Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatcveRedhat.comRH:CVE-2023-2162
HistoryApr 18, 2023 - 5:01 p.m.

CVE-2023-2162

2023-04-1817:01:38
redhat.com
access.redhat.com
23

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

1.7 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:S/C:P/I:N/A:N

0 Low

EPSS

Percentile

14.0%

JSON

A use-after-free flaw was found in iscsi_sw_tcp_session_create in drivers/scsi/iscsi_tcp.c in the SCSI sub-component in the Linux Kernel. This issue could allow an attacker to leak kernel internal information.

Mitigation

This flaw can be mitigated by preventing the affected iscsi_tcp.ko kernel module from loading during the boot time, ensure the module is added into the blacklist file.

Refer:    
How do I blacklist a kernel module to prevent it from loading automatically?   
https://access.redhat.com/solutions/41278

Related

cbl_mariner 2
prion 1
cve 1
debiancve 1
ubuntucve 1
nessus 97
oraclelinux 2
ubuntu 20
osv 22
redhat 15
rocky 1
almalinux 1
ibm 4
amazon 3
virtuozzo 2
photon 2
debian 2
slackware 1
cbl_mariner
cbl_mariner
CVE-2023-2162 affecting package kernel 5.15.107.1-2
2023-05-25 09:38:10
CVE-2023-2162 affecting package kernel 5.10.179.1-1
2023-06-13 20:02:41
prion
prion
Design/Logic Flaw
2023-04-19 20:15:00
cve
cve
CVE-2023-2162
2023-04-19 20:15:12
debiancve
debiancve
CVE-2023-2162
2023-04-19 20:15:12
ubuntucve
ubuntucve
CVE-2023-2162
2023-04-19 00:00:00
nessus
nessus
SUSE SLES12 Security Update : kernel (Live Patch 42 for SLE 12 SP5) (SUSE-SU-2023:2395)
2023-06-08 00:00:00
SUSE SLES15 Security Update : kernel (Live Patch 39 for SLE 15 SP1) (SUSE-SU-2023:2386-1)
2023-06-08 00:00:00
Oracle Linux 8 : kernel (ELSA-2024-12069)
2024-01-11 00:00:00
oraclelinux
oraclelinux
kernel security update
2024-01-11 00:00:00
Unbreakable Enterprise kernel security update
2023-06-07 00:00:00
ubuntu
ubuntu
Linux kernel (Azure) vulnerabilities
2023-05-18 00:00:00
Linux kernel vulnerabilities
2023-05-16 00:00:00
Linux kernel vulnerabilities
2023-05-22 00:00:00
osv
osv
Important: kernel security update
2024-01-10 00:00:00
linux-gcp, linux-hwe, linux-raspi2, linux-snapdragon vulnerabilities
2023-05-22 19:49:33
linux-gcp-4.15, linux-oracle vulnerabilities
2023-05-17 17:52:55
redhat
redhat
(RHSA-2024:0402) Important: kernel-rt security update
2024-01-24 14:40:12
(RHSA-2024:0403) Important: kernel security update
2024-01-24 14:40:13
(RHSA-2024:0134) Important: kernel-rt security update
2024-01-10 09:31:44
rocky
rocky
kernel-rt security update
2024-01-12 19:57:11
almalinux
almalinux
Important: kernel security update
2024-01-10 00:00:00
ibm
ibm
Security Bulletin: Vulnerabilities in OpenSSL, Linux Kernel might affect IBM Storage Copy Data Management
2024-03-22 16:04:46
Security Bulletin: IBM Cloud Pak for Network Automation 2.7 fixes multiple security vulnerabilities
2024-03-04 10:30:04
Security Bulletin: Vulnerabilities in Spring, Tomcat, Jackson, sudo, and Linux kernel can affect IBM Spectrum Protect Plus
2024-03-20 18:36:29
amazon
amazon
Important: kernel
2023-03-17 16:34:00
Important: kernel
2023-03-17 15:53:00
Important: kernel
2023-03-17 16:34:00
virtuozzo
virtuozzo
[Important] [Security] Virtuozzo ReadyKernel Patch 157.3 for Virtuozzo Hybrid Server 7.5
2023-07-06 00:00:00
[Important] [Security] Virtuozzo ReadyKernel Patch 161.0 for Virtuozzo Hybrid Server 7.5
2023-09-20 00:00:00
photon
photon
Critical Photon OS Security Update - PHSA-2023-4.0-0370
2023-04-05 00:00:00
Important Photon OS Security Update - PHSA-2023-3.0-0559
2023-03-30 00:00:00
debian
debian
[SECURITY] [DLA 3404-1] linux-5.10 security update
2023-05-02 22:45:59
[SECURITY] [DLA 3403-1] linux security update
2023-05-03 12:01:28
slackware
slackware
[slackware-security] Slackware 15.0 kernel
2023-06-22 01:56:18

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

1.7 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:S/C:P/I:N/A:N

0 Low

EPSS

Percentile

14.0%

JSON
Related for RH:CVE-2023-2162
cbl_mariner2prion1cve1debiancve1ubuntucve1nessus97oraclelinux2ubuntu20osv22redhat15rocky1almalinux1ibm4amazon3virtuozzo2photon2debian2slackware1