CISA adds Linux kernel vulnerability CVE-2026-31431 to Known Exploited Vulnerabilities catalog

CISA added CVE-2026-31431, a Linux Kernel Incorrect Resource Transfer Between Spheres vulnerability, to its Known Exploited Vulnerabilities catalog on May 1, 2026, giving federal agencies until May 15, 2026 to remediate. The vulnerability involves improper handling of resource transfers between security spheres in the kernel, potentially allowing privilege escalation or access bypass. Under Binding Operational Directive BOD 22-01, Federal Civilian Executive Branch agencies are required to remediate KEV-listed vulnerabilities by their assigned due dates. The Linux kernel flaw affects all Linux-based systems, making it a high-priority patch for both government and enterprise environments. The CVE was modified on May 2, 2026 at 7:16 PM UTC.