What the vulnerability does

01Description

In slbc, there is a possible out of bounds write due to type confusion. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10828685; Issue ID: MSV-6504.

Key dates

02Disclosure timeline

May 4, 2026 CVE published
May 5, 2026 Record updated