Lucene search

K
cveMitreCVE-2023-30456
HistoryApr 10, 2023 - 2:15 a.m.

CVE-2023-30456

2023-04-1002:15:06
mitre
web.nvd.nist.gov
151
cve-2023-30456
linux kernel
nvmx
x86_64
security vulnerability
nvd

CVSS3

6.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

AI Score

6.8

Confidence

High

EPSS

0

Percentile

14.5%

An issue was discovered in arch/x86/kvm/vmx/nested.c in the Linux kernel before 6.2.8. nVMX on x86_64 lacks consistency checks for CR0 and CR4.

Affected configurations

Nvd
Node
linuxlinux_kernelRange<6.2.8
OR
linuxlinux_kernelMatch6.3rc1
OR
linuxlinux_kernelMatch6.3rc2
VendorProductVersionCPE
linuxlinux_kernel*cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
linuxlinux_kernel6.3cpe:2.3:o:linux:linux_kernel:6.3:rc1:*:*:*:*:*:*
linuxlinux_kernel6.3cpe:2.3:o:linux:linux_kernel:6.3:rc2:*:*:*:*:*:*

CVSS3

6.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

AI Score

6.8

Confidence

High

EPSS

0

Percentile

14.5%