CVE-2023-6606

CWE-125Out-of-bounds Read30 documents8 sources
Severity
7.1HIGH
EPSS
0.0%
top 99.21%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
5
Linux Linux KernelRedhat Enterprise LinuxRedhat Enterprise Linux EUS+2 more
Timeline
PublishedDec 8
Latest updateFeb 15

Description

An out-of-bounds read vulnerability was found in smbCalcSize in fs/smb/client/netmisc.c in the Linux Kernel. This issue could allow a local attacker to crash the system or leak internal kernel information.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:HExploitability: 1.8 | Impact: 5.2

Affected Packages4 packages

NVDlinux/linux_kernel6.4.16.7+2
Debianlinux< 5.10.209-1+3
Ubuntulinux-aws< 4.4.0-1165.180
Ubuntulinux-nvidia-6.2< 6.2.0-1015.15

Also affects: Enterprise Linux 8.0, 9.0, 9.2, 9.4

🔴Vulnerability Details

11
OSV
linux-nvidia-6.2 vulnerabilities2024-02-14
OSV
linux-oracle, linux-oracle-5.15 vulnerabilities2024-02-06
OSV
linux-nvidia vulnerabilities2024-01-30
OSV
linux-kvm vulnerabilities2024-01-29
OSV
linux-aws vulnerabilities2024-01-25

📋Vendor Advisories

18
Ubuntu
Linux kernel (Intel IoTG) vulnerabilities2024-02-15
Ubuntu
Linux kernel (NVIDIA) vulnerabilities2024-02-14
Ubuntu
Linux kernel (GCP) vulnerabilities2024-02-14
Ubuntu
Linux kernel (Intel IoTG) vulnerabilities2024-02-09
Ubuntu
Linux kernel (Oracle) vulnerabilities2024-02-06
CVE-2023-6606 (HIGH CVSS 7.1) | An out-of-bounds read vulnerability | cvebase.io