CVE-2023-6111

HIGH

Published 2023-11-14T14:05:35.216Z

Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2023-6111. We'll provide specific mitigation strategies based on your environment and risk profile.

CVSS Score

V3.1

7.8

/10

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Base Score Metrics

Exploitability: N/A Impact: N/A

EPSS Score

v2023.03.01

0.000

probability

of exploitation in the wild

There is a 0.0% chance that this vulnerability will be exploited in the wild within the next 30 days.

Updated: 2025-01-25

Exploit Probability

Percentile: 0.051

Higher than 5.1% of all CVEs

Attack Vector Metrics

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Impact Metrics

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Description

A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation.

The function nft_trans_gc_catchall did not remove the catchall set element from the catchall_list when the argument sync is true, making it possible to free a catchall set element many times.

We recommend upgrading past commit 93995bf4af2c5a99e2a87f0cd5ce547d31eb7630.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

Linux

Kernel

Affected Versions:

6.6

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

⚠ Unreviewed HIGH

GHSA-xgr2-4f4q-m3p9

Advisory Details

A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. The function nft_trans_gc_catchall did not remove the catchall set element from the catchall_list when the argument sync is true, making it possible to free a catchall set element many times. We recommend upgrading past commit 93995bf4af2c5a99e2a87f0cd5ce547d31eb7630.

CVSS Scoring

CVSS Score

7.5

CVSS Vector


                                    CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2023-6111

WEB https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=93995bf4af2c5a99e2a87f0cd5ce547d31eb7630

WEB https://kernel.dance/93995bf4af2c5a99e2a87f0cd5ce547d31eb7630

WEB https://lists.fedoraproject.org/archives/list/[email protected]/message/3OXWBKK7RTQOGGDLQGCZFS753VLGS2GD

WEB https://lists.fedoraproject.org/archives/list/[email protected]/message/3S55P23EYAWDHXZPJEVTGIRZZRICYI3Z

WEB https://lists.fedoraproject.org/archives/list/[email protected]/message/IG6IF3FUY7LVZJMFRPANAU4L4PSJ3ESQ

WEB https://lists.fedoraproject.org/archives/list/[email protected]/message/YQ7JVDEDZV5SNHG5EW7RHKK2ZN56HSGB

Advisory provided by GitHub Security Advisory Database. Published: November 14, 2023, Modified: August 27, 2024

References

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=93995bf4af2c5a99e2a87f0cd5ce547d31eb7630

https://kernel.dance/93995bf4af2c5a99e2a87f0cd5ce547d31eb7630

https://lists.fedoraproject.org/archives/list/[email protected]/message/IG6IF3FUY7LVZJMFRPANAU4L4PSJ3ESQ/

https://lists.fedoraproject.org/archives/list/[email protected]/message/YQ7JVDEDZV5SNHG5EW7RHKK2ZN56HSGB/

https://lists.fedoraproject.org/archives/list/[email protected]/message/3S55P23EYAWDHXZPJEVTGIRZZRICYI3Z/

https://lists.fedoraproject.org/archives/list/[email protected]/message/3OXWBKK7RTQOGGDLQGCZFS753VLGS2GD/

Published: 2023-11-14T14:05:35.216Z

Last Modified: 2025-02-13T17:26:04.475Z

Copied to clipboard!

CVE-2023-6111

Expert Analysis

CVSS Score

EPSS Score

Attack Vector Metrics

Impact Metrics

Description

Available Exploits

Related News

Affected Products

Kernel

Affected Versions:

GitHub Security Advisories

Advisory Details

CVSS Scoring

CVSS Score

CVSS Vector

References

References

Request Analysis

What to expect

Request Received!