9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
8.1 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
32.6%
Ivan D Barrera, Christopher Bednarz, Mustafa Ismail, and Shiraz Saleem
discovered that the InfiniBand RDMA driver in the Linux kernel did not
properly check for zero-length STAG or MR registration. A remote attacker
could possibly use this to execute arbitrary code. (CVE-2023-25775)
Yu Hao discovered that the UBI driver in the Linux kernel did not properly
check for MTD with zero erasesize during device attachment. A local
privileged attacker could use this to cause a denial of service (system
crash). (CVE-2023-31085)
Manfred Rudigier discovered that the Intelยฎ PCI-Express Gigabit (igb)
Ethernet driver in the Linux kernel did not properly validate received
frames that are larger than the set MTU size, leading to a buffer overflow
vulnerability. An attacker could use this to cause a denial of service
(system crash) or possibly execute arbitrary code. (CVE-2023-45871)
Maxim Levitsky discovered that the KVM nested virtualization (SVM)
implementation for AMD processors in the Linux kernel did not properly
handle x2AVIC MSRs. An attacker in a guest VM could use this to cause a
denial of service (host kernel crash). (CVE-2023-5090)
It was discovered that the SMB network file sharing protocol implementation
in the Linux kernel did not properly handle certain error conditions,
leading to a use-after-free vulnerability. A local attacker could use this
to cause a denial of service (system crash) or possibly execute arbitrary
code. (CVE-2023-5345)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 23.04 | noarch | linux-image-6.2.0-1017-azure | <ย 6.2.0-1017.17 | UNKNOWN |
Ubuntu | 23.04 | noarch | linux-image-6.2.0-1017-azure-dbgsym | <ย 6.2.0-1017.17 | UNKNOWN |
Ubuntu | 23.04 | noarch | linux-image-6.2.0-1019-gcp | <ย 6.2.0-1019.21 | UNKNOWN |
Ubuntu | 23.04 | noarch | linux-image-6.2.0-1019-gcp-dbgsym | <ย 6.2.0-1019.21 | UNKNOWN |
Ubuntu | 23.04 | noarch | linux-image-azure | <ย 6.2.0.1017.17 | UNKNOWN |
Ubuntu | 23.04 | noarch | linux-azure | <ย 6.2.0.1017.17 | UNKNOWN |
Ubuntu | 23.04 | noarch | linux-cloud-tools-azure | <ย 6.2.0.1017.17 | UNKNOWN |
Ubuntu | 23.04 | noarch | linux-headers-azure | <ย 6.2.0.1017.17 | UNKNOWN |
Ubuntu | 23.04 | noarch | linux-modules-extra-azure | <ย 6.2.0.1017.17 | UNKNOWN |
Ubuntu | 23.04 | noarch | linux-modules-iwlwifi-azure | <ย 6.2.0.1017.17 | UNKNOWN |
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
8.1 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
32.6%