Lucene search
RedhatCVELIST:CVE-2023-3773HistoryJul 25, 2023 - 3:47 p.m.
CVE-2023-3773 Kernel: xfrm: out-of-bounds read of xfrma_mtimer_thresh nlattr
2023-07-2515:47:40
CWE-125
redhat
www.cve.org
1
linux
kernel
xfrm
out-of-bounds read
netlink
privileges
heap data
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
7.2 High
AI Score
Confidence
High
0.0005 Low
EPSS
Percentile
17.7%
A flaw was found in the Linux kernel’s IP framework for transforming packets (XFRM subsystem). This issue may allow a malicious user with CAP_NET_ADMIN privileges to cause a 4 byte out-of-bounds read of XFRMA_MTIMER_THRESH when parsing netlink attributes, leading to potential leakage of sensitive heap data to userspace.
CNA Affected
[
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 9",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "kernel",
"defaultStatus": "affected",
"versions": [
{
"version": "0:5.14.0-362.8.1.el9_3",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/o:redhat:enterprise_linux:9::baseos",
"cpe:/a:redhat:enterprise_linux:9::nfv",
"cpe:/a:redhat:enterprise_linux:9::crb",
"cpe:/a:redhat:enterprise_linux:9::realtime",
"cpe:/a:redhat:enterprise_linux:9::appstream"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 9",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "kernel",
"defaultStatus": "affected",
"versions": [
{
"version": "0:5.14.0-362.8.1.el9_3",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/o:redhat:enterprise_linux:9::baseos",
"cpe:/a:redhat:enterprise_linux:9::nfv",
"cpe:/a:redhat:enterprise_linux:9::crb",
"cpe:/a:redhat:enterprise_linux:9::realtime",
"cpe:/a:redhat:enterprise_linux:9::appstream"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 6",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "kernel",
"defaultStatus": "unaffected",
"cpes": [
"cpe:/o:redhat:enterprise_linux:6"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 7",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "kernel",
"defaultStatus": "unaffected",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 7",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "kernel-rt",
"defaultStatus": "unaffected",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 8",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "kernel",
"defaultStatus": "unaffected",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 8",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "kernel-rt",
"defaultStatus": "unaffected",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 9",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "kernel-rt",
"defaultStatus": "affected",
"cpes": [
"cpe:/o:redhat:enterprise_linux:9"
]
}
]Related
cve
cve
CVE-2023-3773
2023-07-25 16:15:11
cbl_mariner
cbl_mariner
debiancve
debiancve
CVE-2023-3773
2023-07-25 16:15:11
nvd
nvd
CVE-2023-3773
2023-07-25 16:15:11
redhatcve
redhatcve
CVE-2023-3773
2023-07-25 15:47:30
ubuntucve
ubuntucve
CVE-2023-3773
2023-07-25 00:00:00
cnvd
cnvd
Linux kernel out-of-bounds read vulnerability (CNVD-2023-70078)
2023-09-12 00:00:00
prion
prion
Out-of-bounds
2023-07-25 16:15:00
photon
photon
Important Photon OS Security Update - PHSA-2023-4.0-0474
2023-09-17 00:00:00
Important Photon OS Security Update - PHSA-2023-5.0-0101
2023-09-26 00:00:00
ubuntu
ubuntu
Linux kernel (OEM) vulnerabilities
2023-10-04 00:00:00
Linux kernel vulnerabilities
2023-12-11 00:00:00
Linux kernel (Intel IoTG) vulnerabilities
2024-01-05 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-6415-1)
2023-10-05 00:00:00
Ubuntu: Security Advisory (USN-6549-2)
2023-12-13 00:00:00
Ubuntu: Security Advisory (USN-6549-3)
2023-12-14 00:00:00
osv
osv
linux-oem-6.1 vulnerabilities
2023-10-04 20:59:37
linux-lowlatency, linux-lowlatency-hwe-5.15 vulnerabilities
2023-12-13 14:01:01
linux-gkeop, linux-gkeop-5.15 vulnerabilities
2023-12-12 13:24:07
nessus
nessus
Ubuntu 22.04 LTS : Linux kernel (OEM) vulnerabilities (USN-6415-1)
2023-10-04 00:00:00
Ubuntu 20.04 LTS / 22.04 LTS : Linux kernel vulnerabilities (USN-6549-1)
2023-12-11 00:00:00
mageia
mageia
Updated kernel-linus packages fix security vulnerabilities
2023-11-30 01:29:41
Updated kernel packages fix security vulnerabilities and other bugs
2023-11-28 20:12:52
debian
debian
[SECURITY] [DSA 5492-1] linux security update
2023-09-09 21:40:04
[SECURITY] [DLA 3623-1] linux-5.10 security update
2023-10-19 21:24:05
oraclelinux
oraclelinux
kernel security, bug fix, and enhancement update
2023-11-12 00:00:00
redhat
redhat
redos
redos
ROS-20230904-01
2023-09-04 00:00:00
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
7.2 High
AI Score
Confidence
High
0.0005 Low
EPSS
Percentile
17.7%
Related for CVELIST:CVE-2023-3773