CVE-2026-21991

Summary

A DTrace component, dtprobed, allows arbitrary file creation through crafted USDT provider names.

Affected Software

VendorProductVersion RangeStatus
Oracle CorporationOracle Linux8affected
Oracle CorporationOracle Linux9affected
Oracle CorporationOracle Linux10affected

Weaknesses

  • A DTrace component, dtprobed, allows arbitrary file creation through crafted USDT provider names.

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References