Submit finding

All findings

CVE-2026-4747 critical

FreeBSD NFS remote kernel RCE identified and exploited by Claude Mythos Preview

CVE-2026-4747 is a 17-year-old FreeBSD RPCSEC_GSS/NFS kernel RCE that Anthropic says Claude Mythos Preview fully autonomously identified and exploited.

Bug class
Remote kernel memory corruption -> root code execution
Affected codebase
FreeBSD NFS / RPCSEC_GSS
Credited system
Claude Mythos Preview
Disclosed
April 7, 2026
Attribution
Direct source attribution
Severity
critical
Source status: Anthropic's red-team write-up explicitly names CVE-2026-4747 and describes Mythos Preview as fully autonomously identifying and exploiting it; VulnCheck notes it is the only CVE explicitly attributable to Project Glasswing so far.

Summary

Anthropic’s Mythos Preview write-up says the model fully autonomously identified and exploited CVE-2026-4747, a 17-year-old FreeBSD NFS/RPCSEC_GSS vulnerability that can give an unauthenticated remote attacker root-level control of a machine running the affected NFS server configuration.

Anthropic describes the workflow as autonomous after the initial request: the same scanning scaffold used for earlier operating-system research, plus a prompt asking the model to write exploits so the team could triage the highest-severity bugs.

Why it matters

This is one of the most important AI-attributed disclosures in the current public record because it combines discovery and exploitation, not just code review. It is also the one CVE VulnCheck found to be explicitly tied to Project Glasswing by name as of its April 2026 audit.

Caveat

The broader Project Glasswing headline includes many unpublished or embargoed findings. Bugflation does not count those until there is a public advisory, CVE, patch, or primary write-up that can be audited.

References

Catalogued in the Bugflation public ledger. Disagree with the attribution or severity label? Email the desk.