CVE Catalog

CVE-2026-46236

MediumCVSS 5.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.01%

2th percentile - higher than 2% of all known CVEs

Summary

A vulnerability related to the Xbox Remote controller has been resolved in the Linux kernel, concerning the violation of DMA coherency rules. The buffer for IO must not be part of the device structure, which could lead to data integrity issues.

Risk Assessment

Violation of DMA coherency rules may lead to unpredictable system behavior and potential security vulnerabilities, jeopardizing data integrity within the organization.

Recommendation

It is recommended to update the Linux kernel to the latest version to eliminate this vulnerability and ensure compliance with DMA coherency rules.

Original NVD description (English source)

In the Linux kernel, the following vulnerability has been resolved: media: rc: xbox_remote: heed DMA restrictions The buffer for IO must not be part of the device structure because that violates the DMA coherency rules.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS