulnerability has been resolved: accel/amdxdna: Validate command buffer payload count The count field in the command header is used to determine the valid payload size. Verify that the valid payload does not exceed the…

more

remaining buffer space.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1005 Data from Local System Collection
Adversaries may search local system sources, such as file systems, configuration files, local databases, virtual machine files, or process memory, to find files of interest and sensitive data prior to Exfiltration.
T1499.004 Application or System Exploitation Impact
Adversaries may exploit software vulnerabilities that can cause an application or system to crash and deny availability to users.
Why these techniques?

Kernel driver buffer overread enables unauthorized local data access (T1005); buffer overflow enables local DoS via system crash (T1499.004).

Confidence: MEDIUM · MITRE ATT&CK Enterprise v18.1

CVEs Like This One

CVE-2026-31513Same product: Linux Linux Kernel
CVE-2026-23315Same product: Linux Linux Kernel
CVE-2024-58015Same product: Linux Linux Kernel
CVE-2026-31771Same product: Linux Linux Kernel
CVE-2026-23187Same product: Linux Linux Kernel
CVE-2024-58007Same product: Linux Linux Kernel
CVE-2025-21742Same product: Linux Linux Kernel
CVE-2024-58014Same product: Linux Linux Kernel
CVE-2026-23397Same product: Linux Linux Kernel
CVE-2025-21789Same product: Linux Linux Kernel

Affected Assets

linux
linux kernel
6.14, 7.0 · 6.14.1 — 6.18.17 · 6.19 — 6.19.7

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

SI-10 requires validation of information inputs like the command header count field to ensure it does not exceed buffer space, directly preventing the buffer overflow or overread in the amdxdna driver.

prevent

SI-2 mandates timely remediation of identified flaws, such as applying the specific kernel patches that add the missing payload count validation.

prevent

SI-16 provides memory protections like guard pages or canaries that can mitigate the impacts of buffer overflows in kernel drivers even if validation is incomplete.

References