CVE-2026-40227

EUVD-2026-21402
In systemd 260 before 261, a local unprivileged user can trigger an assert via an IPC API call with an array or map that has a null element.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
mitreCNA
6.2 MEDIUM
LOCAL
LOW
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
VendorProductVersionSource
systemd_projectsystemd
260 ≤
𝑥
< 261
CNA
Debian logo
Debian Releases
Debian Product
Codename
systemd
bookworm
252.39-1~deb12u1
fixed
bookworm (security)
252.38-1~deb12u1
fixed
bullseye
247.3-7+deb11u5
fixed
bullseye (security)
247.3-7+deb11u7
fixed
forky
260.1-1
fixed
sid
260.1-1
fixed
trixie
257.9-1~deb13u1
fixed
Common Weakness Enumeration
References
https://github.com/systemd/systemd/security/advisories/GHSA-848h-497j-8vjq