CVE-2026-46174: Linux Kernel AMD Zen2 Op Cache Isolation Vulnerability (CVSS 8.8)
CVE-2026-46174 is a high-severity vulnerability in the Linux kernel that affects AMD Zen2 processors. The issue involves improper isolation of shared resources within the processor's op cache, which can allow instructions to become corrupted when resources are improperly shared between processes or virtual machines. An attacker with local access could potentially exploit this to gain unauthorized access, modify data, or disrupt system availability. This is a privilege escalation and isolation bypass issue that requires local code execution capability to trigger.
Source data · NVD / CISA · public domain
- CVSS
- 3.1 · 8.8 HIGH · CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
- Weaknesses (CWE)
- —
- Affected products
- 12 configuration(s)
- Published / Modified
- 2026-05-28 / 2026-06-17
NVD description (verbatim)
In the Linux kernel, the following vulnerability has been resolved: x86/CPU/AMD: Prevent improper isolation of shared resources in Zen2's op cache Make sure resources are not improperly shared in the op cache and cause instruction corruption this way.
8 reference(s) · View on NVD →
SEC.co analysis · AI-assisted, reviewed against source
Technical summary
The vulnerability resides in the x86 CPU initialization code for AMD Zen2 architecture. Specifically, the op cache—a hardware structure that stores decoded x86 instructions—fails to maintain proper resource isolation guarantees. When the kernel does not enforce adequate separation of cache lines or coherency domains between execution contexts, one process or guest VM can corrupt the instruction stream of another. The CVSS vector (CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H) indicates local attack surface, low attack complexity, low privilege requirements, and scope change—meaning a low-privileged local user can affect the confidentiality, integrity, and availability of system and other users' data. The resolution involves kernel-level fixes to enforce proper cache isolation during CPU initialization and runtime resource management.
Business impact
Organizations running services on AMD Zen2-based infrastructure face risk of data breach, system compromise, and availability loss. Multi-tenant environments—cloud providers, shared hosting, containerized deployments—are particularly vulnerable because a malicious tenant or container could corrupt instructions belonging to other workloads. Even single-tenant systems are at risk if an unprivileged local user account is compromised. The need for local code execution limits exposure somewhat, but the combination of low privilege requirements and scope change means privilege boundaries within a system become unreliable until patched. This can invalidate security models that depend on user-level isolation.
Affected systems
The vulnerability affects the Linux kernel across all versions that do not include the isolation fix for AMD Zen2's op cache resource handling. AMD Zen2 processors are used in EPYC server lineups (1st and 2nd generation), Ryzen 3000-series and 5000-series desktop/mobile processors, and related embedded SoCs. Any Linux system running on this hardware is potentially affected. The scope of the issue is tied to kernel version; consult the vendor advisory to identify the exact kernel versions that contain the fix and determine your environment's affected status.
Exploitability
Exploitation requires local code execution and low or no special privileges. An unprivileged user who can execute arbitrary code on the system (or a compromised application running under a standard user account) can trigger the cache isolation flaw. No network access is needed. The attack complexity is low, meaning the condition for exploitation (running code locally) is easy to achieve in multi-user systems, container orchestration platforms, or if an attacker gains initial shell access through a separate vulnerability. However, the issue is not known to be actively exploited in the wild as of this analysis, and no known exploit proof-of-concept is publicly available. Organizations should treat this as a high-priority issue to patch before attackers develop weaponized exploits.
Remediation
Apply the Linux kernel security update that resolves the op cache isolation issue. The fix involves kernel-level changes to the x86 CPU initialization and cache coherency management for Zen2 processors. Verify the patched kernel version against your Linux distribution's security advisory. After patching, reboot systems to activate the kernel fix. For environments where immediate rebooting is not feasible, consider temporary mitigations such as restricting local user access, disabling unprivileged container execution, or isolating multi-tenant workloads until maintenance windows allow kernel updates.
Patch guidance
Contact your Linux distribution vendor (Red Hat, Canonical, SUSE, Debian, etc.) for the patched kernel version specific to your release. Vendors typically backport security fixes to stable and long-term support kernels. Test the patched kernel in a non-production environment before deployment to ensure compatibility with your workloads and hardware. Verify that the kernel version includes the fix documented in the CVE advisory before considering the system remediated. Rebooting is mandatory to apply the kernel patch; schedule maintenance windows accordingly.
Detection guidance
Kernel-level detection of exploitation attempts is challenging because the vulnerability manifests as instruction corruption at the hardware level. Focus on preventive and configuration-based detection: (1) Audit and restrict local user and service account privileges; (2) Monitor for execution of unexpected binaries or scripts from unprivileged accounts; (3) Review container and VM isolation policies to ensure multi-tenancy boundaries are properly configured; (4) Track kernel version across all systems and flag those running vulnerable versions; (5) If available, use your hypervisor's guest isolation telemetry to detect anomalous cross-VM instruction corruption patterns. Behavioral anomalies such as sudden crashes, memory corruption, or privilege escalation by a low-privileged user should prompt investigation.
Why prioritize this
This vulnerability warrants immediate prioritization for three reasons: (1) HIGH CVSS score (8.8) reflecting broad impact on confidentiality, integrity, and availability; (2) Scope change (S:C) means an attacker can affect resources beyond the originally targeted security domain, breaking isolation assumptions; (3) Low privilege and attack complexity make exploitation feasible in common environments like shared hosting and Kubernetes clusters. AMD Zen2 is widely deployed in production infrastructure. Organizations should apply patches as soon as possible, prioritizing systems in multi-tenant environments, public-facing services, and systems handling sensitive data.
Risk score, explained
The CVSS 8.8 HIGH score reflects a local attack vector with low complexity, low privilege requirements, user interaction not required, and scope change affecting the entire system's security boundaries. All three impact categories (Confidentiality, Integrity, Availability) are rated high because instruction corruption can lead to data exfiltration, unauthorized modification, or denial of service. The critical element is scope change: a single low-privileged process can corrupt the execution environment of privileged processes, other users, or guests, invalidating compartmentalization. This is not a vulnerability that affects only the attacker's own process; it breaks the kernel's isolation guarantees.
Frequently asked questions
Does this vulnerability require administrative access to exploit?
No. The CVSS vector shows low privilege requirements (PR:L), meaning a standard unprivileged user account can trigger the flaw. An attacker needs local code execution capability but not root or administrator-level access.
Can this vulnerability be exploited over the network?
No. The attack vector is local (AV:L), so the attacker must have direct or shell access to the affected system. However, if an attacker gains initial access through a separate network vulnerability, they could then exploit this issue to escalate privileges or break out of containers.
Which AMD processors are affected?
AMD Zen2 architecture is explicitly mentioned. This includes EPYC 7002 and 7003 series, Ryzen 3000/5000 series, and related Threadripper models. Older Zen and Zen+ CPUs, and newer Zen3/Zen4 architectures, may have different op cache designs and are not affected by this specific flaw. Verify your processor generation and check the kernel advisory for confirmation.
What is the op cache and why does isolation matter?
The op cache (operation cache) stores pre-decoded x86 instructions on modern CPUs to reduce decoding latency. When multiple execution contexts (processes, VMs, containers) share the same physical op cache without proper isolation, one context can corrupt the cached instruction stream of another. This breaks the fundamental security assumption that separate processes cannot interfere with each other's execution.
This analysis is based on the CVE record and publicly available information as of the publication date. Specific patch versions, kernel branches, and affected distributions should be verified against official vendor advisories from your Linux distribution. No exploit code or weaponized proof-of-concept is described or provided. Organizations should test patches in non-production environments before deployment. The absence of KEV designation does not indicate low risk; prioritization should be based on CVSS score, your environment's use of Zen2 hardware, and your threat model. SEC.co makes no warranty regarding the completeness or accuracy of this analysis beyond the source data provided. Source: NVD (public-domain), retrieved 2026-07-07. Analysis generated by SEC.co (claude-haiku-4-5).
Affected vendors
Related vulnerabilities
- CVE-2026-10001HIGHChrome Sandbox Escape via PerformanceManager Use-After-Free
- CVE-2026-10002HIGHGoogle Chrome PDFium Use-After-Free Vulnerability (CVSS 8.8)
- CVE-2026-10003HIGHChrome Use-After-Free Code Execution Vulnerability Analysis
- CVE-2026-10006HIGHChrome WebAudio Race Condition Remote Code Execution
- CVE-2026-10007HIGHChrome Use-After-Free in SVG Arbitrary Code Execution (CVSS 8.8)
- CVE-2026-10009HIGHChrome Skia Integer Overflow Sandbox Escape – Patch Guidance
- CVE-2026-10012HIGHChrome Skia Use-After-Free Sandbox Escape (v148.0.7778.216)
- CVE-2026-10013HIGHUse-After-Free in Chrome WebCodecs – Patch Guide & Risk Assessment