CVE-2026-46108
MediumCVSS 5.5Exploitation Probability (EPSS)
Low risk2th percentile - higher than 2% of all known CVEs
Summary
In the Linux kernel, the IPMI SI driver has a vulnerability where a message allocation failure can leave the driver in an incorrect state. In such cases, the driver does not return to normal operation, potentially causing issues with hardware management.
Risk Assessment
The risk involves potential disruption of infrastructure management systems (IPMI), which could prevent remote monitoring and control of servers, increasing the risk of failures or attacks.
Recommendation
It is recommended to immediately update the Linux kernel to a version containing the fix for CVE-2026-46108. Monitor official security advisories from your Linux distribution.
Original NVD description (English source)
In the Linux kernel, the following vulnerability has been resolved: ipmi:si: Return state to normal if message allocation fails There were places where nothing would get started if a message allocation failed, so the driver needs to return to normal state.

