CVE-2026-31431

CVE Database · CVE-2026-31431

CVE-2026-31431

· HIGHAnalyzed

CVSS v3.1

7.8

EPSS

94.02%

Published

Apr 22, 2026

Modified

May 21, 2026

CISA Known Exploited Vulnerability

Added: 2026-05-01 · Due: 2026-05-15

"Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Public PoC / Exploit (9)

All weaponized →

TrickestTrickest PoC index GitHub PoCtgies/copy-fail-c★425 GitHub PoCPercivalll/Copy-Fail-CVE-2026-31431-Kubernetes-PoC★168 GitHub PoCsgkdev/page_inject★64 GitHub PoCshadowabi/CVE-2026-31431-CopyFail-Universal-LPE★57 GitHub PoCcozystack/copy-fail-blocker★31 GitHub PoCliamromanis101/CVE-2026-31431-Copy-Fail---Vulnerability-Detection-Script★25 GitHub PoCdiemoeve/copyfail-rs★19 GitHub PoCSmarttfoxx/copyfail★18

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

In the Linux kernel, the following vulnerability has been resolved: crypto: algif_aead - Revert to operating out-of-place This mostly reverts commit 72548b093ee3 except for the copying of the associated data. There is no benefit in operating in-place in algif_aead since the source and destination come from different mappings. Get rid of all the complexity added for in-place operation and just copy the AD directly.

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Weaknesses (CWE)

CWE-669

Affected Products (182)

linux · linux_kernel (up to 5.10.254)vulnerable

linux · linux_kernel (up to 5.15.204)vulnerable

linux · linux_kernel (up to 6.1.170)vulnerable

linux · linux_kernel (up to 6.6.137)vulnerable

linux · linux_kernel (up to 6.12.85)vulnerable

linux · linux_kernel (up to 6.18.22)vulnerable

linux · linux_kernel (up to 6.19.12)vulnerable