9.2 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
46.0%
An issue was discovered in the Linux kernel before 6.3.4. fs/ksmbd/smb2pdu.c in ksmbd does not properly check the UserName value because it does not consider the address of security buffer, leading to an out-of-bounds read.
cdn.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.3.4
git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/fs/ksmbd?id=f0a96d1aafd8964e1f9955c830a3e5cb3c60a90f
security.netapp.com/advisory/ntap-20230831-0001/