Impact: Low
CVE: CVE-2026-43284 and CVE-2026-43500
Version(s): 4.x
First published: 26 May 2026
Last updated: 26 May 2026

Dirty Frag

We are aware of the high profile ‘Dirty Frag’ exploit which impacts all current Linux kernel versions.

It is important to note that this exploit requires local access to a system to be exploited, something that would require an issue with the running micro-services or associated services to have been exposed and exploited in the first instance. The impacted kernel modules are also not loaded by default within the VQCM VM, preventing exploitation without a privileged user first having loaded these modules.

To ensure peace of mind for our customers and meet the our high levels of security and transparency we have made available a mitigation playbook which can be applied to a running VQCM instance. This will make sure the impacted modules are not loaded and prevent them from being loaded in the future. This should not impact the running VQCM instance at all and there should be no down time.

If you have any questions about this CVE, please email security@vqcomms.com

To request access to the playbook, please email support@vqcomms.com

Latest news

Cisco Live 2026: Blending innovation with resilience

News
Published May 26, 2026

VQ’s Monthly News – April 2026

News
Published May 1, 2026

VQ Communications Launches VQ Conference Manager 4.8 with Advanced Conferencing Center

News
Published April 16, 2026