CVE-2023-32247

🗓️ 24 Jul 2023 15:19:23Reported by redhatType

Flaw in Linux kernel's ksmbd SMB server allows Do

Reporter	Title	Published	Views	Family All 119
ATTACKERKB	CVE-2023-32247	24 Jul 202316:15	–	attackerkb
AstraLinux	Astra Linux - уязвимость в linux-5.15	20 May 202605:53	–	astralinux
CBLMariner	CVE-2023-32247 affecting package hyperv-daemons for versions less than 5.15.145.2-1	19 Jan 202403:54	–	cbl_mariner
CBLMariner	CVE-2023-32247 affecting package kernel for versions less than 5.15.126.1-1	30 Aug 202315:15	–	cbl_mariner
Circl	CVE-2023-32247	24 Jul 202320:26	–	circl
CNNVD	Linux kernel 安全漏洞	24 Jul 202300:00	–	cnnvd
CNVD	Linux Kernel ksmbd SMB2_SESSION_SETUP Denial of Service Vulnerability	22 May 202300:00	–	cnvd
Cvelist	CVE-2023-32247 Session setup memory exhaustion denial-of-service vulnerability	24 Jul 202315:19	–	cvelist
Debian CVE	CVE-2023-32247	24 Jul 202315:19	–	debiancve
EUVD	EUVD-2023-36504	3 Oct 202520:07	–	euvd

NVD

Node

linux linux_kernelRange5.15–5.15.145

linux linux_kernelRange5.16–6.1.29

linux linux_kernelRange6.2–6.2.16

linux linux_kernelRange6.3–6.3.2

Node

netapp h300sMatch-

netapp h410sMatch-

netapp h500sMatch-

netapp h700sMatch-

[
  {
    "product": "kernel",
    "vendor": "n/a",
    "versions": [
      {
        "version": "6.4-rc1",
        "status": "unaffected"
      }
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 6",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "kernel",
    "defaultStatus": "unaffected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:6"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 7",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "kernel",
    "defaultStatus": "unaffected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:7"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 7",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "kernel-rt",
    "defaultStatus": "unaffected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:7"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "kernel",
    "defaultStatus": "unaffected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:8"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "kernel-rt",
    "defaultStatus": "unaffected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:8"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 9",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "kernel",
    "defaultStatus": "unaffected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:9"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 9",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "kernel-rt",
    "defaultStatus": "unaffected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:9"
    ]
  },
  {
    "product": "Fedora",
    "vendor": "Fedora",
    "collectionURL": "https://packages.fedoraproject.org/",
    "packageName": "kernel",
    "defaultStatus": "unaffected"
  }
]

Source	Link
zerodayinitiative	www.zerodayinitiative.com/advisories/ZDI-CAN-20478/
access	www.access.redhat.com/security/cve/CVE-2023-32247
security	www.security.netapp.com/advisory/ntap-20230915-0011/
bugzilla	www.bugzilla.redhat.com/show_bug.cgi

21 Nov 2024 08:02Current

7.2High risk

Vulners AI Score7.2

CVSS 3.17.5

EPSS0.00089

CWE-401