ByteOS Network

CVE Vulnerability Details :

CVE-2026-3006

PUBLISHED

More Info Official Page

Assigner-CSA

Assigner Org ID-5f57b9bf-260d-4433-bf07-b6a79e9bb7d4

Published At-27 Apr, 2026 | 02:35

Updated At-27 Apr, 2026 | 13:30

▼CVE Numbering Authority (CNA)

Race Condition Vulnerability

Successful exploitation of the race condition vulnerability could allow an attacker to trigger a kernel heap overflow, potentially leading to local privilege escalation and granting system-level access to the affected software.

Affected Products

Vendor

WinFSP

Product

WinFSP

Default Status

unaffected

Versions

Affected

2.1.25156 and lower

Metrics

Version	Base score	Base severity	Vector
3.1	7.0	HIGH	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Version: 3.1

Base score: 7.0

Base severity: HIGH

Vector:

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Solutions

Users and administrators of affected product versions are advised to update to the latest version immediately.

Credits

finder

Tay Kiat Loong

References

Hyperlink	Resource
https://www.csa.gov.sg/alerts-and-advisories/alerts/al-2026-043	N/A
https://github.com/winfsp/winfsp/releases/tag/v2.2B1	N/A

Hyperlink: https://www.csa.gov.sg/alerts-and-advisories/alerts/al-2026-043

Resource: N/A

Hyperlink: https://github.com/winfsp/winfsp/releases/tag/v2.2B1

Resource: N/A

▼Authorized Data Publishers (ADP)

CISA ADP Vulnrichment

Problem Types

Type	CWE ID	Description
CWE	CWE-362	CWE-362 Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Type: CWE

CWE ID: CWE-362

Description: CWE-362 Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Affected Products

Affected

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Problem Types

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References