[UPDATE] [medium] Linux Kernel: Multiple Vulnerabilities
An attacker can exploit multiple vulnerabilities in the Linux Kernel to carry out unspecified attacks, potentially including DoS attacks, data manipulation or disclosure, and bypassing security measures.
CSIRTS triage
- What
- An attacker can exploit multiple vulnerabilities in the Linux Kernel to carry out unspecified attacks, potentially including DoS attacks, data manipulation or disclosure, and bypassing security measures.
- Who is affected
- Deployments of Linux Kernel with the affected versions.
- Urgency
- Remediation is urgent due to the medium severity and potential for denial of service and data disclosure.
- Action
- Apply the latest patches for the Linux Kernel.
AI-assisted analysis generated from the source advisory — verify against the original.
⚡ Watch Linux Kernel
Get an email when a new Linux Kernel advisory drops — max one per day, one-click unsubscribe.
Details
Original advisory: https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-1088
Exploitation outlook
EPSS (FIRST.org) estimates each CVE’s probability of exploitation in the next 30 days — here is the CSIRTS.com read on those numbers.
- Low exploitation riskCVE-2026-314140.38% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 30% of all scored CVEs.
- Low exploitation riskCVE-2026-314150.11% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 1% of all scored CVEs.
- Low exploitation riskCVE-2026-314160.11% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 2% of all scored CVEs.
- Low exploitation riskCVE-2026-314170.39% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 31% of all scored CVEs.
- Low exploitation riskCVE-2026-314180.11% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 2% of all scored CVEs.
- Low exploitation riskCVE-2026-314190.12% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 3% of all scored CVEs.
- Low exploitation riskCVE-2026-314200.09% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 1% of all scored CVEs.
- Low exploitation riskCVE-2026-314210.11% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 2% of all scored CVEs.
- Low exploitation riskCVE-2026-314220.12% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 2% of all scored CVEs.
- Low exploitation riskCVE-2026-314230.11% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 2% of all scored CVEs.
Referenced CVEs
| CVE | CSIRTS overview | External |
|---|---|---|
| CVE-2026-31414 | coverage & exploitation status | NVD · CVE.org |
| CVE-2026-31415 | coverage & exploitation status | NVD · CVE.org |
| CVE-2026-31416 | coverage & exploitation status | NVD · CVE.org |
| CVE-2026-31417 | coverage & exploitation status | NVD · CVE.org |
| CVE-2026-31418 | coverage & exploitation status | NVD · CVE.org |
| CVE-2026-31419 | coverage & exploitation status | NVD · CVE.org |
| CVE-2026-31420 | coverage & exploitation status | NVD · CVE.org |
| CVE-2026-31421 | coverage & exploitation status | NVD · CVE.org |
| CVE-2026-31422 | coverage & exploitation status | NVD · CVE.org |
| CVE-2026-31423 | coverage & exploitation status | NVD · CVE.org |
| CVE-2026-31424 | coverage & exploitation status | NVD · CVE.org |
| CVE-2026-31425 | coverage & exploitation status | NVD · CVE.org |
| CVE-2026-31426 | coverage & exploitation status | NVD · CVE.org |
| CVE-2026-31427 | coverage & exploitation status | NVD · CVE.org |
| CVE-2026-31428 | coverage & exploitation status | NVD · CVE.org |
Same CVEs, other sources
How other CERTs, PSIRTs and databases cover the vulnerabilities in this advisory.
- unknownexploitedUSN-8528-1: Linux kernel (Xilinx ZynqMP) vulnerabilitiesubuntu
- unknownUSN-8527-1: Linux kernel (Raspberry Pi) vulnerabilitiesubuntu
- unknownUSN-8492-5: Linux kernel (FIPS) vulnerabilitiesubuntu
- unknownUSN-8492-4: Linux kernel (Raspberry Pi) vulnerabilitiesubuntu
- unknownUSN-8490-2: Linux kernel (Raspberry Pi) vulnerabilitiesubuntu
- unknownDebian Linux Kernel Multiple Vulnerabilitieshkcert
- unknownDSA-6381-1 linux - security updatedebian
- unknownSUSE Linux Kernel Multiple Vulnerabilitieshkcert
- unknownDebian Linux Kernel Multiple Vulnerabilitieshkcert
- unknownMultiple vulnerabilities in the Debian Linux kernel (June 26, 2026)cert-fr-avis
- unknownMultiple vulnerabilities in the Red Hat Linux kernel (June 26, 2026)cert-fr-avis
- unknownMultiple vulnerabilities in the Ubuntu Linux kernel (June 26, 2026)cert-fr-avis
Recent advisories for Linux Kernel
A cluster of recent advisories against the same product widens the attack surface — attackers routinely chain freshly published CVEs on one product, so review these together.
- unknownCVE-2026-53363: In the Linux kernel, the following vulnerability has been resolved: xfrm: iptfs: preserve shar…nvd · 2026-07-10
- medium[UPDATE] [medium] Linux Kernel: Multiple vulnerabilities allow denial of servicecert-bund · 2026-07-10
- medium[UPDATE] [medium] Linux Kernel: Multiple vulnerabilities allow denial of servicecert-bund · 2026-07-10
- medium[UPDATE] [medium] Linux Kernel: Multiple vulnerabilities allow unspecified attackcert-bund · 2026-07-10
- high[UPDATE] [high] Linux Kernel: Multiple vulnerabilitiescert-bund · 2026-07-10
- high[UPDATE] [high] Linux Kernel: Multiple vulnerabilitiescert-bund · 2026-07-10
More from CERT-Bund (BSI) Security Advisories
- medium[NEW] [medium] DENX U-Boot: Multiple vulnerabilities allow execution of arbitrary code and DoS2026-07-10
- medium[NEW] [medium] Samsung Android: Multiple vulnerabilities2026-07-10
- medium[UPDATE] [medium] Linux Kernel: Multiple vulnerabilities allow denial of service2026-07-10
- medium[UPDATE] [medium] Linux Kernel: Multiple vulnerabilities allow unspecified attack2026-07-10
- medium[UPDATE] [medium] Linux Kernel: Multiple vulnerabilities allow denial of service2026-07-10