Lucene search

[email protected]NVD:CVE-2023-3397

HistoryNov 01, 2023 - 8:15 p.m.

CVE-2023-3397

2023-11-0120:15:08

CWE-416

CWE-362

[email protected]

web.nvd.nist.gov

race condition

jfs

linux kernel

local attacker

system crash

internal information

6.3 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H

6.7 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

A race condition occurred between the functions lmLogClose and txEnd in JFS, in the Linux Kernel, executed in different threads. This flaw allows a local attacker with normal user privileges to crash the system or leak internal kernel information.

Affected configurations

NVD

Node

linuxlinux_kernelMatch-

References

access.redhat.com/security/cve/CVE-2023-3397

bugzilla.redhat.com/show_bug.cgi?id=2217271

www.spinics.net/lists/kernel/msg4788636.html

6.3 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H

6.7 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for NVD:CVE-2023-3397

prion1 cvelist1 redhatcve1 ubuntucve1 cve1 debiancve1 amazon2 nessus5 rosalinux1