CVE Catalog

CVE-2026-46108

MediumCVSS 5.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.12%

2th percentile - higher than 2% of all known CVEs

Summary

In the Linux kernel, the IPMI SI driver has a vulnerability where a message allocation failure can leave the driver in an incorrect state. In such cases, the driver does not return to normal operation, potentially causing issues with hardware management.

Risk Assessment

The risk involves potential disruption of infrastructure management systems (IPMI), which could prevent remote monitoring and control of servers, increasing the risk of failures or attacks.

Recommendation

It is recommended to immediately update the Linux kernel to a version containing the fix for CVE-2026-46108. Monitor official security advisories from your Linux distribution.

Original NVD description (English source)

In the Linux kernel, the following vulnerability has been resolved: ipmi:si: Return state to normal if message allocation fails There were places where nothing would get started if a message allocation failed, so the driver needs to return to normal state.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS