Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
zdiLucas Leong (@_wmliang_) of Trend Micro Zero Day InitiativeZDI-23-1491
HistorySep 29, 2023 - 12:00 a.m.

Linux Kernel Netfilter Xtables Out-Of-Bounds Read Information Disclosure Vulnerability

2023-09-2900:00:00
Lucas Leong (@_wmliang_) of Trend Micro Zero Day Initiative
www.zerodayinitiative.com
7
vulnerability
linux kernel
netfilter
xtables
out-of-bounds read
information disclosure
local attackers
sensitive information
high-privileged code
match_flags function
proper validation
user-supplied data
arbitrary code

6 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:H

2.9 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

MULTIPLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:M/C:P/I:N/A:P

0.0004 Low

EPSS

Percentile

14.8%

JSON

This vulnerability allows local attackers to disclose sensitive information on affected installations of the Linux Kernel. An attacker must first obtain the ability to execute high-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the match_flags function. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated data structure. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the kernel.

Related

prion 1
cbl_mariner 1
ubuntucve 1
cve 1
cvelist 1
debiancve 1
redhatcve 1
oraclelinux 3
nessus 68
openvas 50
osv 19
photon 1
ubuntu 17
ibm 1
amazon 2
debian 1
redhat 4
slackware 1
ics 1
prion
prion
Information disclosure
2023-10-09 18:15:00
cbl_mariner
cbl_mariner
CVE-2023-39193 affecting package kernel for versions less than 5.15.135.1-2
2023-11-08 02:07:28
ubuntucve
ubuntucve
CVE-2023-39193
2023-10-09 00:00:00
cve
cve
CVE-2023-39193
2023-10-09 18:15:10
cvelist
cvelist
CVE-2023-39193 Kernel: netfilter: xtables sctp out-of-bounds read in match_flags()
2023-10-09 17:57:49
debiancve
debiancve
CVE-2023-39193
2023-10-09 18:15:10
redhatcve
redhatcve
CVE-2023-39193
2023-10-09 07:54:32
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2023-12-06 00:00:00
kernel security, bug fix, and enhancement update
2024-05-23 00:00:00
kernel security, bug fix, and enhancement update
2024-05-02 00:00:00
nessus
nessus
OracleVM 3.4 : kernel-uek (OVMSA-2023-0025)
2023-12-11 00:00:00
Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2023-13019)
2023-12-06 00:00:00
Amazon Linux 2 : kernel (ALASKERNEL-5.15-2023-027)
2023-10-06 00:00:00
openvas
openvas
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2023:4378-1)
2024-03-04 00:00:00
Ubuntu: Security Advisory (USN-6494-2)
2023-12-01 00:00:00
Ubuntu: Security Advisory (USN-6494-1)
2023-11-22 00:00:00
osv
osv
linux, linux-aws, linux-aws-hwe, linux-hwe, linux-kvm, linux-oracle vulnerabilities
2023-11-21 14:55:09
linux-azure, linux-azure-4.15, linux-gcp, linux-gcp-4.15 vulnerabilities
2023-11-30 17:56:50
linux-gkeop vulnerabilities
2024-01-09 18:41:28
photon
photon
Important Photon OS Security Update - PHSA-2023-4.0-0488
2023-10-12 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2023-11-30 00:00:00
Linux kernel vulnerabilities
2023-11-21 00:00:00
Linux kernel (GKE) vulnerabilities
2024-01-09 00:00:00
ibm
ibm
Security Bulletin: Vulnerability with Kernel and Lib cURL affect IBM Cloud Object Storage Systems (Jan 2024v1)
2024-01-29 23:30:02
amazon
amazon
Important: kernel
2023-09-27 22:15:00
Important: kernel
2023-09-27 22:48:00
debian
debian
[SECURITY] [DLA 3710-1] linux security update
2024-01-11 18:20:25
redhat
redhat
(RHSA-2024:3138) Moderate: kernel security, bug fix, and enhancement update
2024-05-22 06:35:43
(RHSA-2024:2950) Moderate: kernel-rt security and bug fix update
2024-05-22 06:35:10
(RHSA-2024:2394) Important: kernel security, bug fix, and enhancement update
2024-04-30 06:15:35
slackware
slackware
[slackware-security] Slackware 15.0 kernel
2023-11-21 21:37:49
ics
ics
Siemens SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1
2023-12-14 12:00:00

6 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:H

2.9 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

MULTIPLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:M/C:P/I:N/A:P

0.0004 Low

EPSS

Percentile

14.8%

JSON
Related for ZDI-23-1491
prion1cbl_mariner1ubuntucve1cve1cvelist1debiancve1redhatcve1oraclelinux3nessus68openvas50osv19photon1ubuntu17ibm1amazon2debian1redhat4slackware1ics1