CVE-2026-45253

Published: Mag 21, 2026 Last Modified: Mag 21, 2026

ExploitDB:

Other exploit source:

Google Dorks:

Description

AI Translation Available

ptrace(PT_SC_REMOTE) failed to properly validate parameters for the syscall(2) and __syscall(2) meta-system calls. As a result, a user with the ability to debug a process may trigger arbitrary code execution in the kernel, even if the target process has no special privileges.

The missing validation allows an unprivileged local user to escalate privileges, potentially gaining full control of the affected system.

787

Out-of-bounds Write

Draft

Abstraction: Base Structure: Simple

Common Consequences

Security Scopes Affected:

Integrity Availability Other

Potential Impacts:

Modify Memory Execute Unauthorized Code Or Commands Dos: Crash, Exit, Or Restart Unexpected State

Applicable Platforms

Languages: Memory-Unsafe, C, C++, Assembly

Technologies: ICS/OT

Likelihood of Exploit: High

View CWE Details

https://security.freebsd.org/advisories/FreeBSD-SA-26:21.pt…

https://security.freebsd.org/advisories/FreeBSD-SA-26:21.ptrace.asc

CVE-2026-45253

Description

Out-of-bounds Write

Common Consequences

Applicable Platforms

Iscriviti alla newsletter