Apr 22, 2026·CISA · KEV updateActiveHigh impact
CISA adds Linux kernel netfilter use-after-free to KEV (CVE-2026-0511)
A use-after-free in Linux kernel netfilter (CVE-2026-0511) was added to the Known Exploited Vulnerabilities catalog, affecting many embedded Linux device platforms.
What changed
- KEV listing triggers federal remediation timelines and shifts hospital/payer expectations.
- Many embedded medical device platforms ship affected kernel versions.
Action for manufacturers
Query your SBOM for kernel versions, publish a VEX (affected / not_affected / fixed / under_investigation), and stage a patch or compensating controls.