CVE-2026-40337: CWE-283: Unverified Ownership in camelot-os sentry-kernel
The Sentry kernel is a high security level micro-kernel implementation made for high security embedded systems. A given task with one of the DEV or IO capability is able to interact with another task's IRQ line through the __sys_int_* syscall familly. Prior to version 0.4.7, this can lead to DoS and covert-channels between this task and the outer world. A patch is available in version 0.4.7. As a workaround, reduce tasks that have the DEV and IO capability to a single one.
AI Analysis
Technical Summary
The vulnerability CVE-2026-40337 affects the camelot-os sentry-kernel, a high-security micro-kernel for embedded systems. Tasks possessing DEV or IO capabilities can misuse the __sys_int_* syscall family to interact with IRQ lines of other tasks without proper ownership verification. This flaw can cause denial of service and enable covert communication channels between the compromised task and external entities. The issue is fixed in version 0.4.7 of the sentry-kernel. Prior versions are vulnerable if they allow multiple tasks with these capabilities.
Potential Impact
Exploitation of this vulnerability can result in denial of service conditions within the affected embedded system and the creation of covert channels, potentially leaking information or bypassing security controls. The confidentiality impact is low, integrity is not affected, but availability is highly impacted. The vulnerability requires high privileges (PR:H) and local access (AV:L) with no user interaction (UI:N).
Mitigation Recommendations
A patch is available in camelot-os sentry-kernel version 0.4.7 that addresses this vulnerability. Users should upgrade to version 0.4.7 or later. As a temporary workaround before patching, it is recommended to reduce the number of tasks with DEV and IO capabilities to a single task to limit the attack surface.
CVE-2026-40337: CWE-283: Unverified Ownership in camelot-os sentry-kernel
Description
The Sentry kernel is a high security level micro-kernel implementation made for high security embedded systems. A given task with one of the DEV or IO capability is able to interact with another task's IRQ line through the __sys_int_* syscall familly. Prior to version 0.4.7, this can lead to DoS and covert-channels between this task and the outer world. A patch is available in version 0.4.7. As a workaround, reduce tasks that have the DEV and IO capability to a single one.
CVSS v3.1
Score 5.1medium
Weaknesses
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
The vulnerability CVE-2026-40337 affects the camelot-os sentry-kernel, a high-security micro-kernel for embedded systems. Tasks possessing DEV or IO capabilities can misuse the __sys_int_* syscall family to interact with IRQ lines of other tasks without proper ownership verification. This flaw can cause denial of service and enable covert communication channels between the compromised task and external entities. The issue is fixed in version 0.4.7 of the sentry-kernel. Prior versions are vulnerable if they allow multiple tasks with these capabilities.
Potential Impact
Exploitation of this vulnerability can result in denial of service conditions within the affected embedded system and the creation of covert channels, potentially leaking information or bypassing security controls. The confidentiality impact is low, integrity is not affected, but availability is highly impacted. The vulnerability requires high privileges (PR:H) and local access (AV:L) with no user interaction (UI:N).
Mitigation Recommendations
A patch is available in camelot-os sentry-kernel version 0.4.7 that addresses this vulnerability. Users should upgrade to version 0.4.7 or later. As a temporary workaround before patching, it is recommended to reduce the number of tasks with DEV and IO capabilities to a single task to limit the attack surface.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- GitHub_M
- Date Reserved
- 2026-04-10T22:50:01.358Z
- Cvss Version
- 3.1
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 69e389f6bdfbbecc59765143
Added to database: 4/18/2026, 1:41:10 PM
Last enriched: 4/26/2026, 2:39:42 AM
Last updated: 6/2/2026, 4:12:46 PM
Views: 78
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.