CVE-2026-41051

Published: Mag 13, 2026 Last Modified: Mag 13, 2026

ExploitDB:

Other exploit source:

Google Dorks:

MEDIUM 5,1

Source: [email protected]

Attack Vector: local

Attack Complexity: low

Privileges Required: low

User Interaction: passive

Confidentiality: N/A

Integrity: N/A

Availability: N/A

MEDIUM 5,0

Source: [email protected]

Attack Vector: local

Attack Complexity: low

Privileges Required: low

User Interaction: required

Scope: unchanged

Confidentiality: none

Integrity: none

Availability: high

Description

AI Translation Available

csync2 uses insecure temporary directories when compiled with C99 or later, allowing for TOCTOU style attacks on the temporary directories.

https://bugzilla.suse.com/show_bug.cgi?id=CVE-2026-41051

https://bugzilla.suse.com/show_bug.cgi?id=CVE-2026-41051