CVE Catalog

CVE-2026-46198

HighCVSS 8.8
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.03%

9th percentile - higher than 9% of all known CVEs

Summary

A vulnerability related to integer overflow in the batman-adv module has been fixed in the Linux kernel. The issue concerns the batadv_iv_ogm_send_to_if function, where the size check was performed using the int type, while the buff_pos variable uses the s16 type, potentially leading to an out-of-bounds read.

Risk Assessment

This vulnerability could lead to unauthorized memory access, posing a risk to system and data integrity. Organizations should be aware of potential attacks exploiting this flaw.

Recommendation

It is recommended to update the Linux kernel to the latest version to eliminate this vulnerability. Additionally, systems should be monitored for unauthorized activities.

Original NVD description (English source)

In the Linux kernel, the following vulnerability has been resolved: batman-adv: fix integer overflow on buff_pos Fixing an integer overflow present in batadv_iv_ogm_send_to_if. The size check is done using the int type in batadv_iv_ogm_aggr_packet whereas the buff_pos variable uses the s16 type. This could lead to an out-of-bound read.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS