CVE-2026-46142
MediumCVSS 5.5Exploitation Probability (EPSS)
Low risk7th percentile - higher than 7% of all known CVEs
Summary
A vulnerability related to illegal access to the WX_CFG_PORT_ST register by VF has been fixed in the Linux kernel. Attempting to read this register during VF initialization leads to a system hang.
Risk Assessment
System hangs can result in service downtime and potential data loss. Organizations should be aware of the risks associated with using VFs in their environments.
Recommendation
It is recommended to update the Linux kernel to the latest version to mitigate this vulnerability. Additionally, systems should be monitored for any abnormal behavior related to VFs.
Original NVD description (English source)
In the Linux kernel, the following vulnerability has been resolved: net: libwx: fix VF illegal register access Register WX_CFG_PORT_ST is a PF restricted register. When a VF is initialized, attempting to read this register triggers an illegal register access, which lead to a system hang. When the device is VF, the bus function ID can be obtained directly from the PCI_FUNC(pdev->devfn).

