Description

The Sentry kernel is a high security level micro-kernel implementation made for high security embedded systems. A given task with one of the DEV or IO capability is able to interact with another task's IRQ line through the __sys_int_* syscall familly. Prior to version 0.4.7, this can lead to DoS and covert-channels between this task and the outer world. A patch is available in version 0.4.7. As a workaround, reduce tasks that have the DEV and IO capability to a single one.

INFO

Published Date :

2026-04-17T23:51:09.866Z

Last Modified :

2026-04-20T16:13:48.908Z

Source :

GitHub_M
AFFECTED PRODUCTS

The following products are affected by CVE-2026-40337 vulnerability.

Vendors Products
Camelot-os
  • Sentry-kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-40337.

URL Resource
https://github.com/camelot-os/sentry-kernel/commit/150b7edd2c5b0da0a8baeed3135ddde613b08081 cve-icon cve-icon
https://github.com/camelot-os/sentry-kernel/pull/108 cve-icon cve-icon
https://github.com/camelot-os/sentry-kernel/security/advisories/GHSA-5hgv-rg2f-79pg cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact