CVE-2026-46150
HIGH
Published May 28, 2026
Modified Jun 1, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: fanotify: fix false positive on permission events fsnotify_get_mark_safe() may return false for a mark on an unrelated group, which results in bypassing the permission check. Fix by skipping over detached marks that are not in the current group.
CVSS v3.1 Score
7.1
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
EPSS — Exploit Prediction
0.0014
Probability of exploitation
0.04%
Percentile rank
EPSS estimates the probability that this vulnerability will be exploited in the wild within the next 30 days. A higher score means more likely to be exploited.
References
Other References
https://git.kernel.org/stable/c/04bb66be92f48ed13c3faf1139d892df228789bc
https://git.kernel.org/stable/c/4a7611ad653785fcdea5ff5f4441e2b7d05b7f11
https://git.kernel.org/stable/c/7746e3bd4cc19b5092e00d32d676e329bfcb6900
https://git.kernel.org/stable/c/7baa02b0ae9d17ec5f08836d8ea88ce1927d0678
https://git.kernel.org/stable/c/895ebbedf88318607c24acc0f591c74b165e1d0a
https://git.kernel.org/stable/c/a24765332e129c1916d5a6615418b75599b8fcdc
https://git.kernel.org/stable/c/b7b24b28c8cd55844cab908f4f39dded638d5538
https://git.kernel.org/stable/c/f130790f1acc8399f32652846c875a251efd040f
Frequently Asked Questions
What is CVE-2026-46150? +
In the Linux kernel, the following vulnerability has been resolved:
fanotify: fix false positive on permission events
fsnotify_get_mark_safe() may return false for a mark on an unrelated group,
which results in bypassing the permission check.
Fix by skipping over detached marks that are not in the current group. It has a CVSS v3.1 base score of 7.1 (HIGH).
How severe is CVE-2026-46150? +
CVE-2026-46150 has a CVSS v3.1 score of 7.1 out of 10, rated HIGH. This is a high-severity vulnerability that should be prioritized for patching. The EPSS score is 0.0014, placing it in the 0th percentile for exploitation probability.
How do I check if I'm vulnerable to CVE-2026-46150? +
You can use Secably's free Website Scanner to check your website for known vulnerabilities. For infrastructure scanning, use the Port Scanner to identify exposed services that may be affected. Check the vendor advisories linked above for specific patch and version information.