Kernel Vulnerability
The latest Kernel Vulnerability coverage — news, analysis, and updates from the WindowsNews.AI desk.
CVE-2026-46186: Virtio Bluetooth Header-Length Flaw Exposes Windows Guests to Attacks
The Linux kernel project disclosed a critical vulnerability on May 28, 2026, tracked as CVE-2026-46186, in the virtio Bluetooth driver. The flaw, stemming from improper header-length validation in...
Linux Kernel Patch for CVE-2026-46101 Fixes Zero-Bit Shift in nftables After Undefined Behavior Risk
A newly published Linux kernel vulnerability exposes a dangerous oversight in nftables bitwise operations where a zero-bit shift could trigger undefined behavior inside the network packet filtering...
AMD Linux Display Driver Flaw (CVE-2026-43305) Patched After Causing System Hangs
A newly disclosed vulnerability in the Linux kernel’s AMD display driver can freeze or hang systems, prompting a swift patch release and an unusual spotlight in Microsoft’s May 2026 Security...
CVE-2026-31591: Linux KVM Race Condition Can Crash Servers Running AMD SEV-SNP Confidential VMs
A newly documented Linux kernel flaw (CVE-2026-31591) can crash physical servers that host AMD’s most secure confidential virtual machines. The bug sits in KVM’s handling of AMD Secure Encrypted...
CVE-2026-25179: Critical Windows AFD.sys Local Privilege Escalation Vulnerability Patched
Microsoft has patched a critical local privilege escalation vulnerability in the Windows Ancillary Function Driver for WinSock (AFD.sys) tracked as CVE-2026-25179. This kernel-level flaw allows...
CVE-2026-25176: Critical AFD.sys Kernel Vulnerability Threatens Windows Systems
Microsoft has confirmed a high-severity elevation-of-privilege vulnerability in the Windows Ancillary Function Driver for WinSock (AFD.sys) tracked as CVE-2026-25176. This kernel-level improper...
CVE-2026-25175: Critical Windows NTFS Privilege Escalation Vulnerability Discovered
Microsoft has documented a new elevation-of-privilege vulnerability in the Windows NTFS file system driver, designated CVE-2026-25175. The security flaw involves an out-of-bounds read in the NTFS...
Microsoft Patches Critical BFS Driver Vulnerability CVE-2026-25167: Local Privilege Escalation Risk
Microsoft has disclosed CVE-2026-25167, a high-severity use-after-free vulnerability in the Microsoft Brokering File System (BFS) driver that enables local privilege escalation. The flaw, rated 7.8...
Microsoft Patches Critical Windows Kernel Elevation Vulnerability CVE-2026-24289 in March 2026 Update
Microsoft's March 2026 Patch Tuesday addressed a significant Windows kernel elevation-of-privilege vulnerability tracked as CVE-2026-24289. The company rated this security flaw as Important,...
CVE-2026-24283: Windows Multiple UNC Provider Kernel EoP Vulnerability Analysis
Microsoft has publicly disclosed CVE-2026-24283, a new elevation-of-privilege vulnerability in the Windows Multiple UNC Provider kernel component. The company classifies this as a kernel-mode...
Windows Bluetooth RFCOMM Driver Race Condition Exposes Kernel to Privilege Escalation Attacks
Microsoft has disclosed a critical kernel-level vulnerability in the Windows Bluetooth RFCOMM Protocol Driver that enables local privilege escalation attacks. CVE-2026-23671 represents a race...
Android Kernel Vulnerability CVE-2026-0038: Local Privilege Escalation Threat Analysis
A newly disclosed Android kernel vulnerability designated CVE-2026-0038 represents a significant security threat that could allow local attackers to gain complete system control through a logic error...