CIFSwitch - CVE-2026-46243

Just released an open-source bash checker for CIFSwitch (CVE-2026-46243) — the 19-year-old Linux...

mercoledì 3 giugno 2026 New tab

126 words~1 min read

Just released an open-source bash checker for CIFSwitch (CVE-2026-46243) — the 19-year-old Linux kernel LPE disclosed last week that lets any unprivileged local user get root by abusing the CIFS/SPNEGO upcall path.

The script runs on bare-metal, VMs, and inside containers, and is CI/CD-friendly with JSON output and clean exit codes.

It checks:

Outputs human-readable or JSON for SIEM ingestion. Exit 0 = safe, exit 1 = action needed — drop it straight into a pipeline.

CIFSwitch is the fourth Linux LPE in under six weeks (after Copy Fail, Dirty Frag, and Fragnesia). If you're running multi-tenant Linux, CI runners, or container build farms, now is a good time to audit.

CIFSwitch - CVE-2026-46243

CIFSwitch - CVE-2026-46243

Other newsrooms on this story

Related reading

New CIFSwitch Linux flaw gives root on multiple distributions

19-Year-Old Linux Kernel Vulnerability Exposes Systems to Root Access

CIFSwitch, la falla rimasta nascosta 19 anni che porta a root Linux

'Dirty Frag' Linux flaw one-ups CopyFail with no patches and public root exploit

Autonomous AI Tool Finds 2-Year-Old RCE Flaw in Redis (CVE-2026-23479)

Linux cryptographic code flaw offers fast route to root

Related reading

New CIFSwitch Linux flaw gives root on multiple distributions

19-Year-Old Linux Kernel Vulnerability Exposes Systems to Root Access

CIFSwitch, la falla rimasta nascosta 19 anni che porta a root Linux

'Dirty Frag' Linux flaw one-ups CopyFail with no patches and public root exploit

Autonomous AI Tool Finds 2-Year-Old RCE Flaw in Redis (CVE-2026-23479)

Linux cryptographic code flaw offers fast route to root

Other newsrooms on this story