VMTech
+381 11 4150 20024/7 Discuss a project
← All Instagram insights VMTECH · INSTAGRAM

CVE-2026-23111: nf_tables bug grants local root and container breakout

CVE-2026-23111: баг в nf_tables даёт локальный root и выход из контейнера

Colleagues — alert: a working exploit for CVE-2026-23111 (nf_tables use-after-free) is public, enabling local privilege escalation to root and container escape.

Summary:
- Cause: inverted check in nf_tables; upstream fix released 5 Feb 2026.
- Public exploits: FuzzingLabs (April), Exodus (8 June).
- Trigger: nf_tables combined with unprivileged user namespaces; no remote vector.
- Risk: compromised container/service can obtain host root.

Action: update the kernel, reboot, and, where possible, restrict unprivileged user namespaces.

How will you respond to this LPE wave?

#cybersecurity #Linux #vulnerabilities #containers

Latest comments

No comments yet.