VYPR
Medium severity5.5NVD Advisory· Published Mar 25, 2026· Updated May 28, 2026

CVE-2026-23303

CVE-2026-23303

Description

In the Linux kernel, the following vulnerability has been resolved:

smb: client: Don't log plaintext credentials in cifs_set_cifscreds

When debug logging is enabled, cifs_set_cifscreds() logs the key payload and exposes the plaintext username and password. Remove the debug log to avoid exposing credentials.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

76

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.