Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2023-5197
HistorySep 27, 2023 - 12:00 a.m.

CVE-2023-5197

2023-09-2700:00:00
ubuntu.com
ubuntu.com
15
linux kernel
nf_tables
vulnerability
local privilege escalation
transaction
chain binding
use-after-free

8.1 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.2%

JSON

A use-after-free vulnerability in the Linux kernel’s netfilter: nf_tables
component can be exploited to achieve local privilege escalation. Addition
and removal of rules from chain bindings within the same transaction causes
leads to use-after-free. We recommend upgrading past commit
f15f29fd4779be8a418b66e9d52979bb6d6c2325.

Bugs

Notes

Author Note
Priority reason: Local privilege escalation with low privileges needed
rodrigo-zaiden reported by Google kCTF
OSVersionArchitecturePackageVersionFilename
ubuntu22.04noarchlinux< 5.15.0-87.97UNKNOWN
ubuntu23.04noarchlinux< 6.2.0-35.35UNKNOWN
ubuntu23.10noarchlinux< 6.5.0-10.10UNKNOWN
ubuntu22.04noarchlinux-aws< 5.15.0-1048.53UNKNOWN
ubuntu23.04noarchlinux-aws< 6.2.0-1014.14UNKNOWN
ubuntu23.10noarchlinux-aws< 6.5.0-1009.9UNKNOWN
ubuntu20.04noarchlinux-aws-5.15< 5.15.0-1048.53~20.04.1UNKNOWN
ubuntu22.04noarchlinux-aws-6.2< 6.2.0-1014.14~22.04.1UNKNOWN
ubuntu22.04noarchlinux-aws-6.5< anyUNKNOWN
ubuntu22.04noarchlinux-azure< 5.15.0-1050.57UNKNOWN
Rows per page:
1-10 of 621

References

Related

prion 1
cve 1
redhatcve 1
cvelist 1
debiancve 1
cbl_mariner 1
nessus 30
photon 2
openvas 24
osv 16
ubuntu 15
mageia 2
oraclelinux 1
chrome 1
debian 2
slackware 1
prion
prion
Design/Logic Flaw
2023-09-27 15:19:00
cve
cve
CVE-2023-5197
2023-09-27 15:19:43
redhatcve
redhatcve
CVE-2023-5197
2023-09-28 11:54:19
cvelist
cvelist
CVE-2023-5197 Use-after-free in Linux kernel's netfilter: nf_tables component
2023-09-26 10:04:37
debiancve
debiancve
CVE-2023-5197
2023-09-27 15:19:43
cbl_mariner
cbl_mariner
CVE-2023-5197 affecting package kernel for versions less than 5.15.135.1-2
2023-11-08 02:07:28
nessus
nessus
Amazon Linux 2 : kernel (ALASKERNEL-5.10-2023-041)
2023-10-18 00:00:00
Ubuntu 23.10 : Linux kernel vulnerabilities (USN-6454-2)
2023-10-30 00:00:00
Ubuntu 23.10 : Linux kernel (StarFive) vulnerabilities (USN-6454-4)
2023-11-01 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2023-4.0-0491
2023-10-17 00:00:00
Important Photon OS Security Update - PHSA-2023-5.0-0111
2023-10-10 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-6479-1)
2023-11-15 00:00:00
Ubuntu: Security Advisory (USN-6454-3)
2023-11-01 00:00:00
Ubuntu: Security Advisory (USN-6454-2)
2023-10-31 00:00:00
osv
osv
linux-oem-6.5 vulnerabilities
2023-11-14 22:15:29
linux, linux-lowlatency vulnerabilities
2023-10-26 12:36:49
linux-aws, linux-azure, linux-gcp, linux-oracle, linux-raspi vulnerabilities
2023-10-30 16:13:25
ubuntu
ubuntu
Linux kernel (ARM laptop) vulnerabilities
2023-10-31 00:00:00
Linux kernel vulnerabilities
2023-10-26 00:00:00
Linux kernel (StarFive) vulnerabilities
2023-11-01 00:00:00
mageia
mageia
Updated kernel-linus packages fix security vulnerabilities
2023-10-23 00:04:51
Updated kernel packages fix security vulnerabilities
2023-10-23 00:04:51
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2023-12-13 00:00:00
chrome
chrome
Stable Channel Update for ChromeOS/ChromeOS Flex
2023-11-14 00:00:00
debian
debian
[SECURITY] [DLA 3711-1] linux-5.10 security update
2024-01-11 18:40:41
[SECURITY] [DSA 5594-1] linux security update
2024-01-02 21:05:08
slackware
slackware
[slackware-security] Slackware 15.0 kernel
2023-11-21 21:37:49

8.1 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.2%

JSON
Related for UB:CVE-2023-5197
prion1cve1redhatcve1cvelist1debiancve1cbl_mariner1nessus30photon2openvas24osv16ubuntu15mageia2oraclelinux1chrome1debian2slackware1