VDB

CISA-2023-32269

CISA-2023-32269 PUBLISHED CVSS 6.7 MEDIUM

Reported by mitre · Published May 5, 2023

An issue was discovered in the Linux kernel before 6.1.11. In net/netrom/af_netrom.c, there is a use-after-free because accept is also allowed for a successfully connected AF_NETROM socket. However, in order for an attacker to exploit this, the system must have netrom routing configured or the attacker must have the CAP_NET_ADMIN capability.

Risk Scores

CVSS 3.1
6.7
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Affected Products

VendorProductVersions
n/an/an/a
n/an/an/a, *

Timeline

  • May 5, 2023 CVE Published
  • May 5, 2025 CVE Updated

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›