CISA has verified that a high-severity Linux privilege escalation vulnerability, CVE-2024-1086, is now actively exploited in ransomware attacks, enabling root access on unpatched systems. The flaw, present in major distributions like Ubuntu and Red Hat since 2014, underscores escalating threats to enterprise and federal infrastructure. With public exploit code circulating since March 2024, immediate patching is critical to prevent widespread system compromise.