CVE-2026-23364

ksmbd: Compare MACs in constant time

Severity Score

7.4

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

In the Linux kernel, the following vulnerability has been resolved: ksmbd: Compare MACs in constant time To prevent timing attacks, MAC comparisons need to be constant-time.
Replace the memcmp() with the correct function, crypto_memneq().

*Credits: N/A

CVSS Scores

kernel.orgv3.1 7.4

Attack Vector

Network

Attack Complexity

High

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

None

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2026-01-13 CVE Reserved
2026-03-25 CVE Published
2026-05-03 EPSS Updated
2026-05-11 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (7)

URL	Tag	Source
https://git.kernel.org/stable/c/e2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9	Vuln. Introduced

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/cd52a0e309659537048a864211abc3ea4c5caa63	2026-03-25
https://git.kernel.org/stable/c/307afccb751f542246bd5dc68a2c1ffe1a78418c	2026-03-25
https://git.kernel.org/stable/c/2cdc56ed67615ba0921383a688f24415ebe065f3	2026-03-25
https://git.kernel.org/stable/c/93c0a22fec914ec4b697e464895a0f594e29fb28	2026-03-19
https://git.kernel.org/stable/c/f4588b85efd6007d46b80aa1b9fb746628ffb3dc	2026-03-12
https://git.kernel.org/stable/c/c5794709bc9105935dbedef8b9cf9c06f2b559fa	2026-02-23

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.15 < 6.1.167 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.15 < 6.1.167"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.15 < 6.6.130 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.15 < 6.6.130"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.15 < 6.12.78 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.15 < 6.12.78"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.15 < 6.18.19 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.15 < 6.18.19"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.15 < 6.19.7 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.15 < 6.19.7"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.15 < 7.0 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.15 < 7.0"		en		Affected