CVE-2026-43024 · threatengine.sh

Home/CVE/In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: reject immediate NF_QUEUE ver

CVE

CVE-2026-43024

In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: reject immediate NF_QUEUE ver

In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: reject immediate NF_QUEUE verdict nft_queue is always used from userspace nftables to deliver the NF_QUEUE verdict. Immediately emitting an NF_QUEUE verdict is never used by the userspace nft tools, so reject immediate NF_QUEUE verdicts. The arp family does not provide queue support, but such an immediate verdict is still reachable.

Globally reject NF_QUEUE immediate verdicts to address this issue.

MEDIUM · CVSS 5.5 EPSS 0.00015

Monitor

No active-exploitation, high-EPSS, or public-exploit signals - routine patching cadence

Sigma rules0 YARA rules0

▤

Affected Products & Versions

11

linux kernel>= 4.19.307 and < 4.20
linux kernel>= 5.4.269 and < 5.5
linux kernel>= 5.10.210 and < 5.10.253
linux kernel>= 5.15.149 and < 5.15.203
linux kernel>= 6.1.76 and < 6.1.168
linux kernel>= 6.6.15 and < 6.6.134
linux kernel>= 6.7.3 and < 6.8
linux kernel>= 6.8.1 and < 6.12.81
Show all 11 affected productslinux kernel>= 6.13 and < 6.18.22
linux kernel>= 6.19 and < 6.19.12
linux kernelall versions

▣

Scoring & Timeline

5.5

MEDIUM · CVSS v3.1 · 416baaa9-dc9f-4396-8d5f-8c081fb06d67

View on NVD

Attack Vector

Network Adjacent Local Physical

Attack Complexity

Low High

Privileges Required

None Low High

User Interaction

None Required

Scope

Unchanged Changed

Confidentiality

None Low High

Integrity

None Low High

Availability

None Low High

Published to NVD01 May 2026 · 03:16 PM

CVSS VectorCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

🔗

References & Sources

8

Source URLs (vendor pages, mailing lists, write-ups). Exploit/PoC links are in their own section above to avoid duplication.

https://git.kernel.org/stable/c/17dc5d5a935c771338430cbc156a16a51cfd31e8Patch

https://git.kernel.org/stable/c/2f7f825a548be55420f0f5f716f6c27b9d312d3fPatch

https://git.kernel.org/stable/c/42a47f4b1b7695026ab9bc1bb35d4622b0835c95Patch

https://git.kernel.org/stable/c/4b12a3cc3f075e750cc3c5e693fd25fb400af4a2Patch

https://git.kernel.org/stable/c/68390437a998c3f2c57212b413abef5e6d657d88Patch

https://git.kernel.org/stable/c/da107398cbd4bbdb6bffecb2ce86d5c9384f4cecPatch

Show all 8 references

https://git.kernel.org/stable/c/f140593901724cfbd16597c3a4fcb24a58ae44b0Patch

https://git.kernel.org/stable/c/f710691be163ae6b39e4bcab9e5be32d329f035bPatch

Intelligence Graph · click any node to traverse

CVETechnique ActorTool Family

drag to reposition · click any node to traverse · button top-right enlarges

External lookups - second-class, for what we don’t hold ourselves

NVD CVE.org CISA Vulners Exploit-DB GitHub PoC VulnCheck KEV GreyNoise

Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities

Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs

Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures

Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1

About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service

threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin