MITRE ATT&CK Mapping

SC Media Vulnerability Disclosure VMware Broadcom 17h ago

Broadcom patches high-severity VMware Fusion flaw allowing local privilege escalation

The vulnerability is a time-of-check time-of-use (TOCTOU) flaw affecting operations performed by a SETUID binary.

T1548 T1068

SC Media →

Tenable Blog CVE Linux 21h ago

Fragnesia (CVE-2026-46300): Frequently asked questions about new Linux Kernel XFRM ESP-in-TCP privilege escalation

A new Linux kernel local privilege escalation exploit with a public proof-of-concept targets the same subsystem as Dirty Frag but requires a separate patch. ...

T1548 T1068 1 IOC

Tenable Blog →

Help Net Security CVE Linux 1d ago

Fragnesia: New Linux kernel LPE bug was spawned by Dirty Frag patch (CVE-2026-46300)

Researchers have found and disclosed yet another local privilege escalation (LPE) vulnerability in the Linux kernel: CVE-2026-46300, aka “Fragnesia”. The fla...

T1548 T1068 2 IOCs

Help Net Security →

The Hacker News CVE Linux 1d ago

New Fragnesia Linux Kernel LPE Grants Root Access via Page Cache Corruption

Details have emerged about a new variant of the recent Dirty Frag Linux local privilege escalation (LPE) vulnerability that allows local attackers to gain ro...

T1548 T1068 1 IOC

The Hacker News →

GBHackers Vulnerability Disclosure Linux 1d ago

PoC Exploit Released for Fragnesia Linux Flaw Enabling Root Access

A newly discovered Linux local privilege escalation vulnerability, dubbed “Fragnesia,” is sending shockwaves through the cybersecurity community. This critic...

T1548 T1068

GBHackers →

Schneier on Security Vulnerability Disclosure Amazon Red Hat Linux 3d ago

Copy.Fail Linux Vulnerability

This is the worst Linux vulnerability in years. TL;DR copy.

T1548 T1068

Schneier on Security →

Zero Day Initiative CVE Microsoft 3d ago

ZDI-26-310: Microsoft Windows splwow64 Race Condition Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to...

T1548 T1068 1 IOC

Zero Day Initiative →

Zero Day Initiative CVE Microsoft 3d ago

ZDI-26-309: Microsoft Windows Message Queueing Double Free Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows that run Message Queueing. An attacker must f...

T1548 T1068 1 IOC

Zero Day Initiative →

Qualys Blog CVE Linux 6d ago

Dirty Frag: Using the Page Caches as an Attack Surface

Dirty Frag is a Linux local privilege escalation (LPE) chain published on May 7, 2026. It combines two previously unknown kernel vulnerabilities can allow an...

T1548 T1068 2 IOCs

Qualys Blog →

Microsoft Security Blog Vulnerability Disclosure Microsoft Linux Docker May 8

Active attack: Dirty Frag Linux vulnerability expands post-compromise risk

Dirty Frag is a newly disclosed Linux local privilege escalation vulnerability affecting kernel networking and memory-fragment handling components including ...

T1190 T1548 T1068

Microsoft Security Blog →

Tenable Blog CVE Linux May 8

Dirty Frag (CVE-2026-43284, CVE-2026-43500): Frequently asked questions about this Linux kernel privilege escalation vulnerability chain

Weeks after the Copy Fail vulnerability was revealed, a new Linux kernel escalation vulnerability has been uncovered. Dubbed “Dirty Frag,” this flaw could al...

T1548 T1068 2 IOCs

Tenable Blog →

Help Net Security CVE Amazon Linux May 8

Dirty Frag: Unpatched Linux vulnerability delivers root access

A week after Copy Fail, another Linux local privilege escalation vulnerability dubbed “Dirty Frag” has been revealed, along with a PoC exploit. What is Dirty...

T1548 T1068 2 IOCs

Help Net Security →

SANS ISC CVE Linux May 8

Another Universal Linux Local Privilege Escalation (LPE) Vulnerability: Dirty Frag, (Fri, May 8th)

Less than two weeks after the public disclosure of the Copy Fail vulnerability (CVE-2026-31431), another local privilege escalation (LPE) vulnerability in th...

T1548 T1068 1 IOC

SANS ISC →

GBHackers Vulnerability Disclosure Linux May 8

PoC Exploit Released for Dirty Frag Linux Kernel Vulnerability

A proof-of-concept exploit for a new Linux kernel vulnerability class dubbed “Dirty Frag”. This universal local privilege escalation vulnerability allows att...

T1548 T1068 T1598

GBHackers →

The Hacker News CVE Linux May 8

Linux Kernel Dirty Frag LPE Exploit Enables Root Access Across Major Distributions

Details have emerged about a new, unpatched local privilege escalation (LPE) vulnerability impacting the Linux kernel. Dubbed Dirty Frag, it has been describ...

T1548 T1068 1 IOC

The Hacker News →

Exploit Database Vulnerability Disclosure Linux May 4

[local] Linux Kernel proc_readdir_de() 6.18-rc5 - Local Privilege Escalation

Linux Kernel proc_readdir_de() 6.

T1548 T1068

Exploit Database →

Exploit Database Vulnerability Disclosure Linux May 4

[local] Linux nf_tables 6.19.3 - Local Privilege Escalation

Linux nf_tables 6.19.

T1548 T1068

Exploit Database →

Exploit Database Vulnerability Disclosure Microsoft May 4

[local] Windows 11 24H2 - Local Privilege Escalation

Windows 11 24H2 - Local Privilege Escalation

T1548 T1068

Exploit Database →

The Hacker News CVE Linux May 3

CISA Adds Actively Exploited Linux Root Access Bug CVE-2026-31431 to KEV

The U.S.

T1548 T1068 1 IOC

The Hacker News →

Tenable Blog CVE Linux Apr 30

Copy Fail (CVE-2026-31431): Frequently asked questions about Linux kernel privilege escalation vulnerability

A flaw in the Linux kernel present since 2017 allows a local user to gain root access on virtually every major Linux distribution. A public exploit is availa...

T1548 T1068 1 IOC

Tenable Blog →