Linux Kernel cBPF Program Mitigation Vulnerability for Unprivileged Users

Vulnerability

A vulnerability in the Linux kernel's handling of cBPF programs has been addressed. Previously, support for eBPF programs loaded by unprivileged users was generally disabled, allowing only cBPF programs to be executed. This vulnerability specifically affected cBPF programs loaded by unprivileged users, as privileged users could load the same programs via eBPF, rendering the mitigation ineffective.

Impact

Exploitation of this vulnerability could lead to unauthorized execution of cBPF programs by unprivileged users, potentially allowing them to perform actions or access resources that should be restricted.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel cBPF Program Mitigation Vulnerability for Unprivileged Users

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating