CVE-2026-23125 | Linux Kernel up to 6.18.7 sctp_auth_asoc_init_active_key initialization

February 14, 2026 Yanac

A vulnerability described as critical has been identified in Linux Kernel up to 6.18.7. This issue affects the function sctp_auth_asoc_init_active_key. Such manipulation leads to improper initialization.

This vulnerability is traded as CVE-2026-23125. Access to the local network is required for this attack to succeed. There is no exploit available.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More