Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistRedhatCVELIST:CVE-2023-6546
HistoryDec 21, 2023 - 8:01 p.m.

CVE-2023-6546 Kernel: gsm multiplexing race condition leads to privilege escalation

2023-12-2120:01:03
CWE-416
redhat
raw.githubusercontent.com
3
linux
gsm 0710
race condition
privilege escalation
use-after-free
gsmmux

6.3 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.5%

JSON

A race condition was found in the GSM 0710 tty multiplexor in the Linux kernel. This issue occurs when two threads execute the GSMIOC_SETCONF ioctl on the same tty file descriptor with the gsm line discipline enabled, and can lead to a use-after-free problem on a struct gsm_dlci while restarting the gsm mux. This could allow a local unprivileged user to escalate their privileges on the system.

Related

cve 1
prion 1
cbl_mariner 1
redhat 20
osv 5
ubuntucve 1
nessus 78
redhatcve 1
zdi 1
debiancve 1
amazon 1
oraclelinux 3
rocky 3
openvas 18
almalinux 1
ibm 2
cve
cve
CVE-2023-6546
2023-12-21 20:15:08
prion
prion
Race condition
2023-12-21 20:15:00
cbl_mariner
cbl_mariner
CVE-2023-6546 affecting package kernel for versions less than 5.15.148.1-1
2024-02-25 03:00:06
redhat
redhat
(RHSA-2024:1612) Important: kpatch-patch security update
2024-04-02 15:31:44
(RHSA-2024:1055) Important: kpatch-patch security update
2024-02-29 15:39:00
(RHSA-2024:0937) Important: kpatch-patch security update
2024-02-22 02:57:41
osv
osv
CVE-2023-6546
2023-12-21 20:15:08
Important: kernel-rt security and bug fix update
2024-04-05 14:56:14
Important: kernel security, bug fix, and enhancement update
2024-05-06 13:07:04
ubuntucve
ubuntucve
CVE-2023-6546
2023-12-21 00:00:00
nessus
nessus
RHEL 8 : kpatch-patch (RHSA-2024:0937)
2024-02-23 00:00:00
RHEL 9 : kpatch-patch (RHSA-2024:1055)
2024-02-29 00:00:00
RHEL 8 : kpatch-patch (RHSA-2024:1612)
2024-04-02 00:00:00
redhatcve
redhatcve
CVE-2023-6546
2023-12-21 14:01:28
zdi
zdi
Linux Kernel GSM Multiplexing Race Condition Local Privilege Escalation Vulnerability
2024-01-09 00:00:00
debiancve
debiancve
CVE-2023-6546
2023-12-21 20:15:08
amazon
amazon
Important: kernel
2024-02-01 19:57:00
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2023-10-10 00:00:00
kernel security, bug fix, and enhancement update
2024-04-10 00:00:00
kernel security, bug fix, and enhancement update
2024-05-02 00:00:00
rocky
rocky
kernel security, bug fix, and enhancement update
2024-04-05 14:55:53
kernel security, bug fix, and enhancement update
2024-05-06 13:07:04
kernel-rt security and bug fix update
2024-04-05 14:56:14
openvas
openvas
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2024-1176)
2024-02-09 00:00:00
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2024-1453)
2024-03-21 00:00:00
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2024-1196)
2024-02-09 00:00:00
almalinux
almalinux
Important: kernel security, bug fix, and enhancement update
2024-04-02 00:00:00
ibm
ibm
Security Bulletin: IBM Security Guardium is affected by multiple Linux Kernel vulnerabilities
2024-05-15 17:32:24
Security Bulletin: IBM QRadar SIEM contains multiple vulnerabilities
2024-05-09 12:31:16

6.3 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.5%

JSON
Related for CVELIST:CVE-2023-6546
cve1prion1cbl_mariner1redhat20osv5ubuntucve1nessus78redhatcve1zdi1debiancve1amazon1oraclelinux3rocky3openvas18almalinux1ibm2