VulnerableCode Vulnerability Details - VCID-bscn-juhe-43an

Staging Environment: Content and features may be unstable or change without notice.

Search for vulnerabilities

Vulnerability details: VCID-bscn-juhe-43an

Essentials
Severities (13)
References (8)
Severity details (0)
Exploits (1)
EPSS
History (1)

Vulnerability ID	VCID-bscn-juhe-43an
Aliases	CVE-2009-3726
Summary	kernel: nfsv4: kernel panic in nfs4_proc_lock()
Status	Published
Exploitability	2.0
Weighted Severity	0.1
Risk	0.2
Affected and Fixed Packages	Package Details

Weaknesses (4)

CWE-662	Improper Synchronization
CWE-362	Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
CWE-672	Operation on a Resource after Expiration or Release
CWE-476	NULL Pointer Dereference

System	Score	Found at
epss	0.05792	https://api.first.org/data/v1/epss?cve=CVE-2009-3726
epss	0.05792	https://api.first.org/data/v1/epss?cve=CVE-2009-3726
epss	0.05792	https://api.first.org/data/v1/epss?cve=CVE-2009-3726
epss	0.05792	https://api.first.org/data/v1/epss?cve=CVE-2009-3726
epss	0.05792	https://api.first.org/data/v1/epss?cve=CVE-2009-3726
epss	0.05792	https://api.first.org/data/v1/epss?cve=CVE-2009-3726
epss	0.05792	https://api.first.org/data/v1/epss?cve=CVE-2009-3726
epss	0.05792	https://api.first.org/data/v1/epss?cve=CVE-2009-3726
epss	0.05792	https://api.first.org/data/v1/epss?cve=CVE-2009-3726
epss	0.05792	https://api.first.org/data/v1/epss?cve=CVE-2009-3726
epss	0.05792	https://api.first.org/data/v1/epss?cve=CVE-2009-3726
epss	0.05792	https://api.first.org/data/v1/epss?cve=CVE-2009-3726
epss	0.05792	https://api.first.org/data/v1/epss?cve=CVE-2009-3726

Reference id	Reference type	URL
		https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3726.json
		https://api.first.org/data/v1/epss?cve=CVE-2009-3726
529227		https://bugzilla.redhat.com/show_bug.cgi?id=529227
CVE-2009-3726;OSVDB-59877	Exploit	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/10202.c
RHSA-2009:1635		https://access.redhat.com/errata/RHSA-2009:1635
RHSA-2009:1670		https://access.redhat.com/errata/RHSA-2009:1670
RHSA-2010:0474		https://access.redhat.com/errata/RHSA-2010:0474
USN-864-1		https://usn.ubuntu.com/864-1/

Data source	Exploit-DB
Date added	Oct. 14, 2009
Description	Linux Kernel < 2.6.31-rc4 - 'nfs4_proc_lock()' Denial of Service
Ransomware campaign use	Known
Source publication date	Oct. 15, 2009
Exploit type	dos
Platform	linux

There are no known vectors.

Exploit Prediction Scoring System (EPSS)

Percentile	0.90462
EPSS Score	0.05792
Published At	April 1, 2026, 12:55 p.m.

Date	Actor	Action	Source	VulnerableCode Version
2026-04-01T14:58:45.400154+00:00	RedHat Importer	Import	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3726.json	38.0.0