CVE-2026-43500

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Dirty Frag: A critical new Linux kernel vulnerability chain, identified as CVE-2026-43284 and CVE-2026-43500, allows for local privilege escalation to root on major Linux distributions.

Technical Breakdown

TTPs: Local Privilege Escalation (TA0004) to gain root access. The attack specifically targets unpatched flaws within the kernel's ESP (Encapsulating Security Payload) and RxRPC modules.
Affected Versions: Unspecified kernel versions across major Linux distributions.
IOCs: Not detailed in the provided summary.

Defense

Prioritize patching Linux kernels to the latest stable versions to mitigate this vulnerability.

Source: https://www.wiz.io/blog/dirty-frag-linux-kernel-local-privilege-escalation-via-esp-and-rxrpc

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2026-43500

ECHO-46CE-822A-3114

Affected Products

Almalinux

Astra Linux Special Edition

Ubuntu

Debian

Red Hat

Sles

CVE-2026-43500

Technical Breakdown

Defense

Related Identifiers

Affected Products

References · 31