logo

Critical Bad Epoll Vulnerability Grants Root Access to Unprivileged Users

ID: b500e417-5f69-594c-a34c-78538deba373

STIX ID: report--b500e417-5f69-594c-a34c-78538deba373

Feed Name: ThreatCluster

Threat Score
85/100

Date Published: 2026-07-04

Date Updated: 2026-07-05

...
...

Bad Epoll (CVE-2026-46242) is a critical use-after-free flaw in the Linux epoll subsystem affecting kernel version 6.4 and later that enables unprivileged local users to gain root privileges. A reliable exploit with a 99% success rate has been demonstrated; although a patch was released on 2026-04-24, many distributions have not yet backported it, leaving desktops, servers, cloud workloads, and Android devices at risk and requiring immediate mitigation.

Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.