Page Cache Corruption Vulnerability in Linux Kernel - Vendor: Linux
CVE-2026-46331

7.8HIGH

Key Information:

Vendor

Linux

Status
Vendor
CVE Published:
16 June 2026

Badges

🥇 Trended No. 1📈 Trended📈 Score: 17,600👾 Exploit Exists🟡 Public PoC📰 News Worthy

What is CVE-2026-46331?

CVE-2026-46331 is a vulnerability identified in the Linux kernel, a critical component that serves as the core interface between a computer's hardware and its processes. The Linux kernel is used widely across various systems, from servers to personal devices, making it integral to many organizations' operations. This specific vulnerability pertains to the handling of page cache, which is responsible for optimizing the efficiency of data access in memory. When exploited, CVE-2026-46331 can lead to page cache corruption, potentially compromising system stability and data integrity. The flaw arises from an issue with the key processing loop within the kernel's networking code, which fails to accurately account for certain runtime header offsets, leaving parts of the writable region unprotected. If an attacker successfully exploits this vulnerability, they could disrupt the normal functioning of the kernel, resulting in significant operational challenges for affected organizations.

Potential impact of CVE-2026-46331

  1. System Instability: Exploitation of this vulnerability can lead to unpredictable behavior within the operating system, including crashes and performance degradation, impacting critical services and tasks.

  2. Data Integrity Issues: The corruption of page cache may result in loss or alteration of data stored in memory, which could affect applications relying on accurate data retrieval, leading to erroneous operations and potential data breaches.

  3. Increased Attack Surface: The existence of this vulnerability could allow threat actors to craft more sophisticated attacks, potentially facilitating further exploitation of the system and the introduction of additional malicious activities.

Affected Version(s)

Linux abe35bf3be51482593076d516a680d79e5fbc8e1 < 544d857b42a1734b923040e13aa61a6fd4746cf2

Linux b773640d5bb9e2acfd91e2695717af04d47aa116

Linux 8b796475fd7882663a870456466a4fb315cc1bd6

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

News Articles

New Linux pedit COW Exploit Enables Root Access by Poisoning Cached Binaries

Swati KhandelwalJun 26, 2026Linux / Vulnerability

2 weeks ago

New Linux pedit COW Exploit Enables Root Access by Poisoning Cached Binaries

CVE-2026-46331 lets local users gain root on affected Linux systems by corrupting page-cache memory through act_pedit.

2 weeks ago

References

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • 🥇

    Vulnerability reached the number 1 worldwide trending spot

  • 📈

    Vulnerability started trending

  • 📰

    First article discovered by The Hacker News

  • 🟡

    Public PoC available

  • 👾

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

.