A vulnerability classified as critical has been found in Linux Kernel up to 7.0-rc2 . This affects the function local_addr_used of the file net/mptcp/pm_kernel.c of the component MPTCP Endpoint . The manipulation leads to privilege escalation. This vulnerability is traded as CVE-2026-23321 . Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.