HOMEVULNERABILITIESCVE-2026-43094
NONE

CVE-2026-43094

Published: May 6, 2026· Updated: May 6, 2026

EPSS:0.02%probability of exploitation in 30 daysPercentile:4.8th

Official Description

In the Linux kernel, the following vulnerability has been resolved:

ixgbevf: add missing negotiate_features op to Hyper-V ops table

Commit a7075f501bd3 ("ixgbevf: fix mailbox API compatibility by

negotiating supported features") added the .negotiate_features callback

to ixgbe_mac_operations and populated it in ixgbevf_mac_ops, but forgot

to add it to ixgbevf_hv_mac_ops. This leaves the function pointer NULL

on Hyper-V VMs.

During probe, ixgbevf_negotiate_api() calls ixgbevf_set_features(),

which unconditionally dereferences hw->mac.ops.negotiate_features().

On Hyper-V this results in a NULL pointer dereference:

BUG: kernel NULL pointer dereference, address: 0000000000000000

[...]

Hardware name: Microsoft Corporation Virtual Machine/Virtual Machine [...]

Workqueue: events work_for_cpu_fn

RIP: 0010:0x0

[...]

Call Trace:

ixgbevf_negotiate_api+0x66/0x160 [ixgbevf]

ixgbevf_sw_init+0xe4/0x1f0 [ixgbevf]

ixgbevf_probe+0x20f/0x4a0 [ixgbevf]

local_pci_probe+0x50/0xa0

work_for_cpu_fn+0x1a/0x30

[...]

Add ixgbevf_hv_negotiate_features_vf() that returns -EOPNOTSUPP and

wire it into ixgbevf_hv_mac_ops. The caller already handles -EOPNOTSUPP

gracefully.

NVD Source

Technical Analysis

CVE-2026-43094 requires local access, meaning attackers must already have a foothold on the target system.

Exploitation requires some privileges, which limits the exposure to scenarios where an attacker has already gained initial access.

Affected Vendors & Products

Mentioned vendors (from description):
MicrosoftLinux
CPE data not yet available in NVD for this CVE.

Exploit & PoC Resources

NO KNOWN EXPLOITNo public exploit confirmed at this time
External links open in a new tab. Always verify in a controlled environment before use.

All References (5)

Quick Facts

CVE IDCVE-2026-43094
SeverityNONE
CISA KEVNo
EPSS (30d)0.02%
PublishedMay 6, 2026

Recommended Actions

  • Apply vendor patches immediately
  • Monitor CVE-2026-43094 in threat intel feeds
  • Review IDS/IPS signatures for exploitation attempts
Data sourced from NVD (NIST), CISA KEV, and EPSS (FIRST). Analysis generated by CTIWATCH.COM. CVE data is provided under the NVD usage policy.