VDB
CVE-2026-41054
CVE-2026-41054
PUBLISHED
CVSS 7.800000190734863 HIGH
In `src/havegecmd.c`, the `socket_handler` function performs a credential check on the abstract UNIX socket (`\0/sys/entropy/haveged`). However, while it detects if the connecting user is not root (`cred.uid != 0`) and prepares a negative acknowledgement (`ASCII_NAK`), it **fails to stop execution**. The code proceeds to the `switch` statement, allowing any local unprivileged user to execute privileged commands such as `MAGIC_CHROOT`.
EPSS 0.00% · 0.2th percentile
Risk Scores
CVSS v3.1
7.800000190734863
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
0.00%
0.2th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| SUSE | SUSE Linux Enterprise Server for SAP Applications 15 SP7 | ? |
| SUSE | Image SLES15-SP4-SAP-Hardened-GCE | ? |
| SUSE | Image SLES15-SP4-SAP-BYOS | ? |
| SUSE | SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS | ? |
| SUSE | SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS | ? |
| SUSE | Image SLES15-SP4-SAP-Hardened-BYOS | ? |
| SUSE | SUSE Linux Enterprise Server 15 SP4-LTSS | ? |
| SUSE | SUSE Linux Enterprise Module for Basesystem 15 SP7 | ? |
| SUSE | Image SLES15-SP4-SAP-BYOS-Azure | ? |
| SUSE | SUSE Manager Proxy LTS 4.3 | ? |
| SUSE | Image SLES15-SP4-SAP-Hardened-BYOS-GCE | ? |
| SUSE | Image SLES15-SP4-SAP-Hardened-BYOS-Azure | ? |
| SUSE | SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS | ? |
| SUSE | SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS | ? |
| SUSE | Image SLES15-SP4-SAP-BYOS-GCE | ? |
| SUSE | SUSE Manager Server LTS 4.3 | ? |
| SUSE | Image SLES15-SP4-SAP-BYOS-GCE | ? |
| SUSE | SUSE Linux Enterprise Module for Basesystem 15 SP7 | ? |
| SUSE | SUSE Linux Enterprise Server 15 SP5-LTSS | ? |
| SUSE | SUSE Linux Enterprise Server 15 SP6-LTSS | ? |
…and 66 more
Timeline
- May 19, 2026 PoC Published
- May 19, 2026 PoC Published
- May 20, 2026 EPSS Score
- May 20, 2026 PoC Published
- May 20, 2026 PoC Published
- May 20, 2026 PoC Published
- May 20, 2026 CVE Published
- May 20, 2026 PoC Published
- May 21, 2026 EPSS Score
- May 21, 2026 Coalition ESS Score
- May 21, 2026 Security Advisory
- May 22, 2026 EPSS Score
References
- https://bugzilla.suse.com/show_bug.cgi?id=CVE-2026-41054 url
- http://www.openwall.com/lists/oss-security/2026/05/19/3 url
- http://www.openwall.com/lists/oss-security/2026/05/19/4 url
- http://www.openwall.com/lists/oss-security/2026/05/19/5 url
- http://www.openwall.com/lists/oss-security/2026/05/20/1 url
- https://nvd.nist.gov/vuln/detail/CVE-2026-41054 advisory