You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
cve-2026-4878
About this tag
CVE-2026-4878 is a local privilege-escalation vulnerability in libcap, specifically a TOCTOU race condition in the cap_set_file() function. On WindowsForum.com, discussions highlight that Microsoft's Security Update Guide classifies the downstream impact as including high availability loss. The flaw allows a local attacker to exploit timing differences between verification and use, manipulating capability assignment to affect privileged files or executables. This turns routine security metadata operations into a security boundary break, posing risks to system integrity and availability.
CVE-2026-4878 in libcap is a local privilege-escalation flaw rooted in a TOCTOU race condition inside cap_set_file(), and Microsoft’s Security Update Guide classifies the downstream impact as serious enough to include high availability loss in its risk framing. The core concern is that a local...