AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

CVE-2026-8370: Execution with unnecessary privileges vulnerability in Broadcom Automic Automation Agent Unix on Linux x64, Linux Power

infovulnerability

security

Source: NVD/CVE DatabaseMay 19, 2026CVE-2026-8370

Summary

CVE-2026-8370 is a privilege escalation vulnerability in Broadcom Automic Automation Agent (a tool that automates system tasks) running on various Unix and Linux systems. The vulnerability allows a user with basic access to run programs with higher-level privileges than they should have, affecting versions before 24.4.4 HF1, with a severity rating of 8.5 (HIGH CVSS score, a 0-10 rating of how severe a vulnerability is).

Vulnerability Details

EPSS (30-day exploit probability)

EPSS: 0.0%

Disclosure Date

May 19, 2026

Classification

Attack SophisticationModerate

Taxonomy References

CWE (Weakness Type)

CWE-250

Monthly digest — independent AI security research

Original source: https://nvd.nist.gov/vuln/detail/CVE-2026-8370

First tracked: May 19, 2026 at 08:10 PM

Classified by LLM (prompt v3) · confidence: 95%