CVE-2023-52755

HIGH

Published 2024-05-21T15:30:42.898Z

Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2023-52755. We'll provide specific mitigation strategies based on your environment and risk profile.

CVSS Score

V3.1

8.4

/10

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Base Score Metrics

Exploitability: N/A Impact: N/A

EPSS Score

v2023.03.01

0.000

probability

of exploitation in the wild

There is a 0.0% chance that this vulnerability will be exploited in the wild within the next 30 days.

Updated: 2025-01-25

Exploit Probability

Percentile: 0.183

Higher than 18.3% of all CVEs

Attack Vector Metrics

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Impact Metrics

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Description

In the Linux kernel, the following vulnerability has been resolved:

ksmbd: fix slab out of bounds write in smb_inherit_dacl()

slab out-of-bounds write is caused by that offsets is bigger than pntsd
allocation size. This patch add the check to validate 3 offsets using
allocation size.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

Linux

Affected Versions:

0626e6641f6b467447c81dd7678a69c66f7746cf 0626e6641f6b467447c81dd7678a69c66f7746cf 0626e6641f6b467447c81dd7678a69c66f7746cf 0626e6641f6b467447c81dd7678a69c66f7746cf 0626e6641f6b467447c81dd7678a69c66f7746cf

Linux

Affected Versions:

5.15 0 5.15.140 6.1.64 6.5.13 6.6.3 6.7

linux

linux_kernel

Affected Versions:

1da177e4c3f4 1da177e4c3f4 1da177e4c3f4 1da177e4c3f4 1da177e4c3f4

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

⚠ Unreviewed HIGH

GHSA-hmgr-x2j2-pxwh

Advisory Details

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix slab out of bounds write in smb_inherit_dacl() slab out-of-bounds write is caused by that offsets is bigger than pntsd allocation size. This patch add the check to validate 3 offsets using allocation size.

CVSS Scoring

CVSS Score

7.5

CVSS Vector


                                    CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2023-52755

WEB https://git.kernel.org/stable/c/09d9d8b40a3338193619c14ed4dc040f4f119e70

WEB https://git.kernel.org/stable/c/712e01f32e577e7e48ab0adb5fe550646a3d93cb

WEB https://git.kernel.org/stable/c/8387c94d73ec66eb597c7a23a8d9eadf64bfbafa

WEB https://git.kernel.org/stable/c/aaf0a07d60887d6c36fc46a24de0083744f07819

WEB https://git.kernel.org/stable/c/eebff19acaa35820cb09ce2ccb3d21bee2156ffb

Advisory provided by GitHub Security Advisory Database. Published: May 21, 2024, Modified: August 1, 2024

References

https://git.kernel.org/stable/c/aaf0a07d60887d6c36fc46a24de0083744f07819

https://git.kernel.org/stable/c/8387c94d73ec66eb597c7a23a8d9eadf64bfbafa

https://git.kernel.org/stable/c/09d9d8b40a3338193619c14ed4dc040f4f119e70

https://git.kernel.org/stable/c/712e01f32e577e7e48ab0adb5fe550646a3d93cb

https://git.kernel.org/stable/c/eebff19acaa35820cb09ce2ccb3d21bee2156ffb

Published: 2024-05-21T15:30:42.898Z

Last Modified: 2025-05-04T07:42:33.718Z

Copied to clipboard!

CVE-2023-52755

Expert Analysis

CVSS Score

EPSS Score

Attack Vector Metrics

Impact Metrics

Description

Available Exploits

Related News

Affected Products

Linux

Affected Versions:

Linux

Affected Versions:

linux_kernel

Affected Versions:

GitHub Security Advisories

Advisory Details

CVSS Scoring

CVSS Score

CVSS Vector

References

References

Request Analysis

What to expect

Request Received!