VDB
CVE-2023-2006
CVE-2023-2006
PUBLISHED
Es existiert eine Schwachstelle im Linux Kernel. Es tritt eine Race-Condition beim Verarbeiten von RxRPC-Paketen auf. Ein lokaler Angreifer kann diese Schwachstelle ausnutzen, um seine Privilegien zu erweitern.
EPSS 0.03% · 9.4th percentile
Risk Scores
EPSS Score
0.03%
9.4th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Dell | Dell NetWorker vProxy< 19.9.0.4 | |
| Dell | Dell NetWorker vProxy< 19.10 | |
| Debian | Debian Linux | |
| Open Source | Open Source Linux Kernel | |
| Red Hat | Red Hat Enterprise Linux | |
| SUSE | SUSE Linux |
Exploit Intelligence
- CIRCL seen: CVE-2023-2006 (circl-sighting)
- CIRCL seen: CVE-2023-2006 (circl-sighting)
- https://bugzilla.redhat.com/show_bug.cgi?id=2189112 (circl)
- https://www.zerodayinitiative.com/advisories/ZDI-23-439/ (circl)
- https://github.com/torvalds/linux/commit/3bcd6c7eaa53 (circl)
- https://security.netapp.com/advisory/ntap-20230609-0004/ (circl)
Timeline
- Apr 13, 2023 CVE Published
- Apr 25, 2023 EPSS Score
- Apr 25, 2023 PoC Published
- Jun 1, 2023 EPSS Score
- Jul 9, 2023 EPSS Score
- Aug 15, 2023 EPSS Score
- Sep 21, 2023 EPSS Score
- Oct 28, 2023 EPSS Score
- Dec 5, 2023 EPSS Score
- Jan 11, 2024 EPSS Score
- Jan 28, 2024 CVE Updated
- Feb 17, 2024 EPSS Score
References
- https://lists.suse.com/pipermail/sle-security-updates/2023-May/014813.html advisory
- https://access.redhat.com/errata/RHSA-2023:3465 advisory
- https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-0968.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-0968 advisory
- https://www.zerodayinitiative.com/advisories/ZDI-23-439/ advisory
- https://www.zerodayinitiative.com/advisories/ZDI-23-440/ advisory
- https://www.zerodayinitiative.com/advisories/ZDI-23-441/ advisory
- https://www.zerodayinitiative.com/advisories/ZDI-23-442/ advisory
- https://lists.suse.com/pipermail/sle-security-updates/2023-May/014817.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2023-May/014816.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2023-May/014812.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2023-May/014821.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2023-May/014914.html advisory
- https://access.redhat.com/errata/RHSA-2023:3470 advisory
- https://access.redhat.com/errata/RHSA-2023:3490 advisory
- https://lists.debian.org/debian-lts-announce/2023/07/msg00030.html advisory
- https://lists.debian.org/debian-security-announce/2023/msg00172.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2023-September/016152.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2023-September/016151.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2023-September/016153.html advisory
…and 27 more