Sale of a Linux 0-day Vulnerability

🌐 Dark Web2026-05-13, 11:52
For informational purposes only
According to the seller, the exploit leverages a TOCTOU (Time-of-Check to Time-of-Use) race condition and a dynamic library loaded into the /tmp directory for local privilege escalation.
Vulnerability type: TOCTOU LPE Affected distributions: • RHEL 10.0 6.12.x • CentOS Stream 10 6.12.x • Rocky Linux 10 6.12.x • AlmaLinux 10 6.12.x • Ubuntu 25.04 6.14.x • Ubuntu 24.04 LTS (base) 6.8.x • Ubuntu 24.04 LTS (HWE) 6.11+ • Ubuntu 22.04 LTS (HWE only) 6.8 HWE • Debian 13 Trixie 6.12.x • Fedora 42 6.14–6.15 • Fedora 41 6.11.x • openSUSE Tumbleweed 7.x rolling • Arch Linux 7.x rolling
Price: $170K
💬 Discuss
Vendors
Red Hat
Canonical
Debian
Fedora
Suse
Arch Linux
More
Products
Almalinux
Arch Linux
Centos Stream
Debian
Fedora
Linux
More
Published
2026-05-13, 11:52