PT-2026-58295 · Blackberry · Qnx For Medical+2

Published

2026-07-14

·

Updated

2026-07-14

·

CVE-2026-4018

CVSS v3.1

6.4

Medium

VectorAV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
TOCTOU Race Condition in specific trace commands of the TraceEvent() system call could allow an attacker with local access and with the PROCMGR AID TRACE ability, to cause information disclosure, data tampering or a crash of the QNX Neutrino kernel.

Fix

Time Of Check To Time Of Use

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-4018

Affected Products

Qnx For Medical
Qnx Os For Safety
Qnx Software Development Platform