Lucene search

K
redhatcveRedhat.comRH:CVE-2023-37453
HistoryAug 07, 2023 - 2:49 p.m.

CVE-2023-37453

2023-08-0714:49:21
redhat.com
access.redhat.com
15
cve-2023-37453
denial of service
system crash
usb subsystem

CVSS3

4.6

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

4.5

Confidence

High

EPSS

0.001

Percentile

17.1%

An out-of-bounds read issue was found in the USB subsystem in the Linux kernel. This flaw allows a malicious user to crash the system, resulting in a denial of service condition.

CVSS3

4.6

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

4.5

Confidence

High

EPSS

0.001

Percentile

17.1%