Lucene search

K
cnvdChina National Vulnerability DatabaseCNVD-2023-58993
HistoryJan 04, 2023 - 12:00 a.m.

Linux kernel buffer overflow vulnerability (CNVD-2023-58993)

2023-01-0400:00:00
China National Vulnerability Database
www.cnvd.org.cn
17
linux
kernel
buffer overflow
vulnerability
ksmbd
smb2pdu.c
code execution
remote exploit

EPSS

0.002

Percentile

52.1%

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. Linux kernel suffers from a buffer overflow vulnerability that stems from an issue found in ksmbd where fs/ksmbd/smb2pdu.c lacks length validation in the unfilled case of smb2_write. An attacker can exploit this vulnerability to remotely execute arbitrary code.