CVE-2026-40225
published 2026-04-10CVE-2026-40225: In udev in systemd before 260, local root execution can occur via malicious hardware devices and unsanitized kernel output.
PriorityP429medium6.4CVSS 3.1
AVPACHPRNUINSUCHIHAH
EPSS
0.14%
4.1th percentile
In udev in systemd before 260, local root execution can occur via malicious hardware devices and unsanitized kernel output.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| systemd | systemd | < 260 | 260 |
| systemd_project | systemd | < 257.13 | 257.13 |
| systemd_project | systemd | >= 258 < 258.7 | 258.7 |
| systemd_project | systemd | >= 259 < 259.5 | 259.5 |
CVSS provenance
nvdv3.16.4MEDIUMCVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
vendor_redhat6.4MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-396h-m3pm-fpm5: In udev in systemd before 260, local root execution can occur via malicious hardware devices and unsanitized kernel output
ghsa_unreviewed·2026-04-10
CVE-2026-40225 [MEDIUM] CWE-669 GHSA-396h-m3pm-fpm5: In udev in systemd before 260, local root execution can occur via malicious hardware devices and unsanitized kernel output
In udev in systemd before 260, local root execution can occur via malicious hardware devices and unsanitized kernel output.
Red Hat
systemd: udev in systemd: Privilege escalation via malicious hardware devices and unsanitized kernel output
vendor_redhat·2026-04-10·CVSS 6.4
CVE-2026-40225 [MEDIUM] CWE-250 systemd: udev in systemd: Privilege escalation via malicious hardware devices and unsanitized kernel output
systemd: udev in systemd: Privilege escalation via malicious hardware devices and unsanitized kernel output
A flaw was found in udev in systemd. A local user with access to malicious hardware devices can exploit this vulnerability. By providing unsanitized kernel output, the flaw allows for local root execution, leading to privilege escalation.
Package: NetworkManager (Red Hat Enterprise Linux 10) - Not affected
Package: rpm-ostree (Red Hat Enterprise Linux 10) - Fix deferred
Package: systemd (Red Hat Enterprise Linux 10) - Not affected
Package: systemd (Red Hat Enterprise Linux 7) - Not affected
Package: NetworkManager (Red Hat Enterprise Linux 8) - Not affected
Package: systemd (Red Hat Enterprise Linux 8) - Not affected
Package: NetworkManager (Red Hat Enterprise Linux 9) - Not
No detection rules found.
No public exploits indexed.
2026-04-10
Published