The vulnerability arises in the Linux kernel's BPF subsystem, where a function accepts a plain integer node_id and forwards it through the allocation chain without any bounds checking. This lack of validation can allow an attacker to supply an out‑of‑range node_id, potentially causing the kernel to request memory from an incorrect NUMA node or to access memory outside the intended bounds. The resulting kernel memory corruption could lead to a crash, denial of service, or even allow a local attacker to execute code in kernel mode. Based on the description, the likely attack vector is a local user who can load malicious BPF programs that supply a crafted node_id; this inference is drawn from the fact that the function is used during BPF map allocation, a process typically initiated by user space.

Affected vendors/products: the Linux kernel itself (Linux:Linux). No specific version information is provided in the CVE entry, so any kernel version prior to the patch that implements validation of node_id is potentially vulnerable. Distributions that ship unpatched kernels may also be impacted until the update is available.

The CVSS score is not listed, and EPSS data is unavailable, but the vulnerability involves kernel memory corruption, a high‑severity issue. It is not listed in the CISA KEV catalog, indicating that known public exploits may not yet exist. Nonetheless, because the flaw can be triggered via BPF programs that privileged users can load, a local attacker can craft a program that triggers the fault, leading to denial of service or potential privilege escalation. The attack requires the ability to load a BPF program, which is typically a privileged operation but may be available to some users depending on system configuration. Given the kernel impact and lack of mitigations, the overall risk is elevated until a patch is applied.