CVE-2026-23424
Published: 03 April 2026
Summary
CVE-2026-23424 is a high-severity an unspecified weakness vulnerability in Linux Linux Kernel. Its CVSS base score is 7.1 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Data from Local System (T1005); ranked at the 4.6th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.
The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-2 (Flaw Remediation).
Deeper analysis
CVE-2026-23424 is a vulnerability in the Linux kernel's accel/amdxdna component, which handles AMD XDNA accelerator operations. The issue arises because the driver does not validate the count field in the command header to ensure the specified payload size does not exceed the remaining buffer space, potentially leading to buffer overflows or overreads.
A local attacker with low privileges can exploit this vulnerability with low attack complexity and no user interaction required. Successful exploitation results in high confidentiality impact, such as unauthorized access to sensitive data, and high availability impact, such as system crashes or denial of service, as indicated by the CVSS v3.1 base score of 7.1 (AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H).
Mitigation is provided through patches in the Linux kernel stable tree, including commits at https://git.kernel.org/stable/c/3464e751755172ddbb849c1bd92f5f59e95c59a1, https://git.kernel.org/stable/c/3ed2ae6b3fe869f99b75afd02045ba5c0c0773e2, and https://git.kernel.org/stable/c/901ec3470994006bc8dd02399e16b675566c3416. These commits add validation to ensure the payload count does not exceed available buffer space; security practitioners should update affected systems to kernels incorporating these fixes.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2026-18645
Vulnerability details
In the Linux kernel, the following vulnerability has been resolved: accel/amdxdna: Validate command buffer payload count The count field in the command header is used to determine the valid payload size. Verify that the valid payload does not exceed the…
more
remaining buffer space.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Kernel driver buffer overread enables unauthorized local data access (T1005); buffer overflow enables local DoS via system crash (T1499.004).
CVEs Like This One
Affected Assets
Mitigating Controls
Mitigating Controls (NIST 800-53 r5) AI
SI-10 requires validation of information inputs like the command header count field to ensure it does not exceed buffer space, directly preventing the buffer overflow or overread in the amdxdna driver.
SI-2 mandates timely remediation of identified flaws, such as applying the specific kernel patches that add the missing payload count validation.
SI-16 provides memory protections like guard pages or canaries that can mitigate the impacts of buffer overflows in kernel drivers even if validation is incomplete.