{"uuid": "ba18a830-28e1-40e8-8285-b6033e6b02a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-43503", "type": "seen", "source": "https://threatintel.cc/2026/06/26/new-dirtyclone-linux-vulnerability-allows.html", "content": "New DirtyClone Linux Vulnerability Allows Attackers to Gain Root Access Via Cloned Packets\n\nThe DirtyClone vulnerability (CVE-2026-43503) is a high-severity Linux kernel flaw that allows unprivileged users to gain root access by manipulating cloned network packets within the XFRM/IPsec subsystem. Attackers exploit the improper handling of the SKBFL_SHARED_FRAG flag to modify cached system files without leaving detectable logs or audit trails.", "creation_timestamp": "2026-06-26T22:00:52.656266Z"}