CVE-2026-53086
CRITICAL
Published Jun 24, 2026
Modified Jun 28, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: net: bcmgenet: fix racing timeout handler The bcmgenet_timeout handler tries to take down all tx queues when a single queue times out. This is over zealous and causes many race conditions with queues that are still chugging along. Instead lets only restart the timed out queue.
CVSS v3.1 Score
9.8
CRITICAL
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS — Exploit Prediction
0.0039
Probability of exploitation
0.31%
Percentile rank
EPSS estimates the probability that this vulnerability will be exploited in the wild within the next 30 days. A higher score means more likely to be exploited.
References
Other References
https://git.kernel.org/stable/c/5393b2b5bee2ac51a0043dc7f4ac3475f053d08d
https://git.kernel.org/stable/c/681fdfe823b4f1036ed50b58b8838c7917ea389c
https://git.kernel.org/stable/c/7ce1c26aac3b318886a57425f64b522da7389153
https://git.kernel.org/stable/c/c270e2bec3e55a716d25c35341091339457ac883
https://git.kernel.org/stable/c/e8206538cbaf4f4068e99a4cb1138690a1e00499
https://git.kernel.org/stable/c/e85b0c0a12e967930044608311471b665baa315c
Frequently Asked Questions
What is CVE-2026-53086? +
In the Linux kernel, the following vulnerability has been resolved:
net: bcmgenet: fix racing timeout handler
The bcmgenet_timeout handler tries to take down all tx queues when
a single queue times out. This is over zealous and causes many race
conditions with queues that are still chugging along. Instead lets
only restart the timed out queue. It has a CVSS v3.1 base score of 9.8 (CRITICAL).
How severe is CVE-2026-53086? +
CVE-2026-53086 has a CVSS v3.1 score of 9.8 out of 10, rated CRITICAL. This is a critical vulnerability that should be patched immediately. The EPSS score is 0.0039, placing it in the 0th percentile for exploitation probability.
How do I check if I'm vulnerable to CVE-2026-53086? +
You can use Secably's free Website Scanner to check your website for known vulnerabilities. For infrastructure scanning, use the Port Scanner to identify exposed services that may be affected. Check the vendor advisories linked above for specific patch and version information.