cbcvebase.
CVE-2014-2523
published 2014-03-24

CVE-2014-2523: net/netfilter/nf_conntrack_proto_dccp.c in the Linux kernel through 3.13.6 uses a DCCP header pointer incorrectly, which allows remote attackers to cause a…

PriorityP351critical10CVSS 2.0
AVNACLAuNCCICAC
EPSS
10.38%
95.2th percentile
net/netfilter/nf_conntrack_proto_dccp.c in the Linux kernel through 3.13.6 uses a DCCP header pointer incorrectly, which allows remote attackers to cause a denial of service (system crash) or possibly execute arbitrary code via a DCCP packet that triggers a call to the (1) dccp_new, (2) dccp_packet, or (3) dccp_error function.

Affected

11 ranges
VendorProductVersion rangeFixed in
canonicalubuntu_linux
debianlinux< linux 3.13.10-1 (bookworm)linux 3.13.10-1 (bookworm)
linuxlinux_kernel< 3.2.573.2.57
linuxlinux_kernel>= 0 < 3.13.10-13.13.10-1
linuxlinux_kernel>= 0 < 3.13.10-13.13.10-1
linuxlinux_kernel>= 0 < 3.13.10-13.13.10-1
linuxlinux_kernel>= 0 < 3.13.10-13.13.10-1
linuxlinux_kernel>= 3.11 < 3.12.173.12.17
linuxlinux_kernel>= 3.13.0 < 3.13.93.13.9
linuxlinux_kernel>= 3.3 < 3.4.863.4.86
linuxlinux_kernel>= 3.5 < 3.10.363.10.36

CVSS provenance

nvdv2.010.0CRITICALAV:N/AC:L/Au:N/C:C/I:C/A:C
osv10.0CRITICAL
vendor_debian10.0CRITICAL
vendor_redhat10.0CRITICAL
vendor_ubuntu7.8HIGH
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.