Lucene search
HistorySep 20, 2023 - 6:15 a.m.
CVE-2023-2163
linux kernel
cve-2023-2163
verifier pruning
vulnerability
arbitrary read/write
memory
privilege escalation
container escape
CVSS3
8.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
AI Score
9.7
Confidence
High
EPSS
0
Percentile
9.0%
Incorrect verifier pruning in BPF in Linux Kernel >=5.4 leads to unsafe
code paths being incorrectly marked as safe, resulting in arbitrary read/write in
kernel memory, lateral privilege escalation, and container escape.
Affected configurations
Node
linuxlinux_kernelRange5.3–5.4.242
ORlinuxlinux_kernelRange5.5–5.10.179
ORlinuxlinux_kernelRange5.11–5.15.109
ORlinuxlinux_kernelRange5.16–6.1.26
ORlinuxlinux_kernelRange6.2–6.2.13
| Vendor | Product | Version | CPE |
|---|---|---|---|
| linux | linux_kernel | * | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
Related
thn
thn
New Stealthy Variant of Linux Backdoor BPFDoor Emerges from the Shadows
2023-05-12 13:24:00
prion
prion
Privilege escalation
2023-09-20 06:15:00
debiancve
debiancve
CVE-2023-2163
2023-09-20 06:15:10
ibm
ibm
Security Bulletin: Vulnerability in Linux Kernel might affect IBM Spectrum Copy Data Management
2024-01-12 16:31:03
Security Bulletin: Vulnerabilities in Linux Kernel and Apache Axis can affect IBM Storage Protect Plus
2024-01-31 11:50:40
Security Bulletin: Multiple Vulnerabilities in CloudPak for AIOps
2024-01-31 19:20:21
nessus
nessus
ubuntucve
ubuntucve
CVE-2023-2163
2023-06-30 00:00:00
cbl_mariner
cbl_mariner
CVE-2023-2163 affecting package kernel for versions less than 5.15.133.1-1
2023-10-11 01:41:59
redhatcve
redhatcve
CVE-2023-2163
2023-09-22 17:54:54
cvelist
cvelist
cve
cve
CVE-2023-2163
2023-09-20 06:15:10
openvas
openvas
redhat
redhat
(RHSA-2023:7554) Important: kpatch-patch security update
2023-11-28 17:45:46
(RHSA-2024:0376) Important: kpatch-patch security update
2024-01-23 17:13:31
(RHSA-2024:0381) Important: kpatch-patch security update
2024-01-23 17:44:23
rocky
rocky
kernel-rt security update
2023-12-06 23:16:07
kernel security and bug fix update
2023-12-06 23:16:24
kernel security and bug fix update
2023-12-06 23:18:20
almalinux
almalinux
Important: kernel security and bug fix update
2023-11-28 00:00:00
osv
osv
Important: kernel security and bug fix update
2023-11-28 00:00:00
Important: kernel-rt security update
2023-12-06 23:16:07
Important: kernel security and bug fix update
2023-12-06 23:16:24
oraclelinux
oraclelinux
kernel security and bug fix update
2023-12-01 00:00:00
ubuntu
ubuntu
Linux kernel (Azure) vulnerabilities
2023-09-06 00:00:00
Linux kernel vulnerabilities
2023-09-08 00:00:00
Linux kernel vulnerabilities
2023-09-05 00:00:00
CVSS3
8.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
AI Score
9.7
Confidence
High
EPSS
0
Percentile
9.0%
Related for NVD:CVE-2023-2163