CVE-2023-2574
published 2023-05-08CVE-2023-2574: Advantech EKI-1524, EKI-1522, EKI-1521 devices through 1.21 are affected by an command injection vulnerability in the device name input field, which can be…
PriorityP261high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
EPSS
4.75%
90.8th percentile
Advantech EKI-1524, EKI-1522, EKI-1521 devices through 1.21 are affected by an command injection vulnerability in the device name input field, which can be triggered by authenticated users via a crafted POST request.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| advantech | eki-1521 | <= 1.21 | — |
| advantech | eki-1521_firmware | <= 1.21 | — |
| advantech | eki-1522 | <= 1.21 | — |
| advantech | eki-1522_firmware | <= 1.21 | — |
| advantech | eki-1524 | <= 1.21 | — |
| advantech | eki-1524_firmware | <= 1.21 | — |
| linux | linux_kernel | >= 6.1.0 < 6.1.16 | 6.1.16 |
| linux | linux_kernel | >= 6.2.0 < 6.2.3 | 6.2.3 |
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
vendor_redhat5.5LOW
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
bpf: Zeroing allocated object from slab in bpf memory allocator
osv·2025-12-09
CVE-2023-53790 bpf: Zeroing allocated object from slab in bpf memory allocator
bpf: Zeroing allocated object from slab in bpf memory allocator
In the Linux kernel, the following vulnerability has been resolved:
bpf: Zeroing allocated object from slab in bpf memory allocator
Currently the freed element in bpf memory allocator may be immediately
reused, for htab map the reuse will reinitialize special fields in map
value (e.g., bpf_spin_lock), but lookup procedure may still access
these special fields, and it may lead to hard-lockup as shown below:
NMI backtrace for cpu 16
CPU: 16 PID: 2574 Comm: htab.bin Tainted: G L 6.1.0+ #1
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996),
RIP: 0010:queued_spin_lock_slowpath+0x283/0x2c0
......
Call Trace:
copy_map_value_locked+0xb7/0x170
bpf_map_copy_value+0x113/0x3c0
__sys_bpf+0x1c67/0x2780
__x64_sys_bpf+0x1c/0x20
do_sys
GHSA
GHSA-x9rg-f8pv-j6rh: Advantech EKI-1524, EKI-1522, EKI-1521 devices through 1
ghsa_unreviewed·2023-05-08
CVE-2023-2574 [HIGH] CWE-77 GHSA-x9rg-f8pv-j6rh: Advantech EKI-1524, EKI-1522, EKI-1521 devices through 1
Advantech EKI-1524, EKI-1522, EKI-1521 devices through 1.21 are affected by an command injection vulnerability in the device name input field, which can be triggered by authenticated users via a crafted POST request.
Red Hat
kernel: bpf: Zeroing allocated object from slab in bpf memory allocator
vendor_redhat·2025-12-09·CVSS 5.5
CVE-2023-53790 [LOW] CWE-909 kernel: bpf: Zeroing allocated object from slab in bpf memory allocator
kernel: bpf: Zeroing allocated object from slab in bpf memory allocator
In the Linux kernel, the following vulnerability has been resolved:
bpf: Zeroing allocated object from slab in bpf memory allocator
Currently the freed element in bpf memory allocator may be immediately
reused, for htab map the reuse will reinitialize special fields in map
value (e.g., bpf_spin_lock), but lookup procedure may still access
these special fields, and it may lead to hard-lockup as shown below:
NMI backtrace for cpu 16
CPU: 16 PID: 2574 Comm: htab.bin Tainted: G L 6.1.0+ #1
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996),
RIP: 0010:queued_spin_lock_slowpath+0x283/0x2c0
......
Call Trace:
copy_map_value_locked+0xb7/0x170
bpf_map_copy_value+0x113/0x3c0
__sys_bpf+0x1c67/0x2780
__x64_sys_bpf+0x1c/0x20
d
No detection rules found.
No public exploits indexed.
http://packetstormsecurity.com/files/172307/Advantech-EKI-15XX-Series-Command-Injection-Buffer-Overflow.htmlhttp://seclists.org/fulldisclosure/2023/May/4https://cyberdanube.com/en/multiple-vulnerabilities-in-advantech-eki-15xx-series/https://www.advantech.com/en/support/details/firmware?id=1-1J9BEBLhttps://www.advantech.com/en/support/details/firmware?id=1-1J9BECThttps://www.advantech.com/en/support/details/firmware?id=1-1J9BED3http://packetstormsecurity.com/files/172307/Advantech-EKI-15XX-Series-Command-Injection-Buffer-Overflow.htmlhttp://seclists.org/fulldisclosure/2023/May/4https://cyberdanube.com/en/multiple-vulnerabilities-in-advantech-eki-15xx-series/https://www.advantech.com/en/support/details/firmware?id=1-1J9BEBLhttps://www.advantech.com/en/support/details/firmware?id=1-1J9BECThttps://www.advantech.com/en/support/details/firmware?id=1-1J9BED3
2023-05-08
Published